hxxps://happymod[.]com/fortnite-188-8-mod/com[.]epicgames[.]fortnite/com[.]mod[.]fortnite-mod-apk-v12-50-0-13070927-android-down[.]html

Analysis

max time kernel
102s
max time network
103s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 01:16

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://happymod.com/fortnite-188-8-mod/com.epicgames.fortnite/com.mod.fortnite-mod-apk-v12-50-0-13070927-android-down.html

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.android.chrome

description ioc process

File opened for read /proc/cpuinfo com.android.chrome
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

System Checks
T1633.001

System Information Discovery
T1426

Processes:

com.android.chrome

description ioc process

File opened for read /proc/meminfo com.android.chrome

description	ioc	process
File opened for read	/proc/cpuinfo	com.android.chrome

description	ioc	process
File opened for read	/proc/meminfo	com.android.chrome

com.android.chrome
1⤵
- Checks CPU information
- Checks memory information
PID:4160

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

files/dom-0.html

Filesize
61KB

MD5
862b4329b20c3e557f50dde072297809

SHA1
e36ba77e5a3df46837e0800dd3a664813364efe5

SHA256
177eb4e022f3a8e802d6ffe2360af731d2ba87d3ec0f5200873f1ca1ef96bf15

SHA512
a99110ebd9117177eeb0f2a517373213fb873e8f9aa84fb9a7482494dfada00a452462c258fe7f6f8ab6e716206fee60dcf46cdc6791ea2aa970478d6269c3f4

Download Submit
/storage/emulated/0/Download/.com.google.Chrome.vkcAMG

Filesize
448KB

MD5
0009c9aa1bf187d5c87c34c04ee09f31

SHA1
561256915a9835c822da9a9f6ab6583534965460

SHA256
d69bcac7d24480b9a0e52adb90deae983a1563b39e9b3f121239ab336f3eb7fb

SHA512
f29362596d769f825f396cd1b92ca733bcd6437621291015f216d4ca45d114e8e4fe5bd9229f2050a9aa213b4d04f2a379a6e2727695ac4fd16fb4d6d41503a5

Download Submit
/storage/emulated/0/Download/Unconfirmed 112449.crdownload

Filesize
147.1MB

MD5
207d3534a9ce00b846d47a3166906dd6

SHA1
cb51405542d08de4e2d985ca137c2d6b9e7ddef1

SHA256
f65aed2ef1f8fc22768e90482d2f78d23966c0d21da847147a0e6c9084a58a47

SHA512
b8f7611a31f50203f441eb316b284487b39124bb12a9e2f0d79c278a6b1a4279c9a76ba0fd27c02d353211c5f1e57fe3af4690ae4a50073f97abc77b09750b16

Download Submit