cc5ba183ca686b45e37b903de57063d98c97914cddf0db2feaec70ce0d6f96b6

Analysis

max time kernel
132s
max time network
174s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 12:10

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

114-1.apk
Size

14.1MB
MD5

a3d4e51edb653cdb33883229cd432d00
SHA1

89a03c75e1269bb89df6c1e4b55a97ce69569ae5
SHA256

cc5ba183ca686b45e37b903de57063d98c97914cddf0db2feaec70ce0d6f96b6
SHA512

356f6332f2b996c9218f32891611b27dc070e16124a426d714c92104eecfcba5c009c5977e99ac5800c6316777432787d831d4643a89de6f8090c4d74d2237f6
SSDEEP

196608:U5SKj7zfdgAKQX7IBoex0BHQ7BOnhQrQM3rWwXa1Y/sec7S9i53m2/kh/Rgy:zW7T2A/7u5aBqB0kQeqSU57n5r/ksy

Score

7^/10

discovery evasion persistence

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

Processes:

insepet.skydroid

description	ioc	Process
File opened for read	/proc/cpuinfo	insepet.skydroid

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

Processes:

insepet.skydroid

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	insepet.skydroid

insepet.skydroid
1⤵
- Checks CPU information
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4262

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db

Filesize
172KB

MD5
fdcb0296fc95b0c06c76966bca8ea7e6

SHA1
afa4052252a9f7f9ba7847c3f71d920447f163a9

SHA256
841ac91f357c0a941ee26119c0a97689209c3a797b93529000366d36c7212fcd

SHA512
4298ea3ef2ec7ada2d93b23c180933f66d0e99cdb06307911c4e3777b6df6e1ef83bfad4174d7d78335e63fcb67e043f874b935c686cfdebd2a99badcbb4ab1c

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db

Filesize
68KB

MD5
6e553c64c3a158103942ec2dd7eff0fd

SHA1
1d5c78f10f284f2e1d3a0f093a4993f417344fdf

SHA256
b363886aef8872ea42f8547dfd36183101affa2aae0d8b6790f9648f504915cb

SHA512
f3694b35efecb00db5a2461c8e29298998d3b7d0ee08965fea0b0c9b6d4aa3691cfbaa23df3a2c776c1735c1ee4d8859e0299939ff91735a2eabb0d83241c86a

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
512B

MD5
f9d6b8fc7da2f0ed8d77be58f121c76b

SHA1
43948307d012f391edf12339e05fe941e887e6fa

SHA256
c3080b67ea2775322f57105300011d6e0e58e3135d2598fbc7138773c34bcc2d

SHA512
c71f96cedc12f6f1f3538a2579a945ba5dedf9932a85e42028bab9719ce62a0e2bdc7c766ad29d622d74864eed095b31776bd7eca89f51e858f27d3414f8fc92

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
bf40fefedc02903e8b42b39c596a0312

SHA1
c67589550d6f0154a018b2839e65d6f20a94b338

SHA256
bbaf86eec1ffa4e4047a190d6a074a7fd172880906bb77efb544fd31623471a7

SHA512
95c6d6375375a84ea51128e792aff04c125e1278b04b013d10cb7b39b51d577ff798b28f170c4934e269dacac734473c25a54ded412ece8c5a76eb95f62941d5

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
6554b1bb5c215d16f1ad261089df5a17

SHA1
f15ee427ef35618c10e4f0ab777c7fb228fc8c82

SHA256
da7bafbe456f5b22f8542839db8f58be410e1e610ab2f6e502efc2bd4f2cdef4

SHA512
19ba6865db1dfd3cff657a9b5d68d94297b5ac66f128c214c2436f4497b56a03356840b9925f839600bdf3227fba02d711cfdc45c44d5b37bc80cc34d2883ba1

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
920398b28f0ce655dc6dc15e0d4557e4

SHA1
0864eaa49ca53f928921c80cc4b3c0b174370987

SHA256
96f6abaf21b552cbb101ee1f60dc8bb47dadfa7a92f38d7e8139a95e56e35756

SHA512
3811759e5c32e1825d2f09d07e7f6a97db2047a0449be540e9cc887a98a4a6f788c59660da9dfe4bc8fe2aba213f01e48baee0ad51edcc4fb746a8f0182177ac

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
2cf8bbb1111a46475335b5d4a2d15467

SHA1
8ec6a3eb81d09a29f061dff5fe2840edf61df57f

SHA256
16c1437cacf0ef2f5ddb61365ba72e93fdfbfc5a93eba539b61a2155f5d67e0a

SHA512
8ca1d0495fc7d73ca59b4cf87c0a5db66effc94746c7510fefc1b7061de10a0e1abbddd176043db45fc5389afb2d001988c93d225488fd5793bae22f350b7038

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
16KB

MD5
4fb08d615f712701d11eb9473562c920

SHA1
c94328b54fdabe315ac21923e97aa011551304c7

SHA256
42f227402c8ffadcc536576acaa4b1f6a7b4348f2a163872614ee23243dc3420

SHA512
152524689bc8c53c20b02b13a5fc95ca67193283ba45f502915a3a77d8709cb43342756369c98eb1db1ae2aad7fa93626cffe24748006ffa16a84ccd060ceadb

Download Submit