636700bd830219076ea74c09b6b28ecb6ad4f1ecedc08f06cb262fd25950061b

Analysis

max time kernel
148s
max time network
157s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
07/03/2024, 10:22

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

636700bd830219076ea74c09b6b28ecb6ad4f1ecedc08f06cb262fd25950061b.apk
Size

2.0MB
MD5

8beffb65e802b68be985b398746ba13a
SHA1

1bbc5698da5be7997d88f234b1ada1a6f212806a
SHA256

636700bd830219076ea74c09b6b28ecb6ad4f1ecedc08f06cb262fd25950061b
SHA512

daaacd7bd0c143bc9d6a03b636a1db2d24879c0494bb1e9cd924829afa4f5285a3cbc11ca044111eaf6f83f95c61fd80262b16bb8fc66bc273a373166de012ec
SSDEEP

49152:10uxGRn4srMuPPUZPEL7wRXNK7vRqEj7Q:10uQ4sI2Pqd0qEj7Q

Score

7^/10

discovery evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.maxparking.nearme.gamecenter/files/4ab6e21c.dex	5044	com.maxparking.nearme.gamecenter

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.maxparking.nearme.gamecenter

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.maxparking.nearme.gamecenter
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:5044

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.maxparking.nearme.gamecenter/databases/com.google.android.datatransport.events

Filesize
12KB

MD5
ea628e04765adaf4238a5dcdff4bbd51

SHA1
a801947619ea8c368efe9c006a324dc6339ac60b

SHA256
885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

SHA512
c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

Download Submit
/data/data/com.maxparking.nearme.gamecenter/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
a881de2fec9c1b5de76520dd2461ca69

SHA1
d7591a346e891bebb9585917a42c74fab260512c

SHA256
38d32d160ff10cfa5b44d29008cd8d5de1f61aecf095b6c8632e2742f2b98378

SHA512
e9ae8bfd310926424a64799139e49f617b9715e0ae794b33875dee006fdd7843dfca613f073571a5622933b5d6a430f9ce90a92518f5e3425225dcdee998b6f6

Download Submit
/data/data/com.maxparking.nearme.gamecenter/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
89680f55efa0050495d4021ccbf72642

SHA1
f2332eacf979bc087cdcc42819c57ac91b4c7fda

SHA256
1b022ee0099b5c214fc939e9d1cf57eb3c151f19402e2173569d048456a6f65f

SHA512
d936106367209e25b14f443504c32d6fca4bc2f7ee99678d3fe45d470df973b580199006e2738c643e9ebc7bed6d29b6cd10a7511b325cee369fefabbb119582

Download Submit
/data/data/com.maxparking.nearme.gamecenter/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
0f015435cac303a5b4d38b347e395223

SHA1
e9201f316d3bcae7986d6274bb6771c14447a101

SHA256
d3a7e5ef33cbbf2e0855bc53a6f5a47d04cd4b42879f3864b09360688e01d35d

SHA512
857226884ccdda78c06ff09608465410c380f28fad7b869df6b2c0f913a2e393b4d9b5270da0f430899e48bea1ba46bb371f330ce3173ce8f84c5e259c9643a2

Download Submit
/data/data/com.maxparking.nearme.gamecenter/files/4ab6e21c.dex

Filesize
1.1MB

MD5
8b76106c5b29dd369aac0cbe58fbc2a4

SHA1
e49880584e12b3fad7e6eaefc563f888ce7841da

SHA256
f29783c333989455959c9ede2fd4ef70bbf311cb21f9156a4bcfa7839d969f63

SHA512
390ea86a42dad1888b1656bab81cee4a2c23bc59a76b70d72e93c37e414e80f7441e5b519a709c8cab5d923f3e3cedd3ee160615d6e07478f1b4607eeb1870d9

Download Submit
/data/data/com.maxparking.nearme.gamecenter/files/PersistedInstallation2927567290585435609tmp

Filesize
90B

MD5
4426b80092277a78fac2c6a8cdef4c2e

SHA1
0d425236dfb2b84674d6736805291ac3fd6ef81c

SHA256
dd8fd0e0c497a3c3cc9c9a25a8c81209b5743742ea351a20d154bb637aa51deb

SHA512
c4413e29fd5c2627260d14be2b9fb7d96cf922ac53912dc9e50ba83b5d88f53578351a04b88c069302288b1fb127c92081171812cf867bfe710a76db6993cb8f

Download Submit
/data/data/com.maxparking.nearme.gamecenter/files/PersistedInstallation8615374660615066221tmp

Filesize
567B

MD5
f52f2b0676c8d18b5241ec9f0ae8ec0f

SHA1
09d313c58acc558a8d56f053863524f65f141b14

SHA256
7874eba2603b5a3e52bb82e408854fa68dea505a8c6b9e0e39b90f4bf3de8a86

SHA512
8ea1dbe9c26e7e204a550a1646dc95bd4aebb78a3775cf230289f6cbe46090baa9fc01bf3a64e5d34426c4587a496b9ee0497a5ac8eb92f78cafed6535e04a10

Download Submit
/data/data/com.maxparking.nearme.gamecenter/files/ehD

Filesize
359B

MD5
b5e0534c37bea168bd3d045d0eefa0b1

SHA1
6978846f5abde4fb0b8c8f609c2406c87d8ac5aa

SHA256
a3fefb932fbf5e442b6ea9e35eed39d51bbf281818b13e76a4a363459a53f229

SHA512
b562b7ffd4f0e46de35f2830271d2a582e596eb8e6970eb030cacf3a740b47a1e33725a0fbb945a588c0cb14626e5b90369f5c9d885f5722b3b51d226f60c515

Download Submit
/data/data/com.maxparking.nearme.gamecenter/files/ehD

Filesize
601B

MD5
c5b66dbf9ff11175e3b4b3d0326b9d4c

SHA1
c12218ec3eccf9e05a72e3f9fe3802a5383944f4

SHA256
aa2a967f6f8814f13da7cbfc7989d1ea87d6e9a6c9d47c130f1257a1718e7ce3

SHA512
bd6d9d113d07bb8b3ee2096eaee5b8da5a614ff1735bfc3d4ca4b54c1a24e15f5a5e8457fef6590d4a93cbd4a7ff04792157fc4eaab061730db42a518fa6166b

Download Submit
/data/data/com.maxparking.nearme.gamecenter/files/rB

Filesize
228B

MD5
dd1ca05ea2e4059784aa24c60ce1b39a

SHA1
eecf35c9b891f5a59d8197c99911a4cc3dadaa91

SHA256
61cfa4ed5cc9e92f9d0bf8b5bbaf3e8b48995748f73efd08c61c3ce5f3f82812

SHA512
4d248c09b65d8c869058d66abcebca704290b0b4ed9a729eff48bae9eefb9f20afe752b53b16da028f97b04715a4c4c0b18f0fa85809f95de4185230a387e520

Download Submit
/data/data/com.maxparking.nearme.gamecenter/files/rB

Filesize
228B

MD5
ef5fdabb9e82179da5eeecef680456b5

SHA1
6a8691fd14e9c64f79a8ad1c8da6c9cca0e168b5

SHA256
6baeda3038efe61548382167b240a1e6417db2f4a7a732ce5d4e208bc38b5401

SHA512
0a472cd73cfa1737596d1838ac842c8c28128db92d5aec2429b1f13a804303c3142878b5542bb763a0c38176fe1f17ede2c1b4f15d3d579017e215942aba491d

Download Submit
/data/data/com.maxparking.nearme.gamecenter/files/rB

Filesize
228B

MD5
c65bea91bbeaa0d7a9bcd688649246d7

SHA1
e8e5bcd321a226c5ac77c9461f52ce1f5c615a6f

SHA256
3823818052e7c187562c8c96ea9b6731c0d60295870e45fcf939e706e5a6f4dd

SHA512
f6b00a6eda0ea67b4713c036f7521e85e1bf2250ad7b6bb39765db614dd7d36a5d27a850a703ffe6f218f7f24012899e632dcbf0de4feee3b61da4cdea06d83f

Download Submit
/data/user/0/com.maxparking.nearme.gamecenter/files/4ab6e21c.dex

Filesize
2.8MB

MD5
a32c0eaa35150b8deb30f5a396da4104

SHA1
035b1771e6cd13ebe380a08c830d1f64fe851bbf

SHA256
38fb2469c5ce993e2770ace6386187a26dc37ef35917db9f955ed4789c1883fa

SHA512
639b7fb4b48c58d0052638f84174028da541db075fabb8f9d849ff645adb1779a794ff3b949d94717682d6868bf72d35ea1c83cccb31ab39ad53a5dbb92cac9f

Download Submit