6e4aaff5e4187897d0098c7eea46044c3ec223433a0e3c26aa84066589a3cfcf

Analysis

max time kernel
9s
max time network
155s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
27/03/2024, 03:13

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

9a518fe4a445e4d178b48a7b2a9844dc.apk
Size

26.3MB
MD5

9a518fe4a445e4d178b48a7b2a9844dc
SHA1

425fb55c8462465c5d9a3d87416b863f545abf2c
SHA256

6e4aaff5e4187897d0098c7eea46044c3ec223433a0e3c26aa84066589a3cfcf
SHA512

68cb6db50ab45e3f6c00f9803ab7a08e0ac84c7b8bfab1250d1077b4301cb654a241241a81190575f39bef4177940c8bda64a6767bd1898f4c7ff40896ecc78f
SSDEEP

786432:oKR4btSCZmpZlHZVS7OyHOm3OZgR6Ev/s8xqkNRV5n4JPMf:j4BTZMZZeFn+ZzEX7Ek95n4JPMf

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/apex/com.android.runtime/javalib/core-oj.jar	5049	org.bcp.bradescoinvest

org.bcp.bradescoinvest
1⤵
- Loads dropped Dex/Jar
PID:5049

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/apex/com.android.runtime/javalib/core-oj.jar

Filesize
4.7MB

MD5
7e343cbc45b618d05182d74bd61826b2

SHA1
02ee96263b3b967e570e8ddb1fa36cb21032b71b

SHA256
324b5af2ec2d78bb57b1552f429af51ac8d65f7fa277217ae8d4371ab14178d1

SHA512
48cbd8a5b246cf9d6ec16558ab12af131439837094c63a64046de384da933593459fb1aec126393bbe3b2b8ca19437f38b68364c9f158023a7b1a35e6901c705

Download Submit
/data/data/org.bcp.bradescoinvest/cache/ExponentAsset-49a79d66bdea2debf1832bf4d7aca127.ttf

Filesize
91KB

MD5
49a79d66bdea2debf1832bf4d7aca127

SHA1
fae3a5a43b50e0408fd61e14383d94a023d332b0

SHA256
4c322514d265062aa3f7fbd81f5b79391ccb74268e6a20600061e0ce33234f41

SHA512
ee4a6147fccf0aecff1846aa9c4759c954994d02a06fdd43b602e6e581ea4418cdf10d8378c94ed292b884424f4d8d1b9f36a7fe62f1f5903654b07b38361a90

Download Submit
/data/data/org.bcp.bradescoinvest/cache/ExponentAsset-b3263095df30cb7db78c613e73f9499a.ttf

Filesize
241KB

MD5
b3263095df30cb7db78c613e73f9499a

SHA1
b5281fbfa43129abc3e412dd938cfcf0b77de999

SHA256
eeb002b25911df52eccaa4f5b303778ed7f48a9b07852630551e9f15cc709f33

SHA512
cf45278cea007f2ee55eb67c10cad90410360917136911205e471f661ab066413c71dc04eb1b99641a17e06dddbe781185018868bea0562b4baaae5c4fd59e61

Download Submit
/data/data/org.bcp.bradescoinvest/databases/RKStorage

Filesize
20KB

MD5
f4652fdafe0c0060f572bfa675e8c054

SHA1
d0e520b53184fadf371229c52ee66b60f3925839

SHA256
75561af4813b5b1cb417aa5d9ecdd41243246e7649f161d4782fbc676ee5e946

SHA512
2ca5e31c8ec2e0df99f58d552812491e78d88d3b8a828ae21015320d1db2a6fc6cd90e43e1a44478d41fe527f90f6c03bf5bf36afdc9e0ab54c99c06c3b099c6

Download Submit
/data/data/org.bcp.bradescoinvest/databases/RKStorage-journal

Filesize
512B

MD5
f655d2bfe56d5eb92ede080a7ae377c0

SHA1
a94b84cd1bc7b4a327d78688ce9a033fbe7e6fed

SHA256
ace8a5109794b2027f9581a1323309caa100f105315d78e6613a95d2299ed63b

SHA512
8790452937502ed7e95e69025db01ad44beb15e2c759bdfafe625d24a018c90715842051f5609eab9a3d0e2f233f5040bb2d8a4d77d8989812acdaadc4831d7d

Download Submit
/data/data/org.bcp.bradescoinvest/databases/RKStorage-journal

Filesize
8KB

MD5
77e2b071b5a1d4a66647f11baa9e8d77

SHA1
03e005565dffec9ceb01411f352d99c0fc33b79a

SHA256
f0727b69a3d55ae6f7ba8eaac302fd83fe2d97b8090f24ec39c59f3bf89daa22

SHA512
1c16494d92e92e55aefb46158ca207b773833799384921501e6d3ea6d92a819282bd170b16329f8a69b5816da41a873054104264a479030d7d6cd9ac5318a39b

Download Submit
/data/data/org.bcp.bradescoinvest/databases/RKStorage-journal

Filesize
8KB

MD5
92b3d46194a4829199f0a317ea5c4111

SHA1
97122a609a53542d1cfbae2e8e8f89e20f304aa4

SHA256
73fa8621986ebb4be41ed1bda7a09d24228ac7feed702fefb46ffde94cec0df6

SHA512
2cddadc7ec4e4115fdbbaaf2b7d76bcc57bcbb6f8418b5b521e704b652c3f7daf37ee951eee0c93e0cad4c3d77da9b4d149f247fa88975c7e8ad1310d388749b

Download Submit
/data/data/org.bcp.bradescoinvest/lib-main/dso_deps

Filesize
312B

MD5
da8f3927c4a33df2118d8cdec52ac27f

SHA1
813cbba382ea27ae7c720631e71b69337abe685a

SHA256
b0b0445ae5fa139d81150832d7c13619a9f85a0698be08a230cfbd16804630c1

SHA512
b42df838fb932a8e23fb65535b104b198c5713a46f8c3ba40db1b06203d18a932a6b8fb9837a67beb7d688520158f922e99cc74b8ae975f6a06be779119f17e1

Download Submit
/data/data/org.bcp.bradescoinvest/lib-main/dso_manifest

Filesize
5B

MD5
c06857e9ea338f3f3a24bb78f8fbdf6f

SHA1
c5a0a2529d2deb60fec041b4fbd722a2ebe31702

SHA256
957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

SHA512
29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

Download Submit
/data/data/org.bcp.bradescoinvest/lib-main/dso_state

Filesize
1B

MD5
93b885adfe0da089cdf634904fd59f71

SHA1
5ba93c9db0cff93f52b521d7420e43f6eda2784f

SHA256
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

SHA512
b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

Download Submit
/data/data/org.bcp.bradescoinvest/lib-main/dso_state

Filesize
1B

MD5
55a54008ad1ba589aa210d2629c1df41

SHA1
bf8b4530d8d246dd74ac53a13471bba17941dff7

SHA256
4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

SHA512
7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

Download Submit
/data/data/org.bcp.bradescoinvest/no_backup/expo_installation_uuid.txt

Filesize
36B

MD5
e07c4e77b3561680954c36e628a71279

SHA1
46f9d7e615a07f8a568fa02a041fc74547533e06

SHA256
ea3807cc6473bc565ca610aee4439c4143472e2873fda7c2a64db37e133216d3

SHA512
d052e5d7d6978a31e5256a0906933c71235e38c28aadbb5cc4eec8a3b1139ec546526de85a69ff90652cd7bf6a25cc8c016157f327a8ae42844d292f348ea8c3

Download Submit