fb3dedc63eff84e7df3d50ea52f70438395542f920d7a3d67e73841a70dd51ef

Analysis

max time kernel
48s
max time network
130s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
24-02-2024 10:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

fb3dedc63eff84e7df3d50ea52f70438395542f920d7a3d67e73841a70dd51ef.apk
Size

13.4MB
MD5

f5ad1a4e0963aeaddf2c0d0d01e541ca
SHA1

85468ba320906f36e866a86157d74d43683f9bc9
SHA256

fb3dedc63eff84e7df3d50ea52f70438395542f920d7a3d67e73841a70dd51ef
SHA512

a9fcfddfd8cee7603b6628226dcb1172d2a3f12e9b6146e49a8ac0ced085c655159a434796e431d007da19c46ee10cc63acac6a202464700fc00d75c2f951b21
SSDEEP

393216:skBuDyUlK9OJNhlptNo3zsC7KUBgQ3vU1d:sko2Ul8OJPlptE4mKUBgQ3vUf

Score

7^/10

discovery

Malware Config

Signatures

Loads dropped Dex/Jar 6 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/pocketmonsters.ext.jar	4215	com.hyperhoop.pocketmonsters
/data/user/0/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/pocketmonsters.dat.jar	4215	com.hyperhoop.pocketmonsters
/data/user/0/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/aEeiXYYtV.dex	4215	com.hyperhoop.pocketmonsters
/data/user/0/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/pocketmonsters.ext.jar	4215	com.hyperhoop.pocketmonsters
/data/user/0/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/pocketmonsters.dat.jar	4215	com.hyperhoop.pocketmonsters
/data/user/0/com.hyperhoop.pocketmonsters/cache/1610724645094.jar	4215	com.hyperhoop.pocketmonsters

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.hyperhoop.pocketmonsters

com.hyperhoop.pocketmonsters
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4215

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/aEeiXYYtV.dex

Filesize
2KB

MD5
b3f9878dd3c95d7af4d7bd17a544eacf

SHA1
a0d4d6ff561c1d2cb75afb883d15736c0f9c78b4

SHA256
2c7a743e94131c9e87f9a9bf93e95ed0f8fab177ecf9347e8a334fba11baf90a

SHA512
9751989076432ba210c4a59e4eb6ed2ad5d703a4dc7509992d2352725473c3e70b9c1bca37957ac59f44a32d80f38234f35ce85c8e2f8df732373151dd4fb1dc

Download Submit
/data/data/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/oat/pocketmonsters.dat.jar.cur.prof

Filesize
86B

MD5
6efc12ee21311a30b5da1fd77e780e37

SHA1
82edc2b045cd38135a02e78ee689364546d92cac

SHA256
e55d9beb8d4982fd3079049b9d26aab7f38615529588760c6e6b8f7fe357137e

SHA512
e8cbf62660f919fd42fc309db6569defa04cf3972b36d2b2e38bb198226940f1d2de0494e2e2a0212b10d989c70b51a85c99a6eddea2e83a10d33289d6f0d3f1

Download Submit
/data/data/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/oat/pocketmonsters.ext.jar.cur.prof

Filesize
844B

MD5
bb9770821f75527d156a5696c83db907

SHA1
03bbed7dc98541017e3fea6285a863e6a864985d

SHA256
2f6069632196f2a2e320ef0454bbf49039af233c3028a8c9b97f205518a14157

SHA512
25c14165eb497cab4715a32f605bb6844c60fc11616fd0777ba34927fe71b3fdce1696e1c2d61ae798f57dcb03fe28d9047484c73949dc65d663ba88708702df

Download Submit
/data/data/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/pocketmonsters.dat.jar

Filesize
3KB

MD5
68bc69e87db7e1fbb874611854d34784

SHA1
5155d3df044a5f0d2ae758d5838d0eb53f63d427

SHA256
c43e08a8734e1ce62c688671086eb23e826435cc35e82d4acc931c8f97ba8a1d

SHA512
2b39652806e59faaaba8b11be9d3a28b69b8f39a8ebfde8d2f8019eebeee39355b07d871ac19eb8dd157564a7599c414abaef07a7445f63ddc3bf50d2c9c6492

Download Submit
/data/data/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/pocketmonsters.ext.jar

Filesize
2.5MB

MD5
e756453077e846be206d3e0a0a1f88fe

SHA1
5a98b7209242a7a891a41926089c35d3694f6bbc

SHA256
e0ce3284f94cccd6cd9fbe080a228cab80ebd088f8058edfa4d74e8612490816

SHA512
aee5184c3bd62bdd6deb1bdac2b058661c505df5c8f0eeccb131f4f8c24ee2700b4690d783ed0d91d26542a5e86f122cc7d95f20b63d2a5728a2aae7cd029328

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/1610724645094.jar

Filesize
9KB

MD5
03ee9d194982da8259d81957162c9795

SHA1
f05ab5cc908262c4dd51f3e8ca49bc346dc136b2

SHA256
d44cfb6b41231f150cf310c7c4d399be9587294e3727197e046db4a1c2c3ca3b

SHA512
241f97312aa3e4547ce7f3195667301872bded70880ce33641a26292530ec2c22614a85c7e2437c5a88fff0e6359ef9c253caa79fa49a025869ae5dcbae524ff

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/005697454a9312c1813ccec46eafb40a53b04d7b55eb81a3e5a87feef9ce9116.0.tmp

Filesize
16KB

MD5
f8dce6f77d21c326fad6ac1ade806c67

SHA1
c31d5326d0128c1bf0ffae8245748e8a3b95722c

SHA256
9f1a44ee9e82fe1e0ee67a81a1e4fa872603879e9e1bd3682efe768b9e9a65f2

SHA512
f820eb28b5273e0c4fcec9e28e2242d10e7f969b59cbf72b5562d2f67ffe0128db69aea469ab29474355976175e068a58d0ad3797475bd551317342e5c85c245

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/0a40e04b0d00d7b74371fe75b98248af14de401a21f0911d9cef92eac629d93e.0.tmp

Filesize
25KB

MD5
edbcf8136a9a1a5a232b4068e6fb6ad9

SHA1
1daf0fafeff0cdcdece0ebf8bc3b22f01df9482d

SHA256
b1430859f85e8ab9923ebbc03905ea8be41403706a70e3b2ca37ddcc83882229

SHA512
7697c6694e172db967076fc7e46c43a2c44efff5b50bda30a61b0b9b895bf463b1e1376fc461b3c6ccd76a1d69e7266ec28e8ab6321148536a94bd292fc9c242

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/1f5faea5b7d2bdd4bf4ae9765c53509f5c29bdadc70f72e7d35292251a45642a.0.tmp

Filesize
17KB

MD5
0e0cdf564f478dd0734cf6c5a2403f1a

SHA1
25b16a83899889c612bfd2b83efd00b66ab4bd7b

SHA256
87fc9992123a9df5a8ba38b4191cb373b25fe9f3035fcc2e8cf042b0fd88afd7

SHA512
b100d80424a44ba493ca103a67261e40f8d1a032ba223e3128e58b0983c0ce20f2f7ad6d4728512890098fe644d055115d9bace0f6fa653820678db2de90d612

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/46b94665f928b5ce4dbb10c8ec8fd89b32a087d0f51b443eb6c3367735c39324.0.tmp

Filesize
44KB

MD5
113400eb16746ddcae9fd4a7d13b92ca

SHA1
e90118676d4d3ee55d14516a5288681fe916a050

SHA256
56bfe04e2e0e079509a401168f4f027a668c08f1dd015037a64ad63d4bf579fb

SHA512
8d32ed09381348a172b8fa50b55b82620feedc6cf1e1558761377f1ba01cef67f2fba4a4e7502c756ce35b703865f4b22d206e54965fe129f13e197d2465a674

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/646584285827190def612099b5c5c8713d119acc7e970236f088cb8083027a64.0.tmp

Filesize
24KB

MD5
3d6a52b95489343771347213d060e2a7

SHA1
70d5688a18931100974088854dcc6e00f5243219

SHA256
4dfdec86e162798a2419583ada7eb021992f647c393b70e4e00cc1d5721ee6e5

SHA512
fb287240593d3a481965ae9a6d5c5764c3c6f7a16632ae5e061889afd68561c41f4f1b512a72614f97e4c2f4dd41f2db964b8d248b317740a678ca6a53ee9f5f

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/91a849f8f020ce0fcf67bbe224fc915d597039f74ef1fa6d040cdee2d893640b.0.tmp

Filesize
18KB

MD5
8de796afa831139ef7203ba35bc7aa72

SHA1
d493d4ffe816631f4501c48e46bcf016e1d2eb8a

SHA256
172cd1210f0db2ab9bb10969649c839e55b9c6ae1023cd121c70b72b14b8810f

SHA512
6263d4a7d78977c5ebbeb3ad08e0824df09634672e6f5744a94400bc8a874796eb0f494681209b094145c6bc3e64027a01cacb6fe705da9ce186be641e3b1e69

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/9421f44f580a6d49c4be74a14f96293cabea3ffa743b67778b29aeab7cf1a2ed.0.tmp

Filesize
16KB

MD5
16641d853638f2911b614a71491209df

SHA1
8970d60d909a0cc308842e09f36f783457b14f6b

SHA256
53f814f892c8e4d285ddd53300b0fb7e1e328ac593da542781195996873866ea

SHA512
ef2bc1f1394707b9d608516bb79f774c9051ccf508810de027b4b441693044370cc7fe2cff526967e53b30f042823448787d7549c2a3df897d682fe8cc5be6ee

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/d84b7400c1dac1172a4623d90f298451eddf1ebf35380b748f158d1086f41bc5.0.tmp

Filesize
27KB

MD5
aaf800fc5ae344b42cb0fee8e31f7e9c

SHA1
bd5a17b1ef39f7bb3a587326bc29bfaed5a2f454

SHA256
23d82b831ea7b8e19ee499fdb7194564014324d82180680e9cdaa3830c8a27e3

SHA512
d94eb452292f37c4da3fb59d682644100d3e0c3fb262e69dfb120ff49abd67231510914c9ad1bd06bc65fa534b2abbb5468120b407a9f9b121b03f9d50a1ac50

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/dc24c7e2b73d41db1c07f63da6fb3d225a43237457cb63f2fbc7802acb1033fd.0.tmp

Filesize
6KB

MD5
806b4d21b0f3a624b1876e7d50cb147d

SHA1
970ce0102d5394dd555b22c8cc7f1ed2b776d1e8

SHA256
ecbd7f37366308a11dc68bd86154618d0224ab537c4470dbb5a9cf04d0f3052c

SHA512
9a714919de2ee2ff3c5f9833f67a5c38132f93337b522f536f1d2ba13f250a7cd2fc2a6132ce851b01a0e65c6868f91871d96c3e198c2e3cb51eff33688ec268

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/f746e5bc115b66e2f8174b1e5569c2c72e61b94ee0e16dc9e800612fec42a5d4.0.tmp

Filesize
10KB

MD5
414ba27225c5bac66876460e3966c810

SHA1
41737700e55ed7735001779bdd01e5e746004a7c

SHA256
3966a36c4ce8756530ea00353f3a2ce477fe00247e5de031c95b68d8f5014976

SHA512
ccb053319fe847168eb874693f17be3f01b423a1f6d47ab98099dcb6cb34082b4c3951b5d1881fe95e9dbc0fb03e0ecb2ccca146fb8227e89bf51685dbefec46

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/journal

Filesize
623B

MD5
c3947fba461ce732858d047c6e74aacc

SHA1
930ba5de2cb3ee0aa6a40814f7e0683f571653a5

SHA256
64b0dcb71f1d4bee40ba6670814b885a83cbbcb62bab6b983b76e6713c6f211f

SHA512
f8e98178011f47b6c53a7261ebd05962683b676afce8a4755faa80464d58b44275826d24504c321be01de8f917a3a9d949a79cbbe118422b437dc90ecfe86f45

Download Submit
/data/data/com.hyperhoop.pocketmonsters/cache/image_manager_disk_cache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/data/com.hyperhoop.pocketmonsters/databases/a-journal

Filesize
512B

MD5
6a2e3807b47c7331c262d2267282c65e

SHA1
fef2e3c0a6681051a0242ea5a75d41b336dc27a4

SHA256
2e61d114e0e062886a8d961b0cfbc19def3edb50803031ed98d363d3243b7f27

SHA512
56d7b6fbe6ef14e565c5e38ea5f31507e40e5702ee4c40709c2da0a9e7c4f921c24b74eaabb6ad1cd4fc4a29ada51d0356070193c00646c57f9dca276bec8ef4

Download Submit
/data/data/com.hyperhoop.pocketmonsters/databases/a-wal

Filesize
16KB

MD5
e7363468046ab16499bfe81d9b26e808

SHA1
efb48267ff27eccf0bcc6e70dd1db5606eea4bd3

SHA256
48fcef4462daedf180785aa80fae0114c068b18fe2c06d5f8c88c8648e50eb35

SHA512
b61c0332caa72799800e6048700b11d91a93c21f1a6f7ca3924d5bdb358ea147476aaa8cc59442764459c2e97a1cbdc8d6f77e80c4d2e9db7cbbf5fed32b22da

Download Submit
/data/data/com.hyperhoop.pocketmonsters/databases/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.hyperhoop.pocketmonsters/databases/androidx.work.workdb-journal

Filesize
512B

MD5
6aebcf7f56a2cec64017e1bc3c668cae

SHA1
7b2bc770887da1580bb96eae4014289cb928c087

SHA256
ce10ec14486ab755fde6946dd2336e91e1ce1d56f5437072e0613fa89a0bc5ee

SHA512
02eb9404fe5dc021f86b94edeb508f09563411a14ca8143fbfad558a9b7a1b6f0542c1e6722a14ecb658ce5fa4b874c65399ac0ad8b45183f6184f2ee672cf51

Download Submit
/data/data/com.hyperhoop.pocketmonsters/databases/androidx.work.workdb-wal

Filesize
88KB

MD5
120eb4b0f3e9270ec726515fc794e53c

SHA1
fb92a47350ef006a1269287060330c3a43426b1c

SHA256
a59855c1dfc81f48960b47dae921ec2293b16f093210619f5305d3d013376bd8

SHA512
c5d4154e0adbea5a8eabdc0bc156930ddddf0cfdc7505c96dd7f53e143e600c3c0ad8cd94cba8416d57cffa3c74aa2818bf2c02468244033fe1f1793520a3b4c

Download Submit
/data/data/com.hyperhoop.pocketmonsters/databases/androidx.work.workdb-wal

Filesize
16KB

MD5
8cca05f323c5a4bad15153ae20ca7195

SHA1
1225fe6009591789f4b725ef139990d7bba4c074

SHA256
2af087db38d88b2eec506f73b0d97392816e9cf92a2ccd7754d0ac895c856414

SHA512
889ac1b4a53ddec1fed765a69517f28c6a6e1501478e98b4c89557e32d2693fa62d3b736ea83dfc136389b82d922f8aa961f06ad32a27f7a209f61fc8d2bfee7

Download Submit
/data/data/com.hyperhoop.pocketmonsters/databases/pocketmonsters.db

Filesize
2.7MB

MD5
9e0b783e528e97dca3c23d236a4c5f8e

SHA1
c303ac027cfc2cd0e999cd8b16793e72a4dfb678

SHA256
e96cd90ac0f04a14f4191997e67b2f0d21ef9f9a373bacd0c65c2e3dcca0a1ae

SHA512
387b41ef357d7762ca4c61916c8df8daae727d4451090ae8da23e62cf1072a11e9ac9cab774b7f0441e1803e2f5c1186e60eb9be55d3198a43d3d34d6a374861

Download Submit
/data/data/com.hyperhoop.pocketmonsters/databases/pocketmonsters.db-journal

Filesize
1KB

MD5
3adea7243113106c122d172d1895ac90

SHA1
4ebc85a592b5faad94dfe693648b644e5754e216

SHA256
eb876b265735b3bf3916e16210650190bf719fb9941ec952d4b2904bec7b9e2a

SHA512
93505fd6b3a985bc50a8be80def0bc46b54fa22a66ef1e7c5b63653e4dbc33e2d2988bed29719b9aca2b10c7f9f7eaea61e0874d294f988c777ffc53fde78675

Download Submit
/data/user/0/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/aEeiXYYtV.dex

Filesize
4KB

MD5
7987e2eab705739aedfe7cdb2146dfd9

SHA1
331cde6123021d503fcb6e3a9d106bdb139f01ae

SHA256
b0a1e94fb38e5e520319d6f8a997ce9466aac8c24e0a7a8e2380cb2d10a721bd

SHA512
e1f8eea29cd2964a16f39f50371a015ab468d46b4ed29c489d0c900ea7201ac934074f2220ec663873bb9bfa44c2b913e8064218cd0aa7e489392d21f798654f

Download Submit
/data/user/0/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/pocketmonsters.dat.jar

Filesize
7KB

MD5
2d97173d5c42661ba01469cc3578ffb4

SHA1
db062779fa3899c0d9c0a5e41824e90b8c1d575f

SHA256
586f1b665e4a06e41bcbc75b8bbde1ae0eb142b5c98daaa56dfd11323d7211b9

SHA512
8621bc18fbe7c03f03827bd2794fa9aee09cbfee69c06e44b35e4bd0039e3dfdfad63068e7c54478a40f6807eccb8549064766edb90144186f39b46a22fc9009

Download Submit
/data/user/0/com.hyperhoop.pocketmonsters/app_42hdj1wcb5aylj714i/pocketmonsters.ext.jar

Filesize
6.3MB

MD5
63a810d01f252814a965854d077a6d62

SHA1
276bcd0d14da8865752f41cd5b55b9e15c906ed4

SHA256
b29771340b6362f1b0e8944061867a952d57fd7bf20b736989ec7af00f583039

SHA512
1ba0e42a3c4c5d5bb05bc39e125fb2a7414812da0334afb809ba68a85a62da9c4117d274bc7d6249ccc320e8f97a0b77c9d651b725d13e4b4e800fa55aac8cc2

Download Submit
/data/user/0/com.hyperhoop.pocketmonsters/cache/1610724645094.jar

Filesize
19KB

MD5
cf2ed89992c1145a27f078b9da17e96c

SHA1
2afc75b5bc6329198ec01829e6c6acbd0c0dee01

SHA256
84009ae4f9125e2d61a670b88e41ad81bba2161dc0910b4506ef6356f0ebeb78

SHA512
8240cd4dcf4087b5f02400853f6820afe4b2a8825089aaa661662539fcb857b78013f8f3a9dc047034f6f42168fffcc6c1727076ab0e4eeaffcad956659de6f5

Download Submit