Analysis
-
max time kernel
8s -
max time network
158s -
platform
android_x64 -
resource
android-x64-20240221-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system -
submitted
16-03-2024 22:01
Behavioral task
behavioral1
Sample
91c174ee17ae412466f5d3204425575136b2e20b6773356d38004014a407bd21.apk
Resource
android-x86-arm-20240221-en
Behavioral task
behavioral2
Sample
91c174ee17ae412466f5d3204425575136b2e20b6773356d38004014a407bd21.apk
Resource
android-x64-20240221-en
Behavioral task
behavioral3
Sample
91c174ee17ae412466f5d3204425575136b2e20b6773356d38004014a407bd21.apk
Resource
android-x64-arm64-20240221-en
General
-
Target
91c174ee17ae412466f5d3204425575136b2e20b6773356d38004014a407bd21.apk
-
Size
883KB
-
MD5
c3ec0a4bdef44389b6fd35bab98e80d5
-
SHA1
840cf538abcc1375e786d049e9f9785e3117e035
-
SHA256
91c174ee17ae412466f5d3204425575136b2e20b6773356d38004014a407bd21
-
SHA512
406e176f2d27a73eea4994f9e14dcf5c626e62b443bd1740ede9fc7e69e09a50311062f41f37ea98f5c64eb705ecf1b9ddcf31c225836ffc61e3812ea5362a3e
-
SSDEEP
12288:XA9DRa1a8Lde3JJ5Ouu5X4fw2bcN5WmpYshXZPbGwidNpgm:ca1a6eb5puSfw2bE5WmD9idNp9
Malware Config
Signatures
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs 1 IoCs
Processes:
cmf0.c3b5bm90zq.patchdescription ioc process Framework service call android.content.pm.IPackageManager.getInstalledApplications cmf0.c3b5bm90zq.patch -
Legitimate hosting services abused for malware hosting/C2 1 TTPs 3 IoCs