f1cb29c925ae1c8c941f53f42507de162407122ec825e33a662430465f93b839

Analysis

max time kernel
7s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
19/05/2024, 21:39

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

box.apk
Size

7.0MB
MD5

234c80631776ab147b67e72dd99d80ee
SHA1

7a54c1f4bc0d5cf58a21cb2dce177851a660ab7a
SHA256

64a84251f525aa4e5368b5bf4b87aec5ffa2f5907cda0005f73505c67f978280
SHA512

3a22ed0f3b4ef71d5a64fb66a9d3d12c4d2dde234cf3c5640b3bb6d5929ad1b23cbba0440ceb43113331fe0e8f826297493c358c7f492e7db400cb6bc224d29b
SSDEEP

98304:UAQWC295gIeXkMUaYfeNjgc70fGCgyVDo97NELpYWTS/RCVH0LZzvNcGGxpeVk/G:eq5ggaYsjgceGreDaup6RGHC1+vvG

Score

7^/10

discovery persistence

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 2 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.a3733.gamebox
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.a3733.gamebox:pushservice

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 2 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.a3733.gamebox
Framework service call	android.app.IActivityManager.registerReceiver	com.a3733.gamebox:pushservice

Checks if the internet connection is available 1 TTPs 2 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.a3733.gamebox
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.a3733.gamebox:pushservice

com.a3733.gamebox
1⤵
- Queries information about running processes on the device
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
PID:4206

com.a3733.gamebox:pushservice
1⤵
- Queries information about running processes on the device
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
PID:4273

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.a3733.gamebox/app_crashrecord/1002

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit
/data/data/com.a3733.gamebox/app_crashrecord/1004

Filesize
227B

MD5
1d6cffed2ac2bee54176594ea273f76a

SHA1
f048cb79dc21af9241d1d095cd0dda2f44e99e79

SHA256
642802413a60bd50df5af07e711c9a4c90dea10a0162e913ac4a82ecc3d33be2

SHA512
f65439325dd1ba1f5e209619bd8c4790490ebb475361858358edfaa09e773dabc95647ecd21eb216f7af1f97ebb5f2633da5672d3ad1455d400029020a6d3275

Download Submit
/data/data/com.a3733.gamebox/app_crashrecord/1004

Filesize
239B

MD5
b22a32546ad3b0de52b7f4c1923c9568

SHA1
7fe7386db3323553b46e5608f00939709cf6979a

SHA256
e1b43f2c2a8254933d1e2f02abf56f7672788405a322560c22f35848902c98a8

SHA512
471d3f50e5ce5faaf658717b91a80f025c80a5be8ab708ad507a9c89e1766959b47b15a267aa1a123b421043ce6af6befef89ba03e9f5242f088205fd421bc4d

Download Submit
/data/data/com.a3733.gamebox/app_crashrecord/1004

Filesize
239B

MD5
c2c9ca5e38e2e67e182b3b77d9daba28

SHA1
c5a123af3ebf6bda6b8a7a8114c8e25e6f10e0fb

SHA256
0c557207f5cfbe0bf78eae931685e0db5596a11ac975ccef014a65a652a0b056

SHA512
409787808223d42bcd58f1e4fcf51d12e70d08e8043f237ec0becdb728ed9026c9dbe3a65659683b59b4b4977e7f9cd01144fbc59282ac8adad69fc6cf4b87f7

Download Submit
/data/data/com.a3733.gamebox/databases/bugly_db_

Filesize
92KB

MD5
0a958e7610fc3a230da016b05758ca2b

SHA1
2578f033f28e79928b8f0582ec411b9414dc89f6

SHA256
937d9b21ff00457d626463dcc174945934f9300881cfc22452c6c748e80cf9b9

SHA512
ccfae733372aad8d4a0a38b4c6b44ba749505ce842ab8815c09b0b19da27ca3e655df91beae330868372b6538d069569f3b64e1d569ccc224ac53f387119d16b

Download Submit
/data/data/com.a3733.gamebox/databases/bugly_db_-journal

Filesize
28KB

MD5
823402e529d94d2a9643e0083974ad4a

SHA1
d0f89b36d21ded3c69a141e27b66d0a565a7121f

SHA256
8a5943f821474d38fe8263a8b85a0d44c51914f77875472c80472cf97fa6c70a

SHA512
83d8dfc0fd56f36e96d86060e5e1d9283b462c35bda4e071971032f86bdb7acef7af34ad7fbed874670be00874a10729ad149b0f95ded84e527aeb6375a1bb74

Download Submit
/data/data/com.a3733.gamebox/databases/bugly_db_-wal

Filesize
76KB

MD5
193e2ec70f584e5eb8126130a01b4e84

SHA1
c46d521fe80bf2ca24caf4740b2fd1a4f9a43800

SHA256
bf3d279be2b5b9a41b2e5e82e31e7ae0bc14e6d3c0bbe9401243a0315d22c41a

SHA512
61e4766653f473c11c193e064f710c0dd56184cd0ccb72e32b373a4489d1825d6f6d1824964170a50516e7eeaa667b877dcddc5b2364ab6c5077af9e9ed3b5ec

Download Submit
/data/data/com.a3733.gamebox/databases/green3733-db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.a3733.gamebox/databases/green3733-db-journal

Filesize
512B

MD5
f85a0f2197be34284df411a12dd0e625

SHA1
0458c1c5a88fad3b48917ebab454f0d3c0d6fea9

SHA256
61942a77d3b976158ec2304747a3f16cd424cfe4a9b3d7b423ae0da6b45e7da4

SHA512
cd673ae682d6b002395ad3a7e171170f72c8f3c5b406441120b72e3dd6e3bb70295efb874e6f13725b56576335e6dcd5defff7c3dbc0e30b765368f2068741f6

Download Submit
/data/data/com.a3733.gamebox/databases/green3733-db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.a3733.gamebox/databases/green3733-db-wal

Filesize
88KB

MD5
29fd337a7511d0f4aa20564b7f415ab1

SHA1
dfad1ce9ae4f32f8cf32a971a59fc944f23ddf55

SHA256
1cbe53a1efc02efee25cda3a2b5bc321f6801d9dc61f192d6720788b0223c360

SHA512
78bd456da9a93c0af9eb1c1f62a60a31506b07120178b747d28002b9d6b6930cfb852d39e9fd746f04ce75d586bbbf4fc34cbf95e30b664fed808053c6d7aee0

Download Submit