General
-
Target
legion_anime_62.apk
-
Size
26.9MB
-
Sample
240426-zw836scb93
-
MD5
b3f6314b1657e3e7889377c93e7ff680
-
SHA1
7daa2dc808f920b2ec36ad502aeee976a76e3cae
-
SHA256
588a616645d81c013fdd2663ac8de231348effedab907491f61fb11f0e302b20
-
SHA512
7117c03e8ee6ed24a1a0609dafc1a4a4b6ecc6af6e51b4b803b91e902df76aa3a7c60045736637a8f1ff917cafd5fc7acfe36b212ed03464765cff43da450d2b
-
SSDEEP
786432:83nY1AFfTgiJviOgMXPSvqsd7095mfhtE:mnY1EfJKOg4PSSGBtE
Malware Config
Targets
-
-
Target
legion_anime_62.apk
-
Size
26.9MB
-
MD5
b3f6314b1657e3e7889377c93e7ff680
-
SHA1
7daa2dc808f920b2ec36ad502aeee976a76e3cae
-
SHA256
588a616645d81c013fdd2663ac8de231348effedab907491f61fb11f0e302b20
-
SHA512
7117c03e8ee6ed24a1a0609dafc1a4a4b6ecc6af6e51b4b803b91e902df76aa3a7c60045736637a8f1ff917cafd5fc7acfe36b212ed03464765cff43da450d2b
-
SSDEEP
786432:83nY1AFfTgiJviOgMXPSvqsd7095mfhtE:mnY1EfJKOg4PSSGBtE
Score7/10-
Checks CPU information
Checks CPU information which indicate if the system is an emulator.
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries the mobile country code (MCC)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Acquires the wake lock
-
Checks if the internet connection is available
-
Legitimate hosting services abused for malware hosting/C2
-