39eeb95059edadedd820a58ee53599d93e21b8f683521df26369dd64fa7285f2

Analysis

max time kernel
153s
max time network
152s
platform
android_x64
resource
android-x64-20240506-en
resource tags

androidarch:x64arch:x86image:android-x64-20240506-enlocale:en-usos:android-10-x64system
submitted
11-05-2024 12:24

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

PikaShow_for_PC_v83 [Original File] - (PikaShowHD.com).apk
Size

16.4MB
MD5

39513824abe081261fc6f7b29c311aaa
SHA1

01c8720dd45154520e7ab922a0ab3b0c191dd529
SHA256

39eeb95059edadedd820a58ee53599d93e21b8f683521df26369dd64fa7285f2
SHA512

6b13be7e2e87bd7dd31ae3581954a8807906ae65c2e00410084e238b47fa449a76f47a2b0822d86c048eab7bb540b495c8cce4947a78be932ae786cca735023c
SSDEEP

393216:ZU3PewET6HU2Sl+pulhfIhzxVtdEYUrCmlCS7gwU:ZU3PePKF7jhzxyYK7CTwU

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.offshore.pikachu

description ioc process

File opened for read /proc/meminfo com.offshore.pikachu
Acquires the wake lock 1 IoCs

Processes:

com.offshore.pikachu

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.offshore.pikachu
Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.offshore.pikachu

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.offshore.pikachu
Checks the presence of a debugger
evasion

description	ioc	process
File opened for read	/proc/meminfo	com.offshore.pikachu

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.offshore.pikachu

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.offshore.pikachu

com.offshore.pikachu
1⤵
- Checks memory information
- Acquires the wake lock
- Checks if the internet connection is available
PID:5060

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.offshore.pikachu/cache/image_manager_disk_cache/c6f55c2631265b594c083d179761aeee6d5f1dad242e958816a213d431864612.0.tmp

Filesize
27KB

MD5
b3caa0a2d98b0c9b91f5a388833c3072

SHA1
47539f5a206a3be1f1f32fe0c15e8105a6333178

SHA256
cb2f42fc23a6203300dd9c020791676589f094e5e3050b413ab1415bcdb75e28

SHA512
8273d9bed68610f216b25e5b8f5d9b2ebb7e7f4fa6c13d746dcac5c29066e13e7780b1f8b0b26050bf70a17cfe3dc7a6a731e9c4b5e2536190e49d48d937cf83

Download Submit
/data/data/com.offshore.pikachu/cache/image_manager_disk_cache/journal

Filesize
179B

MD5
1a580359263ad6517af4dd3f13632efb

SHA1
f67f01029fdae0bc43cfc6a6d42f2fdc3b87f4c6

SHA256
d79e7ee7b5573f487abdc894bb50003102613edd4065dcf9f11c36978744d048

SHA512
1e1e4b99b492ab4156606b8f17947bb91ade8099f713d77465e527a0d27e7c3424123ba342fecd1a9236827498da7c2f3d96b804856f4cb5cd1398d6b8428fad

Download Submit
/data/data/com.offshore.pikachu/cache/image_manager_disk_cache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/data/com.offshore.pikachu/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
e43b654ce52a82f3b4a320fba12ac407

SHA1
6b9eedf7af77f9c5c7dd571cfe6b9d138678f90d

SHA256
a6ba25c7d5a94de9fbe5d9eb1ab89bd7735ff05e83fd5fcdd90b73f763811686

SHA512
7ab1d133859ab1841fb7935394a4560c2a45ef6023bad2806d944014444cfd9116c159566219a6d3b9dbbea43fe5d38b0698b1c08f9e72a74f52b649cf71e356

Download Submit
/data/data/com.offshore.pikachu/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
c8bbeff8ef1593b6051c55942e3ac801

SHA1
41e9a6e7b26b42037eb841fac8db4b2e11481a1c

SHA256
6aba63f3bbfd0d49acb37342d8f9e8f59d02fb90764708e29c39b6f89521cc2a

SHA512
3945fac640cca608d68101f6aad1e7571cf42d2959a3975b9c201dce109b03b8e483cfdbf8d185171df39973a91f577cfe95386da209168abd2e7c9300844467

Download Submit
/data/data/com.offshore.pikachu/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
ccf074b5538340e19f1c0da03da992fc

SHA1
797b6655f160aac1b715d53a2b99d7fa242ee967

SHA256
39e936366e063122ec734949ac49ba45b6fd8a7d6a700fcbdfcbae243c516bba

SHA512
57b083166f408928d411663b1f70f76995efde5c94ef9db5ccaed1a8c485b00bd1eab3b0bd0f68400b1e48506fbbc26a76b09e65abfd852d98ae425c1a062983

Download Submit
/data/data/com.offshore.pikachu/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
3f83b30cb659ac292aa7386ef1c5c24b

SHA1
c9f2f82385ed2eac4677a19c1191c32fd49990f9

SHA256
0b66ebd537adee2904d1cbbb543f7c22f74b2e9896fe25ff93c025789621612e

SHA512
427eb44a4a5bc4a8b43af61b889579f40ac9c6ff897cd1e14e2ad59a3a5d82b02223f8433f7622d0a86670e9adfae75466febe08cdbeaa6540edcbefae22aa08

Download Submit
/data/data/com.offshore.pikachu/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.offshore.pikachu/databases/google_app_measurement_local.db

Filesize
16KB

MD5
b405261330bfc5f10ad17d82bdfb023b

SHA1
fb78b0cef55b062c8e37a9c3ed04fc777bdedb0c

SHA256
d1cebf3df049d33e6bb8efdc44f3dc0ca16b927950bef160dfc54cb64c82c686

SHA512
391648d033db3e8c531de83ea24685c00f8d2beb0b263286e26b081411f3d0a3aa8bb1dbb117a40e289e8fa822971e8fb022e8e6be8fec5c6be289320473526e

Download Submit
/data/data/com.offshore.pikachu/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a0c7232f4e6d5d29067344480a5b755d

SHA1
b35e32a350fa1ece70d66269bc9d180c7c59084c

SHA256
fe371ee3f7e4a9d27f1f23ab0937ba5e8005bb41c85c05a5a964f3cdff5bc4b1

SHA512
780c1cfb4d2470c1294e45ca2bbdc057027eb750a92f1a070820bd20e31619e9527024cd48453e6cf95879d0da1fd9095d27c6c5f730b761225990d5469abf9e

Download Submit
/data/data/com.offshore.pikachu/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
27f68be98ad2fd291b20b05170766722

SHA1
3736c66c276a413e9831da86790b930181a3bd71

SHA256
515dc51cf81a62ab445e329e762854f131169884250539ec9853d66ccc16e44c

SHA512
280d521b36ae75215b4f85ced5d26fd1a3a8fe3bfaa2d17843f653f0776a413eb4e7b73179cb296845c03d6f4fb9a58410d4c9ae53143a7072e92cf5095c1c5f

Download Submit
/data/data/com.offshore.pikachu/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
fd70abbfb4f2e09c842e5fcc5b9d427e

SHA1
b88bca770ff364357fa152a5e9fc0b90664d3526

SHA256
a08443673bdd49a1573916e6b12eda6ae9ad96127a51ea6540cae98a8765bc17

SHA512
46b2ba943bee5e89fc65990d748cf770a219e203f62361411e3615f07f5f4b6ae4bf03a6958686b1740ee7d12f48646bfbf83d392188b63b2b6c0f60ac57eda3

Download Submit
/data/data/com.offshore.pikachu/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
4801587c0b25efd821a2e069f4934ee8

SHA1
b062c6e4597ccdde3892f4729fb503013a131330

SHA256
2323cbc68dcbc0da33a11e79389912db2f2cb5b902c86c6f3bcc63898eb41285

SHA512
277b631a01f9fa02f78c23e2bceafb0292480e2c3c424cd278febc2664eb908de1423a5cf9a53a533c52bf5fc5e7fac2ceba0be55c87a69ec8322175406367a5

Download Submit
/data/data/com.offshore.pikachu/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
8574013cb2072b2b00e890ffb6411a3a

SHA1
3e54d70993ed992b408184cabad7bbf2fdada9de

SHA256
76f230c55350421984f162ecc5b6de7d409040fb825392b9326834cfcec2adf1

SHA512
02f88ab68a7dee3e677a4810d055ef15da6ff29610e3cce9e11afc4f4207ce38e34be442dcd16a2fa40473840d3b8a6e054892e5a7511614b8ca4b0413cc0c77

Download Submit
/data/data/com.offshore.pikachu/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
72a55c7ef455b76e9731a4ef7e542424

SHA1
e96e8afbe211f52b6ffa625a6767608224324c43

SHA256
0b7e4b38f533ad1c2c4ae99a44138eb75025445e5b21741d918a540142fc89d3

SHA512
7f4921f98e005746a1d8faf4742a659ac63fe1c16af6446be4882cb64d38ed1cd40c7fa328745c90a0a5692ac7b0e046ed7938c3b998a49e810afed255e82c2d

Download Submit
/data/data/com.offshore.pikachu/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
6f7b0e389cf29a28daf15ec601a0c2fc

SHA1
6323198ad683e5daca1c53e2eb81ca608bb55e8f

SHA256
7364519224f669bfbcf8edf0e6e5c090156c84500840b53e5166f8c4e7c18a5f

SHA512
7e5c97b4a460aaed279337bf5af08fb5a27dc53637c88b391b36ab554c6c307f3597d33032b89a0cdd80689618d3ecc131aa0ae728bc4ca9130d6e440d7e8f86

Download Submit
/data/data/com.offshore.pikachu/files/.com.google.firebase.crashlytics.files.v2:com.offshore.pikachu/com.crashlytics.settings.json

Filesize
713B

MD5
ad3af2eb041260b69e214cfe4a695ff2

SHA1
3b0a5f5af3c99483ffa8157978152d5121e1861f

SHA256
156283a28e970e1990edcd356efeff0c7f09a540bfddd42e71bed045f3a948d6

SHA512
8052a1c5d7fba54fbc91b992706d413eadc16236c79ad6fc0ab2d39bbed62b2ac2120285976472ba336e1ec445e17c29027c42269a63d9404cb544df07e483cc

Download Submit
/data/data/com.offshore.pikachu/files/.com.google.firebase.crashlytics.files.v2:com.offshore.pikachu/open-sessions/663F63AE00A2000113C425A694D094FB/report

Filesize
748B

MD5
e147e2f47539173dbe4c27d9b8212e2a

SHA1
954551ff524f1e99a392bfeb10942becd6a6a583

SHA256
6e82f7eac19db36466d551dbff69fab80a8aab2a10fdf9da9a844beb16e0dd58

SHA512
050e12c7c220b2d4d3c25cc1efa19716b1eaf7a27adf485c6666824255c83b35ce4383918f9e3e09c5639fb7ecbcc4b34239fe2423a30c6a73634b8e19f7d51c

Download Submit
/data/data/com.offshore.pikachu/files/.com.google.firebase.crashlytics.files.v2:com.offshore.pikachu/open-sessions/663F63AE00A2000113C425A694D094FB/userlog

Filesize
88B

MD5
8300a06ea3e7116f90c0e0f24e01fb30

SHA1
d6b87813da2ad9065c7270aeaaff82e03eb38186

SHA256
275fcf76ff9c7ea5fcf90136363c317c5c5425ab04869feed5f41924b8c313e7

SHA512
474cbd59d57aa9196f6653e0d9df284c8b80fd7c46bda06fbe11401edf65547a500077cdb32891e7742ca91831713692d974090c6f5aeeff09bdb1145d0981b1

Download Submit
/data/data/com.offshore.pikachu/files/.com.google.firebase.crashlytics.files.v2:com.offshore.pikachu/open-sessions/663F63AE00A2000113C425A694D094FB/userlog.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.offshore.pikachu/files/PersistedInstallation8984534581394824709tmp

Filesize
90B

MD5
cbd3126bd22907fdf8c5461589f2811a

SHA1
8b3958fead4c2315ea44292adea47b64a8562856

SHA256
7cab216fc961aebc5554acfbe1fe87b6a26d8e24a40b18bb6a83287cf4b6879b

SHA512
15e14a1e130d6fc7c2e8e34993fe21b734aa2574ce86bf47aae26f5e0cce0929d1ebe7741deb0b46a4c69750a20f69fdb9d4e33e1da4ce7e8a72651cd98c18ff

Download Submit
/data/data/com.offshore.pikachu/files/PersistedInstallation9114083106838303172tmp

Filesize
567B

MD5
81dbd51975a714c6c20eb7254f4a03fc

SHA1
823e3c65e0b4d2dadd31f48e0bbb66cfa3e7ecc5

SHA256
c4c9b3b11ac8f8dddae8c50ff842dbd7f064b9dca4adfe5b014ec68918292f20

SHA512
e40c45c8f688bdd47a1345047750c59b4bf7378c016159ee39feecd5f9052470e99d46aafb372e23c6713f25b5bb97ed921972a49bab44ebb9433d30a4d6ff13

Download Submit
/data/data/com.offshore.pikachu/no_backup/com.google.InstanceId.properties

Filesize
2KB

MD5
6e5da976a2f4e5d4cc1fa4e4ca38b564

SHA1
09a2b4ad09d18c91d7e4157d0ff8f3e64f26e136

SHA256
9889b14035faccab9d353ca40b1f343a8155b72b48e6dc337473b8677e3eb73c

SHA512
0fc3a2da0997ec5bfccb67dbbce9566d2dd5abd2208814ee658a2d7061d70ba25167964166301d5b0230c678574f6ca19b15b2c35b2c07f0b29ef98b411be34a

Download Submit