e8808021c4a1eeb837fde7d7dfa7bdf96f21508646263029efa785dbbb54031f

Analysis

max time kernel
149s
max time network
139s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
14-03-2024 10:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e8808021c4a1eeb837fde7d7dfa7bdf96f21508646263029efa785dbbb54031f.apk
Size

1.7MB
MD5

3ad3359c5579d4b73d1b40c482643a72
SHA1

2e5fdcf915b22256718652e3aafa9bbd24452ccf
SHA256

e8808021c4a1eeb837fde7d7dfa7bdf96f21508646263029efa785dbbb54031f
SHA512

bc5af748528452a8774ef141b3809cb88e52382dd810a16482b8a19dfa610af4aa7e30f9ac0f9f880767c971c8b27ace80b2e79f9fb0a2be3d56e2ad1bc3f9c5
SSDEEP

49152:gbzv/J91CYa14+es2lDjyfpsRIFYqv3a01Ejea:gHnaTNYDOfOqFYq/j1EjR

Score

7^/10

discovery evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex	4399	com.candy.heroes.mania.nearme.gamecenter

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.candy.heroes.mania.nearme.gamecenter

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.candy.heroes.mania.nearme.gamecenter
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:4399

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.candy.heroes.mania.nearme.gamecenter/databases/com.google.android.datatransport.events-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex

Filesize
1.1MB

MD5
4d16faa5f39f09b64ddbea9d375ebfee

SHA1
58d8285f82920537b2bc5aff7af4617decc7b5f7

SHA256
44dc3366840ae9938b616b16011af41184aa055190c0093a26a42e94e238be24

SHA512
9c06343ac092f103d55a484d75a9b405d76ea8cbecce2ab7207f36f810fdec0165961e5d0bab8a94fa2fb939ca67a444f0ba3d78b283110aceba9c7b1ad8464a

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/o

Filesize
673B

MD5
81a22b5b0bfed045cb0a0b8d6695db02

SHA1
cff90d30290da221d0e5ddd239f45de223736155

SHA256
538e3ebf8bdceed0daa3098cfc79e7169d0167b496283e823b872982d0d61e7c

SHA512
aceb7f0d8227a2f2fbf0e8783eeaa21c985e618995614ae5530d8b5992e9d1878bd5f877ab504c9bfa40c815c0b3be6edf575cf4b64a956806cce8a6db885f3e

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/u

Filesize
229B

MD5
4b34052118c487b1dfd708d2d2a1303b

SHA1
d6807801fdca1c8aa0a5a9f4037545f643749569

SHA256
d506aca263435eb77545c11445b8018a0429b371fb9511560a66c5697cbe357d

SHA512
c8115b54837823a608d285be34ce1ea16e8da9a7e8a2884125fb0fcc10d02bf519059e276c9a2e5a8963098626a7cfdd105c5dd085bba100dc1cea429a5028bc

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/u

Filesize
229B

MD5
9f7b16df3aaa28d1f08031d5312454a7

SHA1
914fe2c9120c81cde4f34275350699f66d9333cf

SHA256
56731e67d78542727f197541fe3b00945c1293d1767b4e5be01f6c4b559e17be

SHA512
f903bda04f2014490f438bfb116c423d391f8dd33c56fe02dd3229bdd66c394f4923cb6b5848aa8b60b1c5791b036c10a9d4ab11ca8a8a8ca4fe004b1087fbf7

Download Submit
/data/user/0/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex

Filesize
2.7MB

MD5
fd0546e55142ec240677d863529577c6

SHA1
6b66184b1c2fbe02b72ad45be32a1f4df07c733d

SHA256
482e81debb93a33f6fe636d918c4fd5f29267f9c89d322a4fe9a07cb4be218ae

SHA512
3db0f7a070af803d57fe1f147ad7bb4812e4a63a35d940f0a758f1c7627c3f5fe2ac725cba9a3e2f77b11fb87f2df7b7881dcff125f39f8e16e9dd0b63feb209

Download Submit