67b7ff6d73d76c2bea04411bed906e903f2c03dce6d2f1c1a960c0c7dd9b3aa1

Analysis

max time kernel
44s
max time network
71s
platform
android_x64
resource
android-33-x64-arm64-20240229-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240229-enlocale:en-usos:android-13-x64system
submitted
15-03-2024 18:40

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

rata.tvcreator_v1.1.apk
Size

13.4MB
MD5

aa725d2639cc248c60b018159dd753ff
SHA1

f46ea732a40b3de67283e8e43b24bb7e71e86380
SHA256

4deaf9b563854ae9a724ae46ec714566064fe5fd607e2880d742b240b9952f79
SHA512

6421936323db77cb50a51ffa79e3d45503fae1cb523c709f7ac155359ec8bf26dfc4dddf1f20c875689c95784b6a37c83688d03527b810d15a73ba877fa681aa
SSDEEP

393216:mT3XVpmsqRSeYhRux8uIFdzDYFk4rVnbbE5:mDXfmsVh46dMk4rVXm

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs
Runs executable file dropped to the device during analysis.
evasion

Download New Code at Runtime
T1407

Processes:

rata.tvcreator

ioc pid process

/data/user/0/rata.tvcreator/[email protected] 4242 rata.tvcreator
Acquires the wake lock 1 IoCs

Processes:

rata.tvcreator

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock rata.tvcreator

ioc	pid	process
/data/user/0/rata.tvcreator/[email protected]	4242	rata.tvcreator

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	rata.tvcreator

rata.tvcreator
1⤵
- Loads dropped Dex/Jar
- Acquires the wake lock
PID:4242

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/rata.tvcreator/databases/google_app_measurement_local.db

Filesize
12KB

MD5
6d527da87c4c692e2091d953eacc7523

SHA1
1ff367e91ec7428668218c1bdc0dcb49541f40b8

SHA256
b78ed93c9a3f339ca2eeb511aa6d79e594931a0279815b239f7065dcb5f810fe

SHA512
5402292ce8d85214e91e24be0c314b41a9846e9dee8ad6ea405553bb04c2597084829a99cad810e6ca327f6fcb80bc99bd42c95f2f6a247d681eb19444d362b0

Download Submit
/data/data/rata.tvcreator/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
5d24a1024f47b1a1c658332d51e79015

SHA1
464891c46e331eb2bd974ff6463ef9c0d11045a5

SHA256
af5ee6f194004f6a7c3064eb8072d9ee128c3ee9d86357a8e08f5f5d2632bc31

SHA512
c2dd7599024db2c12d9c9be7ea77f56dc14cba2278c66125de895e9dba88fd4722e25660a20c9faef3df6181289433b7d1ccbccc5475acde485144db7b483b1f

Download Submit
/data/data/rata.tvcreator/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
8025b0b6c74b333a1d1c2071ed6e5edc

SHA1
b29d09c33383abfda3677bcacdca20ca8d1b380b

SHA256
8b922d95c5f75ccf7cedc0598f6ce22406e2af6315a51f7f9bafce23dd6a3475

SHA512
330442fc1ea9fe93a03c65e894a2d207d9ddff86bf9ca6f6d643bba1a86ddc0599db9bfdb08c16e5e00ae5e08438a5c102ace671f09a2b63e0b43452a05a8f6f

Download Submit
/data/data/rata.tvcreator/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
7fda6304d8e6591f795645ed9f28737f

SHA1
639f7b550f01c39cdb10f52254eb7f80dd65bf00

SHA256
d0ceb4e07d464fba6e9709a0248b5cb81f91ed24bbc1f72a3ce5d6fb8875de58

SHA512
a96e0c0f0d917748ada497846af7ca032b5b06e2d81f7fc66a99ee2f87326adb9be2487b888587dbcd3bcedf41707aad692fae08e82c80eba93ef8571499c498

Download Submit
/data/data/rata.tvcreator/files/PersistedInstallation2944889423547263285tmp

Filesize
79B

MD5
3e0971143d4aa91fe0d128a44cf518dc

SHA1
97339a7574a8de34cbba0b599b4b936ecf77fa15

SHA256
0942964b06ee34e366967e14aeb20bd44aa7aa818ab8a85f448dc48589fbbe1c

SHA512
0c049bb73cdf90f0016f6346447c6a4608d35f72ead9e4dc078631aa70704a51babe2764b391731aca4abf8cdbda8e357f53a5ca20c2e6a070496d13f2ed38e5

Download Submit
/data/data/rata.tvcreator/files/PersistedInstallation5116304120574884399tmp

Filesize
561B

MD5
1738c6e4865432ed084d418de4157299

SHA1
3e9e28e9ae5c02c37db57c6a72f0df759327f8d6

SHA256
de4fc3a5e6fa80b2eb664c66a1fbea847077e7ea7d71fe45207386be9bb868a1

SHA512
56fcfe6f4cb2e17050a2da711a1e87561759a13e77217dfd75ada27090b49eba56bcdef6cca6b623e63b58e44ab101a34085176e4610f9016a516ceb3dfa7687

Download Submit
/data/data/rata.tvcreator/no_backup/androidx.work.workdb

Filesize
4KB

MD5
0eb157e1a86d4d00aa601dd2f6ff3ee3

SHA1
fee434f784e73cc7916322e949f727caf8363102

SHA256
b9a8194b71a046e8c0eb30995827b582b4bea834f630a5df2483b778a7d7d8a4

SHA512
b9b79b8c3af8a3f140df230fd89e95206358ba50ff214e7323a2dbbe2937b795f970e588302ffd5d721318bd597ce0a27af26d6cdb07f45569c30209845082a8

Download Submit
/data/data/rata.tvcreator/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
49a20935a81e8e80004c6131db73e3fc

SHA1
ba75c97cbbd8c72cef9cf40ff0e9e39bc5ff7cf6

SHA256
9fe4b7aa6d54f7964a4b5a2d6eb025958f959896d6b4990d263cbc47d753e76b

SHA512
f193ab7b52f5118ebddfede90fdb781560bc892f334e6b88d477f6ac3ef50bf5f438ef61bf293872cdc5308433933a40c1ec5d513cac33a1b578720717be8fb3

Download Submit
/data/data/rata.tvcreator/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
1862489611f5eff68c18d2eec6b0acba

SHA1
00c30a2ea9afd9e48209cafcc038539712f30da1

SHA256
a82584f39f724b4f1268d4b6699024e163d0133f4b7dbe679fa471a257aa70c1

SHA512
1ca503c594f827f6bfa0b31c299dacd6b72580b925d085f8e54b3bd2940f910ff365f0ba3f268ef4d819aadbd20335f1e2a5386b345af58ae740e82bf9ddb7af

Download Submit
/data/data/rata.tvcreator/no_backup/androidx.work.workdb-wal

Filesize
20KB

MD5
cbdd11d609f553353521a65cb8637b34

SHA1
30b57993cf0c72890b00585c1a8d639e1d65d608

SHA256
2b30dd36d5ae5ce3b64f8e615d63a621024696c41750959fb79f6a62c2d829be

SHA512
310cbe58770f2d9b19ba37479bb9d9399cd1bfe93261bbaf1848150cc86b94935644abfc6fe58b832e534930cb9d4c75f971c168243b1d2fc924fed4a1fae507

Download Submit
/data/data/rata.tvcreator/no_backup/com.google.InstanceId.properties

Filesize
2KB

MD5
8ce69f79180b4daa048472cf601ea45f

SHA1
fc5e6867dd8791dfcbb9f02a1d6aa22657602d90

SHA256
e53fa9a25415ef3aa4f917a128a422f5381801fcc7f7f406b9861c81db54b14b

SHA512
04461566ff9af9fd8a7e107dde48dd46c8498ccc1aa297ba68460f27fff85e625f8d45b22dce3fb2cd471bbf134084bfa737eb4190f49b632aca8b1979bb3d1c

Download Submit
/data/data/rata.tvcreator/oat/x86_64/[email protected]

Filesize
59KB

MD5
5157f484add9484c074b6a21c5612030

SHA1
53890a7d1008f83d056fb9e601a91eda94e7257c

SHA256
6910e6f782f7451f0c1e011bafb73ee78dd02f5598a8c2bc2f88cc6bde1b6e00

SHA512
7c266dca921aede9ec15dd12273ec171bd5ddb8ca6450b474f10bea4807a709ff82219aa1508453553a566859f6a6f13d74a4cadfabe3ddad00c40b18f2fa7f5

Download Submit
/data/user/0/rata.tvcreator/[email protected]

Filesize
3.2MB

MD5
692c6b1b89702297c59bd34c4bd1fa53

SHA1
f38cac946f03d7e869018acbdfe0ed272e11b106

SHA256
920e465a87a2409fc8d7186ea4e319c613c04d156bec75e8b91cb4d07b1deb75

SHA512
927048402fb314ef2624776b27317a6f996ea6b3d697d66b8b213d5be9559f24ae0dca8d2f8a9350d32310b8cab071933936640641d297ba522b3af60424df63

Download Submit