b342707d8cc963f826284d821039ed1766d99c8b8091bd82821d61593d388cb0

Analysis

max time kernel
146s
max time network
139s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
13/03/2024, 18:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b342707d8cc963f826284d821039ed1766d99c8b8091bd82821d61593d388cb0.apk
Size

1.7MB
MD5

7d18cc489cac4fd6b719de271bbb5465
SHA1

c1f6168943a1cc1be81472abb313e905a8be9226
SHA256

b342707d8cc963f826284d821039ed1766d99c8b8091bd82821d61593d388cb0
SHA512

3ff50b6ee01464dfeaca7fc58b4cb54dbf60a8500401d9071751e63bfbb7bc9cf82635b6b2f1789cbcb290cac2da83684e1f49157c4d54e4d43208ef3b79225e
SSDEEP

49152:gbzv/J91CYa14+es2lDjyfpsRIFYqv3a01Ejek:gHnaTNYDOfOqFYq/j1Ejf

Score

7^/10

discovery evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex	4385	com.candy.heroes.mania.nearme.gamecenter

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.candy.heroes.mania.nearme.gamecenter

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.candy.heroes.mania.nearme.gamecenter
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:4385

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex

Filesize
1.1MB

MD5
4d16faa5f39f09b64ddbea9d375ebfee

SHA1
58d8285f82920537b2bc5aff7af4617decc7b5f7

SHA256
44dc3366840ae9938b616b16011af41184aa055190c0093a26a42e94e238be24

SHA512
9c06343ac092f103d55a484d75a9b405d76ea8cbecce2ab7207f36f810fdec0165961e5d0bab8a94fa2fb939ca67a444f0ba3d78b283110aceba9c7b1ad8464a

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/o

Filesize
673B

MD5
d0f219ba39cc4c297c18f0ac1da1512c

SHA1
f52523aa745eea442a8654b1af563c2cc5ec743d

SHA256
830ef650372bb28c3fe7391f9fc20bd58c48665ce8f778f6f70955b24cc059bd

SHA512
21af521110fdcd34ddd7480bf079d114bc5330d1d31a2a2da97ee4df027f87a4a590d2da7f57dfe5ec3e4ff5494109f4453e0bf6301dade3508bf9cf6b240795

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/u

Filesize
229B

MD5
b16e2f5e95737024b05637ee3bfdfdce

SHA1
c0fcfbcd922f3fb1db20632ef75aef4a4d9de090

SHA256
bd80da1ea7500f92cda1f55c0335dfe6c5c5aaa5b0ed9b76afc49b5bb51ea78d

SHA512
caf4eb49aa68b2c6a82d97cb354c09f2ca1fa2a8365c58e67bac205da49e9954f995564e66ebc6a3cabc36f6ff7ab7a749b95d4e03aa014e2503ec1aafb981a8

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/u

Filesize
229B

MD5
f04b4ae4992642ef9bc3ad5588e02e5f

SHA1
45eb62086f85a56735931f7b556749faee8bbb89

SHA256
381e97e2c42f5c6a42e5f4c8acb2592551861011edf8ca83100bbdd007ed1b21

SHA512
8256bbc5a2d86d3281256db5c5cac9ff3eacec7da01528681ff23a106459e2344c74b11825e295ea04d771f4de9a11e1b51eb57df6175b331c482f29405e0e47

Download Submit
/data/user/0/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex

Filesize
2.7MB

MD5
fd0546e55142ec240677d863529577c6

SHA1
6b66184b1c2fbe02b72ad45be32a1f4df07c733d

SHA256
482e81debb93a33f6fe636d918c4fd5f29267f9c89d322a4fe9a07cb4be218ae

SHA512
3db0f7a070af803d57fe1f147ad7bb4812e4a63a35d940f0a758f1c7627c3f5fe2ac725cba9a3e2f77b11fb87f2df7b7881dcff125f39f8e16e9dd0b63feb209

Download Submit