e732a71958619e8b845410c137146b574f17b9eaaabfb1f3171037ef8f2dd8ac

Analysis

max time kernel
88s
max time network
150s
platform
android_x64
resource
android-33-x64-arm64-20240514-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240514-enlocale:en-usos:android-13-x64system
submitted
22-05-2024 11:59

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

debug.apk
Size

7.1MB
MD5

6ccf20450978cddc36a6dc6cc8bfc14f
SHA1

b74826afd024352ce5b62d3592ac98a51bcc4918
SHA256

e732a71958619e8b845410c137146b574f17b9eaaabfb1f3171037ef8f2dd8ac
SHA512

08522dce68198f08e6fce9c20ad75ee4b14bbdfcd0c1e2729f0d4809dbb9ed2e7dd90a0bfa8352cd7295fec3dee515cfd85a582c10116eee1166df382b3feeb7
SSDEEP

98304:MDJwLKoTwru9x8TdcGTY+YdokswkRjGyd9Gv/VqJPjNuFBGsAIQ/6bkbVa:2J6x8TenbshhrdO/oJPRAGsA6CVa

Score

7^/10

collection credential_access discovery evasion impact

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs
Checks CPU information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.applaunch.mixo

description ioc process

File opened for read /proc/cpuinfo com.applaunch.mixo
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
evasion discovery

T1633.001

T1426

Processes:

com.applaunch.mixo

description ioc process

File opened for read /proc/meminfo com.applaunch.mixo

description	ioc	process
File opened for read	/proc/cpuinfo	com.applaunch.mixo

description	ioc	process
File opened for read	/proc/meminfo	com.applaunch.mixo

Loads dropped Dex/Jar 1 TTPs 4 IoCs

Runs executable file dropped to the device during analysis.

evasion

T1407

Processes:

com.applaunch.mixo

ioc	pid	process
/data/user/0/com.applaunch.mixo/[email protected]	4297	com.applaunch.mixo
/data/user/0/com.applaunch.mixo/[email protected]	4297	com.applaunch.mixo
/data/user/0/com.applaunch.mixo/[email protected]	4297	com.applaunch.mixo
/data/user/0/com.applaunch.mixo/[email protected]	4297	com.applaunch.mixo

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
collection credential_access impact

T1414

T1641.001

Processes:

com.applaunch.mixo

description ioc process

Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.applaunch.mixo
Listens for changes in the sensor environment (might be used to detect emulation) 1 TTPs 1 IoCs
evasion

T1628.002

Processes:

com.applaunch.mixo

description ioc process

Framework API call android.hardware.SensorManager.registerListener com.applaunch.mixo
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

T1471

Processes:

com.applaunch.mixo

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.applaunch.mixo

description	ioc	process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.applaunch.mixo

description	ioc	process
Framework API call	android.hardware.SensorManager.registerListener	com.applaunch.mixo

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.applaunch.mixo

com.applaunch.mixo
1⤵
- Checks CPU information
- Checks memory information
- Loads dropped Dex/Jar
- Obtains sensitive information copied to the device clipboard
- Listens for changes in the sensor environment (might be used to detect emulation)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4297

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.applaunch.mixo/files/AFRequestCache/1716380931823
Filesize
3KB

MD5
2ca4facb0ad5078c34708cdc0d2baf79

SHA1
06e1a477b9ea9ca662dde9ce13f84f9cfe0c4546

SHA256
024a554e0ad7349c800507f09d7a32028a717adbc504604effd6d07d7cf94a37

SHA512
2b815260253ffe7ed70ec006ada5c12d7eb3d9f66f86be697581623a280948bc46690d038a0e2bc75c6243ca69d8729dd924cb119257f58c325c8bd990159134

Download Submit
/data/data/com.applaunch.mixo/files/profileInstalled
Filesize
24B

MD5
e3d68243cad00a145afc213562aa7765

SHA1
d48f4619486cc6b7b9a4c40dcdfba0db518cf354

SHA256
b8a0e0e85519872d5ae813b5357f52e8e980d95667d30336dbb565fe906a4961

SHA512
92b8a3f26bbfee52433b0023ae1482364e893ff1a2b55963d3cd8a0a2d40293a2cf6657d219af27a9b6e119962971e48c1ceec991fb2029cbcb504369b97ca10

Download Submit
/data/user/0/com.applaunch.mixo/[email protected]
Filesize
8KB

MD5
ac209a0b4dd8c3908ca8e0ec2e5c77d4

SHA1
beb86f3c2637666dc238aa2dcfeb78169cbebf62

SHA256
f7f2390997b68beea68efa62e75a8c38d2c125b8d2c1a4c25ed00ea5d1e203fa

SHA512
d8339e188423223f49f2b4b4521f9e014ecf2f9a17242a6394625ca43686fb86bd4978c0ba79b704137155ec4a89b08e302ac6ed1cf14f8d8bfb0adaaae29c13

Download Submit
/data/user/0/com.applaunch.mixo/[email protected]
Filesize
11KB

MD5
0bba2eda283057834590001bf869edb7

SHA1
e82dc44a92e9607e112a845d8c458afbac7dc6c1

SHA256
090eea545887cf6b28c51f795bfef902cdc03cd3f4c02695761086d9fd51d4f2

SHA512
cdc0d9a03f4f5bdad02b46bb40f8663cfa6bed0a2a7065422837b4f5439dcb8987eec03df76f104ca06b1cf61988b8ce9965997d9d454aed3bd2c8630eac5bc7

Download Submit
/data/user/0/com.applaunch.mixo/[email protected]
Filesize
22KB

MD5
ef1a7adb109b0ad4da578f51e3efc1ae

SHA1
39672e1c975ff4ae759b869d0410b90fe1ef7b4a

SHA256
3ecedeb07b6b3a7d1bd235b387ce65894d83042a1c1bb641cba0a19c1a1f7146

SHA512
936257fe696b8434f5d9cc0aad30736d07f97d14c6b1ff968ca3ba405574a0018d813a3126ce25635c255e8717d0abee485cd6ec974722082fdadc6689acf138

Download Submit
/data/user/0/com.applaunch.mixo/[email protected]
Filesize
11KB

MD5
c4d6d35e8dc357f7b63b6eed2d76df9e

SHA1
82d1922fd10346d3001d2575dbd89c8836bdb931

SHA256
2d286b7081c586db4c2eeeabd8284d7dfec04ec3ff3dd8b15b75dd320dd9f452

SHA512
f5e4c28860cc8722f62da3883746a92e65348f9a338c8ad9a3a20212ab5e74485b3c049cc74da6fc085292e478fc18fdb970e6e0a6aa0b181db3521383b047e6

Download Submit