d5ca7ba75cfb8fd76929c1b8f6547780d8305a6654b6423124d380ff59b0d1c9

Analysis

max time kernel
4s
max time network
142s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
02-05-2024 02:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

d5ca7ba75cfb8fd76929c1b8f6547780d8305a6654b6423124d380ff59b0d1c9.apk
Size

1.4MB
MD5

dbf98b9b54fdd429ceb18b35158e44d4
SHA1

ae15f0e4c2c299adf52de17b51400fcf25479184
SHA256

d5ca7ba75cfb8fd76929c1b8f6547780d8305a6654b6423124d380ff59b0d1c9
SHA512

b8e7838627cd0346480aa456be863ecc6c56ce4b43fd408be9e104c1183b3d6c3b6fdc5f329e9f4e4421fec3599232e887803ba01959fe56c6a8b30da4fa1079
SSDEEP

24576:My/WPvDL4292BzHVFYixHq9bYHfumO9dRuKKiwBUH27m8AdWeUR1uffgpABG/4zb:F/W3f4292Bz1FYsHq9bYHfumscKKipw6

Score

8^/10

evasion stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs

stealth trojan evasion

Suppress Application Icon

T1628.001

pid	Process
4310	com.camavoyaxiwokocu.huvusuwi

com.camavoyaxiwokocu.huvusuwi
1⤵
- Removes its main activity from the application launcher
PID:4310

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

T1628

Suppress Application Icon

T1628.001

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.camavoyaxiwokocu.huvusuwi/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.camavoyaxiwokocu.huvusuwi/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
f3cc92809aadedcbcdb15bda4c23e681

SHA1
08387b66b7a4845926f433111e6664e67992fffb

SHA256
3c7b2a7fa07511c81da42f094b4064903e3c1adf3fc8db6bd0c2c1ac1c148e5b

SHA512
056fe0e32ff1a43bce8a27596ea4b63174f16a968e10edb60fdd0b5e7e7e0c05fbce3f8ddbfdbd6902d39b2c07b801c6323549a0491a224dcbdf75c495078e79

Download Submit
/data/data/com.camavoyaxiwokocu.huvusuwi/no_backup/androidx.work.workdb-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.camavoyaxiwokocu.huvusuwi/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
e529dc9cbb97606004a92d30ad4024eb

SHA1
649b7f0add7040122d7d1eaf2599399a48fe378c

SHA256
b3fb08744eab0f48cea67a30c2ced13652a105770f95eb5e0d2efe840aaf8ee1

SHA512
ff95ed81b926bf3cbaedff8fc39edb0ed25eab47de1a36ac3a750ae5805ec6bf6f386d87cd6ef172d5fe31b20d09f6d2d0b28cf05ad448d7b251fc7b9397b31a

Download Submit