Overview

overview

10

Static

static

10

dimond_free.apk

android-9-x86

7

dimond_free.apk

android-10-x64

7

dimond_free.apk

android-11-x64

7

Analysis

  • max time kernel
    107s
  • max time network
    136s
  • platform
    android_x86
  • resource
    android-x86-arm-20240221-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
  • submitted
    29-04-2024 16:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    dimond_free.apk

  • Size

    789KB

  • MD5

    aade91cf3cf4c46f64a02f97e93b0d2d

  • SHA1

    1c92d900ebab95c730f7bf8598a46661723e2cc9

  • SHA256

    517d243ae971f0bd724466676f2ed7f6397fa647791e5018f82126d7c863c723

  • SHA512

    ac164f4457ff22379eab7cb25e013faa95def38b1ba7ca48af6e98b8d44cdff96402b3ae06f21404f8f46b9df63bc3e010df0026cb887a0feb0c491b17792067

  • SSDEEP

    24576:WTJkVAo5cmjthrKBOkJCQUsGEqGEbGEhGEtc:WTyGObIJCRLsrVD

Score
7/10
evasionimpactpersistence

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 TTPs 2 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence
  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
    impact

Processes

  • com.lololp
    1⤵
    • Loads dropped Dex/Jar
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4177

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.lololp/cache/natives_sec_blob4672445800604528421.dex
    Filesize

    407KB

    MD5

    e400b315488068e409c0a67ec54b5cf9

    SHA1

    ebf22b074a669a1f964d0203f27c2ed31f76da7e

    SHA256

    cc0c12987c9bafac45177af0c4cfbf10e9ea1a780d63edb7cfad35e6ffb7dbe6

    SHA512

    365f0c7ef1c819fe16ace7def1a17eeac93aeb0295b74e04adeb6370a9be8187737c9667d97f2ca43bc56a2d9924643bb3740981288f878c97864438d677c634

    Download Submit
  • /data/data/com.lololp/cache/oat/natives_sec_blob4672445800604528421.dex.cur.prof
    Filesize

    350B

    MD5

    64083f34e699faeda117e87f47329495

    SHA1

    536b4a979f59c2fb5e6b83e6ea87eb0e40286071

    SHA256

    428830cd6dca1aa20d9e670f656aebad41efbbb0c55c0d1ecac78dc83db22760

    SHA512

    18d0b950fd4067fc67ac192747f776fa5dc85f5d98e44015376681fa6726b3ee7d4acca45fa19bf94e341e316313bade18d673f1639dc14815d81334ef812632

    Download Submit
  • /data/data/com.lololp/files/cloneSettings_234229880.json
    Filesize

    8KB

    MD5

    805779ff4b324f2e7bc966226712c511

    SHA1

    75ee544449e478d09e7d01ae378a278677e578d8

    SHA256

    9f5f3b22e9fed87358b21071efcd0d60ef36f38c0552e3c5f0a0d602e4f33247

    SHA512

    9ef8f501150982f8db49a7fa20179b2943d45d616b4fd9cc4de5040cd7f5e735c92801510bca5e7c1a258ccaaec754dbabb1c8f59da92f0d7a640b4dfe27833f

    Download Submit