33c93c2660645011679dbbfa26d47a212fa35b5e659eabe5f94b07ec96da6f65

Analysis

max time kernel
301s
max time network
306s
platform
android_x64
resource
android-33-x64-arm64-20240229-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240229-enlocale:en-usos:android-13-x64system
submitted
28/03/2024, 18:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

TFS Community 1.7.apk
Size

78.0MB
MD5

afdf5c2b4e308df76f2c1d9c39eb584f
SHA1

eb4d8d99765b1e2e40fbee1edd067dbf6bfb603d
SHA256

33c93c2660645011679dbbfa26d47a212fa35b5e659eabe5f94b07ec96da6f65
SHA512

07f06ea50d22a35d94eac1b06222e4361dc53e38d1e647554cf723d0e2286fb417b3e6d15cb30ca6668d51146705b4595376f25d60064f2ebad4f87cd18917dc
SSDEEP

1572864:VDFS1Kv2sQHy8EVPv4h8Hhy50EE6jtRi9j1p6JVN6lzMldHDaaOmjRD/d4oWpaiV:VD4Iv2FCH4m16jt0Dy0l+djPjRSouaiV

Score

7^/10

discovery evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 4 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/system_ext/framework/androidx.window.extensions.jar	4265	com.AXgamesoft.COMMTurbopro
/system_ext/framework/androidx.window.extensions.jar	4265	com.AXgamesoft.COMMTurbopro
/system_ext/framework/androidx.window.sidecar.jar	4265	com.AXgamesoft.COMMTurbopro
/system_ext/framework/androidx.window.sidecar.jar	4265	com.AXgamesoft.COMMTurbopro

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.AXgamesoft.COMMTurbopro

com.AXgamesoft.COMMTurbopro
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4265

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.AXgamesoft.COMMTurbopro/files/UnityAdsStorage-private-data.json

Filesize
41B

MD5
16d3e6eac0e79222a9b368edac765b34

SHA1
48d5e621fcdd84108f5750d6905180b622715b11

SHA256
3a518b70256a689906d6740062462e3124aad6e55c5aa47339a87a56e4933ee7

SHA512
d0aaacf86100135241426e2a0e9ba44414aa456cd708124e2f9c3a8037e008870cbcb506d316e4fe7cfe1d6dc3073393989a6f3c29f7cfabd6b0f65057afe747

Download Submit
/data/data/com.AXgamesoft.COMMTurbopro/files/UnityAdsStorage-private-data.json

Filesize
627B

MD5
83b0f264c6d24cbad401464d256b7bc2

SHA1
6897e4d5f3f83b19c3ff33f29703907f66afcd50

SHA256
41565016f9ff727be8a8739f3227642aa7bf9ca760fe22daa91d73fdddeb7fee

SHA512
1e62aeda83d42fa0f28ab2b19b4832f4c964fdebe09c8ed4931075e7c1e9b5d3b556bfb37c96a7ed107c66644ce805562e103ab85b7759f3175af9b0414b4e68

Download Submit
/data/data/com.AXgamesoft.COMMTurbopro/files/UnityAdsStorage-private-data.json

Filesize
860B

MD5
faf1c28d1e16a7fb8e6feece98a85255

SHA1
8d1ba1427a935599a7cc2a5b281cba32dd39ccee

SHA256
8b3f0d602826aec9cbf7caec5c6069005983224ec92f22e3bb8d41988558b998

SHA512
882dd1302d6b987ace457a19aee607498868594386fbadecac4747de67c0f997529e048c2b5036aa75292f203d3ad48d66b75c9b10ee652605e0a114f2bda59f

Download Submit
/data/data/com.AXgamesoft.COMMTurbopro/files/UnityAdsStorage-public-data.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
/data/data/com.AXgamesoft.COMMTurbopro/files/UnityAdsStorage-public-data.json

Filesize
112B

MD5
a4fbb6e850a77ebea48b0e05fbe9c7fe

SHA1
8ed7a3a8eeb473dbfacf19784c1287314059739f

SHA256
fcf90a4ace57913b1912b0a3224292f978cdcf0a5dd0ea59051d25c2e032ee38

SHA512
1d8fca5d9b9e54ed2ae6bc9e5f23173f7691a0d817df78c87ce3b6d1ed7cd5b6696f6d0ca17015a43ae2753e26d1951d3f654fbf8d80de1a18f660172112d4ce

Download Submit
/data/data/com.AXgamesoft.COMMTurbopro/files/UnityAdsStorage-public-data.json

Filesize
220B

MD5
d0a7c45bae626a870c27946869b4bb78

SHA1
18a122f6394a076806874333444f79f81ad13213

SHA256
d35b21c8a2ac1f26a206a6968c48b642e6869fdaf89abca82213f633b9ff6600

SHA512
bd22071286512fcb601d6b449149f85b4288fdbd551310e7d8eee83874306a638ceef0ce2a1da3e8de6042bb9d55f59f6d8b5f196f4335983cab2f9375403934

Download Submit
/data/data/com.AXgamesoft.COMMTurbopro/shared_prefs/com.google.android.gms.measurement.prefs.xml

Filesize
657B

MD5
45507ad23a0f3c60ee8b0895c22df3ac

SHA1
c9b9c6e67502eb0fd1f0564c24ea238f30a4625c

SHA256
0bdd8a627b51457135e419a0d29e26985ec55218e29fdec1d8b07b7c7131a713

SHA512
5dc4a88c7d9878d4fa462ea0deaf97fba097a4294f6035e51cc49ab95c3d743179435a12477fab687bff38258d97ed15ef7f65b39ebbaabad5bba3996b29092b

Download Submit
/storage/emulated/0/Android/data/com.AXgamesoft.COMMTurbopro/cache/UnityAdsCache/UnityAdsTest.txt (deleted)

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/storage/emulated/0/Android/data/com.AXgamesoft.COMMTurbopro/cache/UnityAdsCache/UnityAdsWebApp.html (deleted)

Filesize
2.1MB

MD5
2347e094a698d360d0b59540f7072b4a

SHA1
bb2429720d5d2e1b1056a1cdc6dfb69a5883bea6

SHA256
cc78ec0e5279e6aa9ad209bc48df4f381ce9e2c5631ce267da20f05567af68ee

SHA512
90e946832f83424026aae6ea23287601a38d7daeba85c21281f0e9d08966964c1b14e7059577b1917d75dd75b1913b86e6f0ac8df567e201e7078451835cc307

Download Submit
/system_ext/framework/androidx.window.extensions.jar

Filesize
123KB

MD5
3056e1bdb7d4e19789d0319eff484bd0

SHA1
6791ae47aa9466fe0bca27ad6643f846853bbee4

SHA256
8e6331a07c9f2ac139214c527dcaff2c82d126bbe7bd3420cdc36d6a8c9204b0

SHA512
c790980fd68d9f89e32743bc28846807d5e5947c555f494de47714dec5cbd0c08d81c3260fa463759d1b17a953af3c44ec30b14fb08bf6b29db3837346c9f658

Download Submit
/system_ext/framework/androidx.window.sidecar.jar

Filesize
25KB

MD5
29469324e59dfcc052f24b5af4e7b2c4

SHA1
10c1e17ac6f598037bb51baa07945663645de4eb

SHA256
9195dc6a1c75a841384050240dfc972e48178964993fba6619788625f4b40d1a

SHA512
5e27c2b1431369a248298f2f749136a575005584f9999f2a4c204a0c47adce2e33c8df9f058bdafa1bde1c99e46d175560cedfcddcd8581718ed1d9973c37cc2

Download Submit
socket:[57822]

Filesize
49B

MD5
21c3f0d42b82c6beabf4d85bfce67790

SHA1
e68983ac4123358ef76542d5143587b1e18beefe

SHA256
b3a6d17aa0da86ba33d3d6c0944e1f586a647e76282f85e14f5dfa50965e5a5d

SHA512
a6d34f261b2fb38eba3a2fc57ec5c20cd9407f7c9bc9c32a067a746c445c6a67899a9ddbb81d946732f3393b5f5d27522e23438f4fc02ec1997ee3e283750b32

Download Submit