eed4fcc5a85057c5f1e943f29d41105b10c6845345b2eaa6cc646e18cd170bc9

Analysis

max time kernel
148s
max time network
155s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
13/03/2024, 03:44

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

xBoost_1.0.3.apk
Size

11.4MB
MD5

0576e46d00455bd843c0fc87051c6faf
SHA1

deff98f768b4542d7d6295350f02f6904ed46cbe
SHA256

eed4fcc5a85057c5f1e943f29d41105b10c6845345b2eaa6cc646e18cd170bc9
SHA512

8c6218418ec1c851c52a627d69211c0b2e59018986b13278434ff0256e4d3e7452b1eb896162f7fe0f722fed72cd73dbf6bce30ae9b601a8b191f88f8e5904cf
SSDEEP

196608:R2e7YXyp9UUDSCdzBZgM8kRiNifGIDgNnHBQUK4hVs8NR:h7Ykr2CdzBZtSNizOqH4h1

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 3 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.appsamurai.xboost/cache/1675452915457.jar	5061	com.appsamurai.xboost
/data/user/0/com.appsamurai.xboost/files/audience_network.dex	5061	com.appsamurai.xboost
/data/user/0/com.appsamurai.xboost/files/audience_network.dex	5061	com.appsamurai.xboost

Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs

evasion

description	ioc	Process
Framework API call	android.hardware.SensorManager.registerListener	com.appsamurai.xboost

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.appsamurai.xboost

com.appsamurai.xboost
1⤵
- Loads dropped Dex/Jar
- Listens for changes in the sensor environment (might be used to detect emulation)
- Uses Crypto APIs (Might try to encrypt user data)
PID:5061

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.appsamurai.xboost/databases/Setting_mode

Filesize
12KB

MD5
ea628e04765adaf4238a5dcdff4bbd51

SHA1
a801947619ea8c368efe9c006a324dc6339ac60b

SHA256
885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

SHA512
c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

Download Submit
/data/data/com.appsamurai.xboost/databases/Setting_mode-journal

Filesize
512B

MD5
e182ee892e9fc2194bac9ad66daef7f5

SHA1
37cc0bd00208ec85be5c9792c8a3c8ecf1cd3a6c

SHA256
cd5406f4603b706a853cb660e8693a84a74b0013fe83699066b448daf708bb64

SHA512
95fc3e03ae9241251cd086b2009e16e1fb010e57f80d1ce7ae3dc09db6d0d11fb1bc623c978b4a11a8c3c62555b6768e6ba26a2bc68bfa43feb11b3cd8c0cd6c

Download Submit
/data/data/com.appsamurai.xboost/databases/Setting_mode-journal

Filesize
8KB

MD5
ff25609540f689a61309a6ef28a23735

SHA1
efbdecd0d6ea9ecb4100a8b2e1f9be883f180353

SHA256
b4c36bdd507385e34e4bd4e79e11ebe2ef15bb9451b37412b23990b21dee6edb

SHA512
94b1764990d21a1257b3fd86c582bf5b852893d746cca40b627756f218fb1a366415b483a6387fe77680d3661788926387a9c6aa31a1104cbbcb046251b53e36

Download Submit
/data/data/com.appsamurai.xboost/databases/Setting_mode-journal

Filesize
8KB

MD5
55ef78598516e19ab0d0ee4aebdd1655

SHA1
12a56611edb3ce8f5cd41573ece969b37d853168

SHA256
14edd7ef088f2d539bbd691fa828c55640444485e0129595fd42f37fcdd70aa8

SHA512
7cc08e7a412a49e1d326775a24f104466a3c03054d7a1e0d77ceb5a1e693891e2a72985e427058ec57a5e3ec333dea2997de9f1ebc4049edd840d9bc30a28bf9

Download Submit
/data/data/com.appsamurai.xboost/databases/com.google.android.datatransport.events

Filesize
12KB

MD5
4d6c62c1bb0338082f40a5875ef35f83

SHA1
186cf104f89acc4a0d5bf131f67e4f5586701f14

SHA256
6c849bbb1270eb4fb26ad2b73496996853521f2ca6002ec1db4f64a421c4202b

SHA512
1f03522f8f003538e64ea74367866e0bb6489a204ebaa974d720964b44f836218a58f818c680542bf0144bfedd23a5e06cfb8eab01043a664fe1178d6487c12a

Download Submit
/data/data/com.appsamurai.xboost/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
1a299c7db4904bb2cec9fedae27aa1a2

SHA1
bdd6f1d0373d162805a9882dbd1423330b969e33

SHA256
9b47030db23c128a8f70da518672c51ee193bc05316865e4c2a67e8c736c21d7

SHA512
6bd2ebe6a2d0582be888cba1792101c2e24d430220068db68d628c3675ee6ac32716510a2c880c54fbb09c263c666f7273fedd0586ee0cb98bb83e6b150c898d

Download Submit
/data/data/com.appsamurai.xboost/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
fc67522daccbf43e98c234691d8b8392

SHA1
74e9f586288628695c7edfd58595785f527cbdfa

SHA256
48b8c07d9268c1b4606a55bad3b9f478ed0f2c7908a69f66d180a9c1f2f9b168

SHA512
9cf12dc90974e99838871089a938fcfadb9161403b0688f4e2ada50ca8684f9d8a0ecd7f64dfac465d544ad0d037bb69d9b76148335d1fbb23653e43d2291687

Download Submit
/data/data/com.appsamurai.xboost/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
f0a291446fa5b48d9f439814aa42844e

SHA1
eea311c3e16c465c70926421ae1a32d1481ed496

SHA256
3c385a762005756e088eac4cc95d49a8a812b3bdad6dfe403a572fbb7d1a32d5

SHA512
30259740d50f1d4e89b9c859840b0d88b8bb269a5d29eaea75c5a7e1aa442f0741d8bc1cb6e9d5db3b0c9c6ad6d6926ac4de863256e752364a047145db2de0e9

Download Submit
/data/data/com.appsamurai.xboost/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b245eeca030ed91f430dd7821c81953f

SHA1
01e78d831f10c617724310a471ad21223905f88d

SHA256
e9ed5b630dd8c2ad53624530bb7e8c9a9abcd66fde8792ef6877f9ddc7a08b20

SHA512
f8a64b9b9f7677dbb3118da0a8efd635d88072df629a6ffa790c36e7b6d22f5e90abf1474ab7efa81bdbfbf8677d2258a5f92654fbafa65f36edfbeca254c8ef

Download Submit
/data/data/com.appsamurai.xboost/databases/google_app_measurement_local.db

Filesize
16KB

MD5
9a12ded5f32ec234b50ff0cb58a44dfe

SHA1
5163aff5689724838f05278d03e9eae5504ec371

SHA256
4c481242f6fc9ef5b430c95d4fbe3a2cc463ceb5aca324c3d47882dd0fdc274d

SHA512
5427f2155338d8113501ec35ce5ac0157bfe322ab212066052c74d6d8a6a867612f91eee955397d2d752aaf27664f22a8bf1550d4518c12187aa10de4cc47f4c

Download Submit
/data/data/com.appsamurai.xboost/files/PersistedInstallation1379063705221723535tmp

Filesize
566B

MD5
6f720f3837a8f301510d98ddfc4a2e9c

SHA1
02416221c41e7e9d8ec4498034a728ac7506b50d

SHA256
fd0c9b675abdc15832bebd65e3429381d5528c2b0ca57c7d4afbfe49fb022e71

SHA512
eb17c87e10cf6d123da5f9fe41d354314a4f935399b743550f9ea52110a3b25883c846053d733b1d7d90c435e90e582e77b4383789141569b9a0cff69a855784

Download Submit
/data/data/com.appsamurai.xboost/files/PersistedInstallation4648219560717788900tmp

Filesize
90B

MD5
5f35fe27dd93d7fa0167c871ca45cf40

SHA1
1bb84cc4b70986e1219f627d21188c00a6cf76e4

SHA256
7f27aa836a8b3ec69857c0b56ee42cb8bded74c84c913a48a38d8ceb28a2bb9c

SHA512
e2a14e4ef722d5a425b24e61bf0fb513de2ac7fd2f6daf3b447978238d7490139ac6b0364af4eda541800703ddb106bea9655d9981b4a6a75041d95bef5a8a1f

Download Submit
/data/data/com.appsamurai.xboost/files/al/1381250003_28x28.png

Filesize
539B

MD5
759a106983ec92f34344dc5064efd29d

SHA1
2c237ecc3297a144ed9eed2c4e0ce68d5bffa07b

SHA256
1b5b3be1232ba117e19d81f6d0a2d6d1d14ee6cf726fa2a2800e19166736ec81

SHA512
516b0053563a00690e503780c883d51b84143498305e2cc7bbee4489e1a06d38a2c637eb3c125b7d5e1def35e31a66434f403c2a7d9634e87c8b87f05a94bb49

Download Submit
/data/data/com.appsamurai.xboost/files/al/1706168185300_300x300.png

Filesize
190KB

MD5
648c433cecac986b7a63ebd1277f9596

SHA1
af1a30b72471b27e50b242588846a7310f8c9a98

SHA256
e4e230a86baf57f4fcf6f774309983863d34e1407581aabdaef49ff458ada837

SHA512
fc2d189e32caaf84b6205c0a6e469c4d7e379f977fad7375ac7503b259a3504bf97f31809c92244a50bddfc28835c3b95a416f7dfa2a94158a930097f465ce17

Download Submit
/data/data/com.appsamurai.xboost/files/al/1709610279043_300x300.png

Filesize
10KB

MD5
fa619d10b94ac9373622eaace1af07f9

SHA1
e2abd58b337a84ba12d6e90f681c1190021757ac

SHA256
83bea889d553f783eec52c8777a1363391351d518baba82374ce7e2e70c31e95

SHA512
214427e60a9f54e3c4a35f1a2d80a1f2177bd362f29b8669679f01ae087eccab23c909efee45c89544c2df67c78c73247c6d56fe5ceb9f3fe39f86f9db5d9276

Download Submit
/data/data/com.appsamurai.xboost/files/al/o3602533_79bbdfaaa0c1e58a577c42498bcebb595fdcbfa5_v1_js_load.js

Filesize
280KB

MD5
2174dee46c78a46725b0a3b0008ec55b

SHA1
a9646c0dacbb96c7e9a09a4192048db5a175914e

SHA256
3e86b52a83b8822f3079bda32eae58d0a4de7abc72cc45678073bf7f22b040f7

SHA512
090215226d5f84e51a9de3fae262722b84f2c43c22046f6ebc4c93081b3e8fd113e8139c2e3e0a32a606851de854907e76bf57c6e4720c26608275d0087dd8c2

Download Submit
/data/data/com.appsamurai.xboost/files/al/od957ced_1920b2eab07c5a88283f473c547c79dc8663d1e8_v1_js_load.js

Filesize
617KB

MD5
8ecf65c0ea62e467beb8bf3307f0cac8

SHA1
fd2456c950ceafc1b259c06b322cb6f6b082081a

SHA256
f244c3ff2078a37b556acd2de2c7f7500750830e75a82b9463b4c781bb0eba13

SHA512
75602819cd01039ce318ae357204c83cb37956c0200d6fbc51e2e009ebd910727e6db4b81a1397701b63c04d60ba9082feaab198aa3ea4c93de302e47c27ee06

Download Submit
/data/data/com.appsamurai.xboost/files/al/od957ced_9d00142941a3f2970c14021f820aadabd6c86cd5_v23_phone.mp4

Filesize
656KB

MD5
ea6ed166cd2d5590bb4dd4a2dc50d1a1

SHA1
f35824bd81ddf43e25d145083758acd2bfbf76aa

SHA256
a11cc85f55b8b6c3360f11859c921199034a5756e8ddcb7eca2143edcd9b9cf4

SHA512
b8bd11e8d6e2bbdec2ff696efc5dfaa89ac7483fb42731c04e432f47d0b30037552379fd6fa59ea573b59b582d8a69e51b2abd1fbd2cebe26aa7c44e36fd8562

Download Submit
/data/data/com.appsamurai.xboost/files/al/persistent_postback_cache.json

Filesize
9B

MD5
a5612927e7792641607f093050b775bb

SHA1
99216e1430784a2fc369f81e03a28e5f681735e3

SHA256
4e89c765f879a6052bf02aaed88823281bbeaf0e713f91faecc643d6d31326db

SHA512
3ce4dd5f437b9405ea6e4d6bcb16512c98914b2dd15a01facab5fc68126698cc37e0448fac28408560552e9688ad1b6948e0fb8c9d11f893635d20e970cd9090

Download Submit
/data/data/com.appsamurai.xboost/files/al/sound_off.png

Filesize
6KB

MD5
d9a4fb40256f67255242c0f41a0d3de3

SHA1
1c99e725cebba2c3f5808d5e00c73af58f0790bb

SHA256
a7e16ed6d339c6a85870e5c18952f839d61dbd93d47dbbb49e7f7f9124cd0d2b

SHA512
a09d5d878cbf2f58ce256814b9d19d9122858609035b2c15e19e2da8171e36d0ffff4b33420d4d27233200b430307f1fa42459889b52f66e4282af8a84edb8fa

Download Submit
/data/data/com.appsamurai.xboost/files/al/sound_on.png

Filesize
5KB

MD5
74485ec832d65f19b05f5027220df53b

SHA1
49116a6b85bec84512241c9dc6e511ce10bdb7b9

SHA256
7a89be15d3a268c6820f385ac6d4585bf04b45e2fdff37948b2a73afa34c1268

SHA512
9acf56fe90a687ae653ab5014aacaeb7ad6f76982271df5f63e536a358f3f53b63f7e865fd8180bee96980cbfd4ba9b07b81977f86c9b9d0b41ca1dac0556657

Download Submit
/data/data/com.appsamurai.xboost/files/audience_network.dex

Filesize
81KB

MD5
c59ac571cfe6212665a0557e28001ed3

SHA1
3811a5113d82ea6c80aedb3a8639d78c813669be

SHA256
10611dac5cb7a8f27c68db980ce2a10bfe0c007d1e732fecae3a201b6cedcd03

SHA512
a8962d78e1174983bf4975f7a751f0a98e5708d8397b08cb2dc1da45c77c719be0e1db527b8be43accba21def6cd4313d73047d20967745ce4fcee7cd176c7a4

Download Submit
/data/data/com.appsamurai.xboost/files/frc_1:500272010383:android:c2da7e86ec0da98065ccfa_firebase_fetch.json

Filesize
108B

MD5
317431b25c0c2d507dc6ad4e260f3499

SHA1
17cecc27c149742b200f2856cd3c1b04258fbe5a

SHA256
41a34bdcb52b2aae37f12aa6fbb0abda1c433277f97d827b5e14c15722b80f3b

SHA512
1782d1b86902eb71c2d0b517f211693c44e86eee012f139717272a2cd2617a25c34bc53cda84e22254096700e90c6db5f375a77deded9c8bc3a9901c3282ba3c

Download Submit
/data/data/com.appsamurai.xboost/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.appsamurai.xboost/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
41e4fa46f8373ac32d95b929195d7253

SHA1
9fe4912964cc2af10028d21a3f2ce67c1be681f3

SHA256
ba4a5230a7dfdfe578d8c9338809335889c31cea17e316ae5d3d8887aa45cb8a

SHA512
c8859d2c19e0f87f86e6b600e7f7c6f3bf1a2f515be1d4c4b3747f10f18fa8d12208abe5adcd0d25c3b50bf5167e95463d9c55dcc81ece65e1002d7a88ae72b4

Download Submit
/data/user/0/com.appsamurai.xboost/cache/1675452915457.jar

Filesize
22KB

MD5
216bb03e148e333071ec13a5d000cba9

SHA1
c50144c39f6ad80d7b0cb5a30701272851e66851

SHA256
0869ba6efa2a0c4abb878b75bd8063d6b1752e31618bdbfb00cddec68107a31c

SHA512
df7882aa119eb88af3d859292a4a61e3852cc45d58c47466ec1adb8813622bed872fa977342e62718aa2a4c5f9a202f2a198ed1ac2aaeade0aabeac396bc4d56

Download Submit
/data/user/0/com.appsamurai.xboost/files/audience_network.dex

Filesize
3.1MB

MD5
5bec99a09f298f6488a91eea062b9aad

SHA1
959a17093354fc207f67efb5d210669d68b94c4b

SHA256
77fc2eae1b80b190e43d031600ba6c1e8b80ac1457e960cd3bdccfae98dc24b7

SHA512
aacb7d917dd0c2d2204f993f1bfee9583bd794cf6d2fe5344ad44995078b64e9ab4287378df87e58f427bead7671091840bf0ffda2f51f427fbd01901a4ae3be

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads