d9ec1a877a90506094f843c8788580c18b55a92b230ffaef2c6191c4c7afeaa4 | Triage

Submit
Reports

Overview

overview

Static

static

d9ec1a877a...a4.apk

android-9-x86

1

d9ec1a877a...a4.apk

android-10-x64

1

d9ec1a877a...a4.apk

android-11-x64

6

Analysis

max time kernel
4s
max time network
151s
platform
android_x64
resource
android-x64-arm64-20240221-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system
submitted
04-03-2024 22:05

Sharing

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

d9ec1a877a90506094f843c8788580c18b55a92b230ffaef2c6191c4c7afeaa4.apk

Resource

android-x86-arm-20240221-en

android-9-x86

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

d9ec1a877a90506094f843c8788580c18b55a92b230ffaef2c6191c4c7afeaa4.apk

Resource

android-x64-20240221-en

android-10-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

d9ec1a877a90506094f843c8788580c18b55a92b230ffaef2c6191c4c7afeaa4.apk

Resource

android-x64-arm64-20240221-en

android-11-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

d9ec1a877a90506094f843c8788580c18b55a92b230ffaef2c6191c4c7afeaa4.apk
Size

3.4MB
MD5

8edbdb50c35be3f59510943ef87a6f2a
SHA1

3f2e7ec65441c2fefcd3db4243e0f6eb4716593a
SHA256

d9ec1a877a90506094f843c8788580c18b55a92b230ffaef2c6191c4c7afeaa4
SHA512

5a30de1f128bf062b016128ecc2165f0669f33a90082eb790f1ae6d64e8c93defbf29cc9f29dec63df09a0e463cf170784b2eea6a152e40502ef4168fa085019
SSDEEP

98304:cD7Pe+8wptAw6enEDqZyXD8mfigpEIw+TpdY5Lw:cfv/fH0qAQe8+tT

Score

6^/10

discovery

Malware Config

Signatures

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Processes

com.kylhavy.antivirus
1⤵
PID:4708

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.kylhavy.antivirus/databases/vxoid.bin

Filesize
240KB

MD5
5cdd040c249d8180c87539fd0cd4b593

SHA1
bbb556c8762885b0bd54b739c513168d11f8fe89

SHA256
aabdab286ce3af465a7c54d3900bd619a8ebac0896b9f8af3d41a530925b9b58

SHA512
50d4dc1ab636ee7b8dd46290dd1a66c4fa09f40d75ee3a8a11bf02ca0d7a86a83e7e728ce65f0b0af1228ccaa6ffe1121021fb8f1a0fd633045cd85bf9e35524

Download Submit
/data/data/com.kylhavy.antivirus/databases/vxoid.bin-journal

Filesize
512B

MD5
a3debbde48215b2b8de94a57d6911bc8

SHA1
948232c3122daa9c95f8e7dd7874e419444e8b50

SHA256
97db7f48bb2e266c2f15115bb82c4ad69e9865fbb48dec6525d98b12a22c24a4

SHA512
5b0cee5e5e1f36923d61268ce71f39fb272b7e6a8db52e223d48d3cf15e10ebb058092abdde8877cf3011cfa4ec6facec5f7b9ea67c2ec8d004d7336af8b91e6

Download Submit
/data/data/com.kylhavy.antivirus/databases/vxoid.bin-journal

Filesize
8KB

MD5
93666ba503087a2c7f1257998e687e5a

SHA1
63dd24d5691d9d9f3ca01f0026663fb8a0b536e5

SHA256
2fa7978f1882a0a47306a7172c0dcfeaa873a46ffb2fa8665383b1291f9cc538

SHA512
0ce0ce32c816d34cdc2cec9ea2c795b0841c77cd5b3be778bbd4cd8a002c9a270b0c9b1c0021aa6cc35249d35deaa8be1e93be02f02393d553d9112d4eef2ae2

Download Submit
/data/data/com.kylhavy.antivirus/databases/vxoid.bin-journal

Filesize
4KB

MD5
6d00e38430a3cac3b37f63526140f228

SHA1
04d0fc69637ce9e71d8cc1d5d0470cdf491ac6d2

SHA256
cc0e88f017417cdd552a976b128cc448a9f198e4c9f3d9b1072fcf8b5c7486ef

SHA512
0d1ba19fae3b1dbffa424681b988e713b27d31c6fb9174f83e2fac4e2c27df12d18f3555f75487272c0aa30d068205c841865bb14bfc861ca337782da98af49c

Download Submit

© 2018-2024

Terms | Privacy