55aa4dcfc250ca84ca996cc5f0f05cf25ed72249776e163564af1d37cfb0b3b6

Analysis

max time kernel
150s
max time network
136s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
13/03/2024, 14:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

55aa4dcfc250ca84ca996cc5f0f05cf25ed72249776e163564af1d37cfb0b3b6.apk
Size

536KB
MD5

c1cfe3126e5bea13ece973b4b91a920b
SHA1

48a99fba8603240b641b3c953ad56341161daa64
SHA256

55aa4dcfc250ca84ca996cc5f0f05cf25ed72249776e163564af1d37cfb0b3b6
SHA512

012770031abe04ebda9d04b93f5f5e34f426772108fd68bf9b307e10d5f89dd2d77c1f268bdb1c0a623e371c1a8a50f7f44009d8473af08c9bb1728d9cf68485
SSDEEP

12288:DJMNOQYq16/20/BYdgmBQ5wL8u21a2CZhNxLo+ghB5KrnjR:DCOQo20aumBawgu24loNhBIHR

Score

8^/10

evasion stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs

stealth trojan evasion

Suppress Application Icon

T1628.001

pid	Process
5115	quasar.bistrocook

quasar.bistrocook
1⤵
- Removes its main activity from the application launcher
PID:5115

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

T1628

Suppress Application Icon

T1628.001

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/quasar.bistrocook/files/Config

Filesize
489B

MD5
3272a7288219082a5971c90000518c7a

SHA1
7add6bfc142ff809d9a0370c29cf4f37bc713041

SHA256
4a207510188b773689aadb3f39c257be0be755c7f1c7e437bfeba925495f956d

SHA512
85229466674da864279c56a1d12d150a0a01afe2354c2ac17d66648c5561169ba0b28bb6643f1c14ff5db5619d79bddf7a8789b3ef52139fa98ba8a8ef9bd080

Download Submit
/data/data/quasar.bistrocook/files/Config

Filesize
684B

MD5
0e512f806ffeae26a97e82695a637705

SHA1
240a7e3b052b104e1519846d9cae95893f5ea79c

SHA256
cdd63311ff29911b3f6d509ceef51dbb9107c704b7d3d15d415d72c56594fb87

SHA512
eeed24d286acf47a82ec3fb5c7e775d3a8c7449c953f91f5a14f5429c94daed3baa782b7629f9e884d71c6e5217314d3f6ca90c162f6f8e58c03a1a549754796

Download Submit
/data/data/quasar.bistrocook/files/Timer

Filesize
368B

MD5
89508be40b540c3987c1371387692adf

SHA1
30853c20aff54a79b64bfe98016b2a8b0ac46837

SHA256
571ee8dd9b150873d64a392eb52f79f751fbdbeeacd7a8bb8fed8445afafddfd

SHA512
fad85ef142787214dd951cbbb639a338602eb1b49e6af74416716ea8272150635a3d4cef2b678f79134e4c2c3ac514bcd5dab2773e200fa647252214fe0391d2

Download Submit
/data/data/quasar.bistrocook/files/Timer

Filesize
368B

MD5
dcecf3f39de93d95985461fcf8ff5b6a

SHA1
7fa36710904a5e8bbbdb03dde817e87342592a6b

SHA256
9f45fa8a5630b146e69a5bc329cee9cb0468707149faf45d222b861d326352a8

SHA512
c84b597bd06029c44b8cf4f7e4c3acc9b87ff23cc018a13b6ce615297a406d172e9b3817a4a09d45eef5c42b4be9175791012510c897b3aa89633438fb82307c

Download Submit
/data/data/quasar.bistrocook/files/Timer

Filesize
368B

MD5
6d9204f20a1fce06cf501a677c211743

SHA1
eafb77cfd010daa466f098bb46fe0ed3963e4280

SHA256
7bac7ba505ee25bbdae57a984dbd59834cb6d14d56273e96af6b5f34516d310b

SHA512
afd24a7c40e8a4f292751432f4a69c55c74d73dd548c8b3966614e7f2005bfafb64322fd74d17a1afb9a8b81d696dd9008729392e155c05971c52d2a34012d82

Download Submit