hxxps://www[.]indianaunclaimed[.]gov/app/claim-search?utm_source=Adwords&utm_campaign=IndianaOAG_sammy-terry-april-15_20240408&utm_medium=Video&utm_content=sammy-terry-april-15&utm_agency=PG&gclid=CjwKCAjwz42xBhB9EiwA48pT7wtgVqVsXj78Yjf6YJCs4c1bGUg_LIDMfQi6b4Acl2GoGLGYk6ep8BoCSuEQAvD_BwE

Analysis

max time kernel
134s
max time network
144s
platform
android_x64
resource
android-x64-arm64-20240221-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system
submitted
20-04-2024 21:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.indianaunclaimed.gov/app/claim-search?utm_source=Adwords&utm_campaign=IndianaOAG_sammy-terry-april-15_20240408&utm_medium=Video&utm_content=sammy-terry-april-15&utm_agency=PG&gclid=CjwKCAjwz42xBhB9EiwA48pT7wtgVqVsXj78Yjf6YJCs4c1bGUg_LIDMfQi6b4Acl2GoGLGYk6ep8BoCSuEQAvD_BwE

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.android.chrome

description ioc process

File opened for read /proc/cpuinfo com.android.chrome
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.android.chrome

description ioc process

File opened for read /proc/meminfo com.android.chrome

description	ioc	process
File opened for read	/proc/cpuinfo	com.android.chrome

description	ioc	process
File opened for read	/proc/meminfo	com.android.chrome

com.android.chrome
1⤵
- Checks CPU information
- Checks memory information
PID:4270

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

files/dom-0.html

Filesize
4KB

MD5
993c7086fb30359d5bfd6f6f1f0c6b67

SHA1
b4ed7d5b781fbea69bf3c5655f02464cf143f32e

SHA256
9ad98a4aa512054146c5e82a7a5cb41a3fcb3081fbed30e7ce6d87add409d8f6

SHA512
daa8c0765879e72b44f07171d537c1fa2d3119b428f41e395f4b361b2b216288740ce3bb7c53de7a2ede3d3e6420ec1c2bd0b9f8b62d84d7f63551abca01ab2b

Download Submit