923c358737cb0e3d19a02aa3a415571ef3dadd7322cd8957e346598e5d10f288

Analysis

max time kernel
12s
max time network
156s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
07/03/2024, 19:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Snake-Aim-Tool-Fix-v1.0.9.apk
Size

8.3MB
MD5

41d15444932c48fd6fa4c76062eecda1
SHA1

4896335f98de9c7ca2526aaeee1503f876dc61c3
SHA256

923c358737cb0e3d19a02aa3a415571ef3dadd7322cd8957e346598e5d10f288
SHA512

43edb92fc1f0f0b8f3622b9533b5d8302fe5dad8c7ee473967dda6198e8d2999aaa0f7a33f4839dfcfaacc6a3966adcd7b6b14974b59bcf03c427a8353066669
SSDEEP

196608:gXKgy4ZTnHAQ4ghx+LOKCRvz5zPikr3+S:huZzHAR2x+LOFrxqkrp

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.iron.pen/files/.plugin/version-1/base.apk	4188	com.iron.pen

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.iron.pen

com.iron.pen
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:4188

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.iron.pen/_.dbg

Filesize
1KB

MD5
1275d8b6c8c86117d281b25683611ce9

SHA1
41defa03145fd08a01c45d7d8cfc1923ff574398

SHA256
0dfd8d4e8d7b51a8b543579d3fa9d52d94c63ef165a705644d64c0c20946908a

SHA512
88b6e4c3839508e44b693ec8f97aedfbf2c3ec93fd89b66af727aa5cb6941720dfcd6d65875821b92881cfa2a54b5cf3e0a63897958cc0acae97f32e20e87ab3

Download Submit
/data/data/com.iron.pen/_.ibn

Filesize
83B

MD5
1c8eea62c13a5a2bbbe56bbfb91711bb

SHA1
688586a462b064f4d9b94dd981835e6ab35c5a37

SHA256
829ab6fe3ab7fe6f5f5ec3e8684622f335ff11483829af0d4e9b798b13e5a8dd

SHA512
6f4538310542f54913c47a94bd51716537fb841c0b277b6088d875190304729e6e1b6bcdd021506a0ea503f4f0ab0bc0231c1c300fd0fa568adcc6d81b630e06

Download Submit
/data/data/com.iron.pen/_.stn

Filesize
272B

MD5
2c99bac75196b13d6e773d6dd887bd19

SHA1
bc4c5c749d19d89b234ca4e4fb61183de3e01f72

SHA256
57cca9a74ecd73c1eedfe2629717901ae22bad02edf064d7abbbbfd511016817

SHA512
dd4262693a2fbc55b22205d86714711e2d3074ec84f2223b119c4f3bfae10ad34c64728253c4eac1f818f86bb7d53ff74c8d1fa9e95376e7d44fa16b95c02e9a

Download Submit
/data/data/com.iron.pen/_.stn

Filesize
272B

MD5
8927321a310a971b3c61166b37fc0f68

SHA1
e837de7c6e14d8f2bedf9b94e3c8f101d83b89b8

SHA256
acb8f27f260faf30c139a25c141c1b8b5aafe8f42fa40a952bd6b8a58a2c4f72

SHA512
afcaee62546df5fd37b6e0b39aa76a484321620277e3fd2891a241302934df1550c81bd803e94de1054bcfc8056c6f77c86a8d7ef904b7c8e13c5dfde7deae12

Download Submit
/data/data/com.iron.pen/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.iron.pen/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
5e672f8a6a58d362e4751bb916f62cd7

SHA1
a69c9f5e205c662c46552e92f23ee77d63be4a1f

SHA256
a09cbdce5b361d48a7189d66910dd1406b1878007e9ba9ff8b2156423bd76d6f

SHA512
7315b409ce63c6e21843da4390ed5ee7f6d704b53ba219763e427d99a35b4187f4925e8fb902a1fdbed1ca612e5dd800106880ca039a7104b012539cdf9ae634

Download Submit
/data/data/com.iron.pen/databases/com.google.android.datatransport.events-wal

Filesize
16KB

MD5
db64a4839c55714c2904d8f3545dc3a9

SHA1
beaf91cab581275aff5b5dc004c442c8dd9a492e

SHA256
2b20c50f02ccbd9ed922451018630388382fa89660a71ba4f731ffd56927c835

SHA512
cd213f87a3bfdc1fd2d3ef93e41760d23d0f448696d44d2db5a7ce1a8c6e81707af45d8969119be856d19dacef8fb1da7a30a91e18f30e8bbcb5287e4cd328ab

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db

Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f30ab83d4aa7bac226f33e33c2f47a65

SHA1
c30c18402305f7e19a3053f0ad3f930efe0ffa5c

SHA256
11d0a953b9b481d4976dfd80c9d0e011b1f9c2746e76b0439e727820f10d3294

SHA512
5aa7918f5a0d661a761984e34d4a1e8c45b114b79143c3b0c60bcf3ee1f9cd317f3bdd28530a8b90e02eb0b1ff10bcbde570714df05428f27770fd8537a6d75e

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db

Filesize
16KB

MD5
bbe3b8a9ef4642c28334bbac3cd852a6

SHA1
17e07f14f4151d58a0bb192e349b0c897eb78848

SHA256
a9f5ab9bb802105c091217c89e896388264a2580eced9ecc6da98444c4bcf7d3

SHA512
8403918d5abd471631e506965c2fe59d8f50a23e3a7cb417d0065b88837b9ff9e8e8797a74e14646bd58ee104889df38718967a09099a2a5d2e52e4e5de850e9

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db

Filesize
16KB

MD5
143361575db0d8227f6f20c64f04129c

SHA1
3918f6b3bf17ebf40fb5569585fae2b35614ca35

SHA256
82a285fb3f3f7be629499fc2a6bc950098d6d5817d8f4d27e90a70ea8753290a

SHA512
0b83d0d0b0a84fe551c1e7359fc66e8ac1cd94f39cf50bd1e4683ce8e46182da3fbeaa506595a4ab92684a39a52b3bf575b4db3954b1df15d0d8d1b9e53b6ee8

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db

Filesize
16KB

MD5
2d68c86bcbc042104936f6d51edba4f5

SHA1
6f214e811dd0dd7d04e6de8ce58f8234029d72d6

SHA256
7ac642074d3672596d94b313f0807648ab3318a022290b8656d52996ee0d027f

SHA512
e7717db2930b1fb80fabe037c110204da97bbbd47593e8f1ccef8d76ca6c7341bea300dd38a881020da9de9e8272fccb03f1b9e6e26f071c17028241aff0bf4f

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db

Filesize
16KB

MD5
3e881d9a01ca707bed38018ac69f4518

SHA1
5820f9351d7cc8082de6e5686eb9f8fedf6fb830

SHA256
4a5bf9bfe9b032546f886dd5fe6717de78716734aaadab620c0444ed6df5151c

SHA512
8f0395c94b3a449f3c61e7117f400c7b8a12c23d3655be6772bce2c8aa0ec8d8be8000c5cd2c6e10b334ef54a4add5583717393c3239da80c334c45b8b392db8

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
10942a39776cd5a093f9c0064f5fe6a3

SHA1
e49d888adce53dfcae291eb8e5d9d10eb77fe20e

SHA256
621fcbc86302acefffc8701f34b10fe64226c0b254c28b115f69f0d1d8042513

SHA512
b7548e1f13fb00b52c20ddf65d2078fc2e74833579476bec9d59e292e6ec0a3ca9210465f0bb54d1fd4851e5211436188bee7a41010fa87b945ba30cf515c521

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
47f2be9abe28b7058423c6417314ce74

SHA1
d06ec550db2c6a00d40530c04bbe8f506b371ed7

SHA256
f84d57a9bc10053066125718da1f1fb75ded50d88af560cdd3964036236b9901

SHA512
a63888ccddafddd30a223485c174060d9a3e28eede5bd57834e6fc70057fea81dc0fbbc480a7c709f29e90ad873006ff90054cdcf41f0de3fdc4b648f4d763d1

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
993f86fd39b50103783be237615c4ada

SHA1
2baa809b58305c90726bafe8556ef015181ee871

SHA256
88bf35041bdabc4f443ba5e414291e3d9d050c3e99c3860d28d17e40940f45a9

SHA512
8fb30b1ed7adcb7d26a57f2521baa58ac61b5cb4706f2fda3909d361071e09ac0087efafbd5464b4c1035051411b0e7f1a8005d78a636532d284aed3586e2d27

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
d1d96b4082ed576e4ec41dfcaf81a359

SHA1
a39ec90aa8c0522eca79c638ca7b1547d8db59f8

SHA256
38dc4180cab4d70542d3cd43f2304281d5d776983306e50a3390cd0ebe9b5b0d

SHA512
ecf3f7178f4e39974ce009d8a4a765c1475fd3eec60b42e41d7497bf2476e898afd4f8c7d2a71205ff9c45192df5b422a826fcd177f604fb04a6f80ec2197b44

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
adda8181cab283133aff6abd3a3e344b

SHA1
e2713e1bdb4e690df9f6a35026c0dc6ab12a13d5

SHA256
13fab37bb44d2ac1728bb057b70bfb16f4afdc9e1cb0fbddb199a376d2040005

SHA512
ea7f2f5275040323cb666a294d631cc319180d5629e35f2d141f45158ede890afc043658a00396e969b7ed8c86d1f5d0b5fd559722e0a393bc740aa438834d87

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
7b83720af34a88c1f7b89229e88b1dea

SHA1
805ddf3607261369de2a114e53b535d9c7df5fb7

SHA256
80f3979b697c89f2c98ac84183c14a535f382dd76cb57aa5e2f04e8d27fc1ae3

SHA512
46266f4cf0f2a73458408cd107e3b11ad5e49b22397deec47bf3a3627b80e385848b3227a8d4d591297f2b62d4c276f0325b0f07541837868590edc5538fcd33

Download Submit
/data/data/com.iron.pen/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
3f0a71789ea903deb972f4099ade50a0

SHA1
0e637919df9b4ba8e2a103e6f93ccdfadd6005da

SHA256
aca45686c8fd84ca5877de044dfa65c12f69c04836f239b6814a562364361a7f

SHA512
ce726378534f0120361f9a4bdbe6934501428b3c31df97466ed8a9d89f04dc88ee55f54c0cfa51c4915ef91fd428cea5ea1fda501728564288c239c5fac2cc02

Download Submit
/data/data/com.iron.pen/files/.plugin/version-1/base.apk

Filesize
1.9MB

MD5
690c04f9fcf01a061f839e5ceb2ba4d5

SHA1
76c34d9aa5cf30037e6914ce1e758cc5628b0b46

SHA256
b17a1e4e86f5aafd1ee65db248a6ddea47ca832c7f78187c6d3f1b531947164e

SHA512
09e3afebb6d95b7d4dd30e078a4bc32359c06190b4b9caa52aa63dafecdb327fc5d7b1537af8a3d225fd8db1fb15e552b1c32c5d606e8a6d5c16bb69b930e6b1

Download Submit
/data/data/com.iron.pen/files/.plugin/version-1/lib/arm64-v8a/libmultiapp.so

Filesize
2.2MB

MD5
99609c0cc26a05aaf2bf83b69bcf8ada

SHA1
84f8dd84bf2b3a1e4a49e499db1013131887d8cb

SHA256
26c6378c1551cb397c1397a0e926a61588f574e1a53ea6cff28f190833b44b03

SHA512
24d8d0b6253223578e7b2cd81cbd7aa7a91786e2fcb55ce205de8eefa97572a87c587dbeb521fa96a41b38f51c9237045d76c5a7a15187ad4eed57125fbfe073

Download Submit
/data/data/com.iron.pen/files/.plugin/version-1/lib/armeabi-v7a/libmultiapp.so

Filesize
2.0MB

MD5
d9d309806ed9fff4fad05eac3a50ccc4

SHA1
bcf51edcba98332f52073a54cc4616d5624915bc

SHA256
718cb58f5e562d7892fc76ba9b91d309abe5d203949004be67261634cd79b6be

SHA512
2247f7479b35c58423cf891cb0d35df257e8718811b19b619e9edc7fc42388410de797455919e5a855fd67d5711db0a003804f07375a07cd2d3a801dac7b8e94

Download Submit
/data/data/com.iron.pen/files/.plugin/version.json

Filesize
91B

MD5
d80b9d8c0f399f9cc7ec5cd677be84d1

SHA1
b6379774e835a589fc54df6005d5e9de2c431584

SHA256
93baf5f52e5fcebe5c4410c51a2f912e3142cd591badc694c1b5223848b95c9a

SHA512
deffc05f8d4e7a58382706f0dba19f82415835514e3bf61b89d396ddfb78f16b4171b4babcd030f32248cfc3a041c92228369b7cfe9094cf258251db4870e452

Download Submit
/data/data/com.iron.pen/files/PersistedInstallation2734396850827678415tmp

Filesize
90B

MD5
ca18c6a3146398283839b5c22d4ff212

SHA1
fcf1a5bb307eb6b6c54215aac8aedd3d2394ccdb

SHA256
aa9dd0f012927722342533943ff8574a3c7bb4cdb203dd949b7807f94603c184

SHA512
0b698811f17cc652dd121badff95d73a56b56938139928d096cf571dd3a3b0f36c86126e281fa3d5e877795b47e8dfab34a1e108ce32ec361f6149a9a3a49b2d

Download Submit
/data/data/com.iron.pen/files/PersistedInstallation2820060949435939808tmp

Filesize
570B

MD5
dc5d5b3ead4a3c09bb96838b562d3c0b

SHA1
33696a97020da5aac92f02249242621a6c326fa1

SHA256
c6a5c4453ed9a94970173243a3a11e0d25788d5fa1386bbdb093eafd36a9e766

SHA512
c9a4161a5a42c0c3406c6407982c867e5eb0b6bd7a55685d602d6c3c14d92aee2f403b091430e81a45f5b25e8f0280b413045fe3494e4355ee6dcc693a4c081f

Download Submit
/data/data/com.iron.pen/files/frc_1:918010152455:android:1e330b030ebdb543664ca2_firebase_fetch.json

Filesize
607B

MD5
b14cc800b4e4579966e757ad2ca5d58f

SHA1
adf9fe83b4c450048c539a060cf999dceab793e3

SHA256
22052d0931488822cd53b618bc25bd641eb1de97e3b4e47dd2075e5d851efa2c

SHA512
b149f28c99de4f5cbea590898de34ab62201b2bc30134fbbc48232a800ec406a28a6b3140a35d0cfbf639577a30903f03c73c46896c5f8116ba61c5d336fd5a0

Download Submit
/data/user/0/com.iron.pen/files/.plugin/version-1/base.apk

Filesize
448KB

MD5
4a8a7070529a66916c2dd1c7123fae56

SHA1
442b274b92564abef409740c6461e8fd3a13b92e

SHA256
9f68a235016e483293e5328256aaa1aba0c4c53571f6d8d306caf6545819825f

SHA512
2aab40c581c4e1332aaa10709f6736f8d33d4184e6b8566f5141608e6223b49fbf16437a4eff6751956cce093e9cb81acecf4b169747ab7e8ea1093a1e15de37

Download Submit