General
-
Target
Clash royale.apk
-
Size
3.2MB
-
Sample
240429-t4ld7aff4v
-
MD5
f2b9ffb8bb4684754a7e1eb02f1added
-
SHA1
b3d4a329b035a97c21f09698eb20e3db732aed82
-
SHA256
eeac062c8c9149a6739371238b857f18fb8a61c146443a972d1eb201d504216c
-
SHA512
37ca4bedd0054ab5233b441861e9c30f128238e75849ef744195d92e5c0a8f5da6db633c95b05397a978d0f7bdb31be4c2cfbf696687a3e968dc5cef17043345
-
SSDEEP
98304:F1yqxOabNLn7Rk3H0bbamJL4F/E+roUWwvlL1K:zLwyNLVcCJk6+rotsl4
Behavioral task
behavioral1
Sample
Clash royale.apk
Resource
android-x86-arm-20240221-en
Malware Config
Extracted
truthspy
http://protocol-a.thetruthspy.com/protocols/get_synx_now.aspx
http://protocol-a.thetruthspy.com/protocols/getsetting.aspx
https://thetruth-db94a-default-rtdb.firebaseio.com
https://thetruth-db94a.firebaseio.com
Extracted
truthspy
http://protocol-a748.thetruthspy.com/protocols
Targets
-
-
Target
Clash royale.apk
-
Size
3.2MB
-
MD5
f2b9ffb8bb4684754a7e1eb02f1added
-
SHA1
b3d4a329b035a97c21f09698eb20e3db732aed82
-
SHA256
eeac062c8c9149a6739371238b857f18fb8a61c146443a972d1eb201d504216c
-
SHA512
37ca4bedd0054ab5233b441861e9c30f128238e75849ef744195d92e5c0a8f5da6db633c95b05397a978d0f7bdb31be4c2cfbf696687a3e968dc5cef17043345
-
SSDEEP
98304:F1yqxOabNLn7Rk3H0bbamJL4F/E+roUWwvlL1K:zLwyNLVcCJk6+rotsl4
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Acquires the wake lock
-
Checks the presence of a debugger
-