9cd6b594238e4ff8c19dbbacef0a795ca9ca51089cff1dda58f847e819addd61

Analysis

max time kernel
146s
max time network
144s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
07-03-2024 13:41

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

9cd6b594238e4ff8c19dbbacef0a795ca9ca51089cff1dda58f847e819addd61.apk
Size

1.7MB
MD5

36896136611abe381cbb5f16b8f73eeb
SHA1

9bd8434c3caf8e5b64670e6776671add3bbdfbe6
SHA256

9cd6b594238e4ff8c19dbbacef0a795ca9ca51089cff1dda58f847e819addd61
SHA512

b1476c3b5fb1b2b8c7bc94f235649d67fccf928aaac696a4dcf4900415295793b8cb5c1565a5da5459acb136270d69ad4beb5988c7f7cd8a72167323613af0ec
SSDEEP

49152:gbzv/J91CYa14+es2lDjyfpsRIFYqv3a01Eje2:gHnaTNYDOfOqFYq/j1Ejl

Score

7^/10

discovery evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex	4383	com.candy.heroes.mania.nearme.gamecenter

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.candy.heroes.mania.nearme.gamecenter

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.candy.heroes.mania.nearme.gamecenter
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:4383

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.candy.heroes.mania.nearme.gamecenter/databases/com.google.android.datatransport.events-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex

Filesize
1.1MB

MD5
4d16faa5f39f09b64ddbea9d375ebfee

SHA1
58d8285f82920537b2bc5aff7af4617decc7b5f7

SHA256
44dc3366840ae9938b616b16011af41184aa055190c0093a26a42e94e238be24

SHA512
9c06343ac092f103d55a484d75a9b405d76ea8cbecce2ab7207f36f810fdec0165961e5d0bab8a94fa2fb939ca67a444f0ba3d78b283110aceba9c7b1ad8464a

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/PersistedInstallation6945456973516832174tmp

Filesize
565B

MD5
8acaa87b2161712f74b439b4b09a31de

SHA1
00d4bd4aa0ab1ffdee7ae0f6aadc8f3aef61f1ea

SHA256
75031485ff628af3f57da25db016c759934d9267cdc9cd7470a57de232d3f360

SHA512
e1eb0c338f98e620016a8e44b978fd442b644d97a793d2b2604158dff0e002c4422b41dc5ed17d4d06951e62204fa5e847fdb93c40e22d8df86060bebc23ca0a

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/o

Filesize
661B

MD5
2aed1bd19551afe8b7286a92c1f51285

SHA1
31a2bc741d3841279fd8e5d89ffe0dcededd1fb9

SHA256
78f4f784e9ef61f140062335c36d2dad37089c246d1f654b4626f52d6feeb400

SHA512
adc900cf477467fbc059ee0d045d23f896dd6d64003bb1a9a28d65ffb932b9054302498268b34267f7060c3f11fe4759b083e5c7a3a183a9331a4723b25f4191

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/o

Filesize
404B

MD5
8a95ec34dad0cf46b85cf71cedf9e830

SHA1
194ddc009dfcce92a5a064dcf130add5dc660fc4

SHA256
56050d4b3829047031987d124f91159e34a20a9639e3e224d310e86a798c4788

SHA512
f838aa8f952da2cf0dd341d7b7cce88f9b4cee07d976b54a38ee83201980d5cdd8cfdc7ca416d8cb715790215d790628606b46f1b163aad3dd271af46134bdd7

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/u

Filesize
229B

MD5
318b436d3c2cf2a1b11be0b929303405

SHA1
86e855a5493d932b125c42eea7bf0b33190c80d2

SHA256
8fc4d2e2cafbf2693026b6d6cf806b62154fc9da671ad80c396579825f8e7b9e

SHA512
b5c8195faa52f91bd3b5b9c24d4b3f5341d01decf320f422988401abd5d5d400bfe11705525f12a95922d23c0ddb5fb8f183cd98b7149c61d66b5051c3800908

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/u

Filesize
229B

MD5
09e0cf1ff50875cf6638ccd5c9d0d838

SHA1
b1ce38a7a070280599a3e625a48fd3cc4fff019c

SHA256
85802610401054576a298b16f65e10a45ca5b1462f0554fe106476c65b8eb40a

SHA512
29ac5e12e46f93d529cca80e0a7d45c6746d98398d96fc0bbfae1a8ed2c5bf374fb48ad6ec149fb113c6bb175406ed4a92253e2f7634b41b16152da5134f4b5b

Download Submit
/data/user/0/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex

Filesize
2.7MB

MD5
fd0546e55142ec240677d863529577c6

SHA1
6b66184b1c2fbe02b72ad45be32a1f4df07c733d

SHA256
482e81debb93a33f6fe636d918c4fd5f29267f9c89d322a4fe9a07cb4be218ae

SHA512
3db0f7a070af803d57fe1f147ad7bb4812e4a63a35d940f0a758f1c7627c3f5fe2ac725cba9a3e2f77b11fb87f2df7b7881dcff125f39f8e16e9dd0b63feb209

Download Submit