e8808021c4a1eeb837fde7d7dfa7bdf96f21508646263029efa785dbbb54031f

Analysis

max time kernel
152s
max time network
146s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
14/03/2024, 10:22

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e8808021c4a1eeb837fde7d7dfa7bdf96f21508646263029efa785dbbb54031f.apk
Size

1.7MB
MD5

3ad3359c5579d4b73d1b40c482643a72
SHA1

2e5fdcf915b22256718652e3aafa9bbd24452ccf
SHA256

e8808021c4a1eeb837fde7d7dfa7bdf96f21508646263029efa785dbbb54031f
SHA512

bc5af748528452a8774ef141b3809cb88e52382dd810a16482b8a19dfa610af4aa7e30f9ac0f9f880767c971c8b27ace80b2e79f9fb0a2be3d56e2ad1bc3f9c5
SSDEEP

49152:gbzv/J91CYa14+es2lDjyfpsRIFYqv3a01Ejea:gHnaTNYDOfOqFYq/j1EjR

Score

7^/10

discovery evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex	5225	com.candy.heroes.mania.nearme.gamecenter

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.candy.heroes.mania.nearme.gamecenter

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.candy.heroes.mania.nearme.gamecenter
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:5225

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex

Filesize
1.1MB

MD5
4d16faa5f39f09b64ddbea9d375ebfee

SHA1
58d8285f82920537b2bc5aff7af4617decc7b5f7

SHA256
44dc3366840ae9938b616b16011af41184aa055190c0093a26a42e94e238be24

SHA512
9c06343ac092f103d55a484d75a9b405d76ea8cbecce2ab7207f36f810fdec0165961e5d0bab8a94fa2fb939ca67a444f0ba3d78b283110aceba9c7b1ad8464a

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/o

Filesize
683B

MD5
a7e2d25d57da8732d24d941d0e680a2e

SHA1
b9ba0dbaea664a136f433be488e862b6f87cab29

SHA256
c8b75586c0019a3d6c75546e19780f2572919fc7a7272ea888f35b96b01d60b1

SHA512
d47f9410c0c2e64c66e397f0fda998fc97eb95ffc5fa26c39cb5c259ac454b12ab4b16a28c44227ef7f09a392d427f07fe8aefd77b9bba3ba7069ca40506d72d

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/u

Filesize
229B

MD5
450309a0fb09c84dee06231fa43d5f98

SHA1
345c517ee2b1d8f3af75f0e4939ecffb7b053692

SHA256
281ba1ca4d6992ba0e07db448e89de6d977f8078c74be76077d19715d77a9ff4

SHA512
198c4de158fb4e3383fece68142542cadf11b53553e745913999f85beaf95db787e05790ae9a04065cfbc17e9b3de5a92853001a0e5ef83824a604cf6ceb6c6f

Download Submit
/data/data/com.candy.heroes.mania.nearme.gamecenter/files/u

Filesize
229B

MD5
8920c6d589e3936e57812331738f9a5c

SHA1
9601f0b2cba42efb22abcd822a5ef089f027731b

SHA256
bb7e436efbf2045d8d879bdcfcf4121c44d756899cbabe00fdde4c7526d62435

SHA512
d7e74147644406430cca3782208f6e4926ae5a3b090e66c9e18d5c4814b63f53963f776c8fc5d864dd7d026f8525905cba763d760a95ca60e59420b24c9124c9

Download Submit
/data/user/0/com.candy.heroes.mania.nearme.gamecenter/files/707d1b8d.dex

Filesize
2.7MB

MD5
fd0546e55142ec240677d863529577c6

SHA1
6b66184b1c2fbe02b72ad45be32a1f4df07c733d

SHA256
482e81debb93a33f6fe636d918c4fd5f29267f9c89d322a4fe9a07cb4be218ae

SHA512
3db0f7a070af803d57fe1f147ad7bb4812e4a63a35d940f0a758f1c7627c3f5fe2ac725cba9a3e2f77b11fb87f2df7b7881dcff125f39f8e16e9dd0b63feb209

Download Submit