Overview

overview

10

Static

static

10

karma.apk

android-9-x86

8

karma.apk

android-10-x64

1

karma.apk

android-11-x64

8

Resubmissions

07/05/2024, 18:23

240507-w1lxnahe7s 10

07/05/2024, 18:12

240507-ws828ahc2s 10

Analysis

  • max time kernel
    139s
  • max time network
    144s
  • platform
    android_x86
  • resource
    android-x86-arm-20240506-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240506-enlocale:en-usos:android-9-x86system
  • submitted
    07/05/2024, 18:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    karma.apk

  • Size

    2.2MB

  • MD5

    179c8fee6aefefde45f4b574a5087ec1

  • SHA1

    6f29cff8df8bd3f1778db96b1098acd90e97eb11

  • SHA256

    352389a788f0dba067feba582e329c75c4c811511eb96e4b1e8a45fa27aefb04

  • SHA512

    6bf617a6c1cb0705e07fda97f719103c5cb542963009bb14e0df7745e46fe6a7c661f66bdb4ad34798b9ad0673a5b2dc1fcee68c95f3c72f4ccde47739c70a30

  • SSDEEP

    49152:AgvYgTQuGaW/d3VVQfDd55E8HJT1tDPhlg+giKl3fjP01Mt:KHuGxdMfDd55E8HJ3DplErcCt

Score
8/10
collectiondiscoveryevasionexecutionpersistencestealthtrojan

Malware Config

Signatures

  • Removes its main activity from the application launcher 1 TTPs 56 IoCs
    stealthtrojanevasion
  • Reads the content of the call log. 1 TTPs 1 IoCs
    collection
  • Checks if the internet connection is available 1 TTPs 1 IoCs
    discovery
  • Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

    executionpersistence

Processes

  • com.example.reverseshell2
    1⤵
    • Removes its main activity from the application launcher
    • Reads the content of the call log.
    • Checks if the internet connection is available
    • Schedules tasks to execute at a specified time
    PID:4242

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads