cc5ba183ca686b45e37b903de57063d98c97914cddf0db2feaec70ce0d6f96b6

Analysis

max time kernel
130s
max time network
160s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 13:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

cc5ba183ca686b45e37b903de57063d98c97914cddf0db2feaec70ce0d6f96b6.apk
Size

14.1MB
MD5

a3d4e51edb653cdb33883229cd432d00
SHA1

89a03c75e1269bb89df6c1e4b55a97ce69569ae5
SHA256

cc5ba183ca686b45e37b903de57063d98c97914cddf0db2feaec70ce0d6f96b6
SHA512

356f6332f2b996c9218f32891611b27dc070e16124a426d714c92104eecfcba5c009c5977e99ac5800c6316777432787d831d4643a89de6f8090c4d74d2237f6
SSDEEP

196608:U5SKj7zfdgAKQX7IBoex0BHQ7BOnhQrQM3rWwXa1Y/sec7S9i53m2/kh/Rgy:zW7T2A/7u5aBqB0kQeqSU57n5r/ksy

Score

7^/10

discovery evasion persistence

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	insepet.skydroid

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	insepet.skydroid

insepet.skydroid
1⤵
- Checks CPU information
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4321

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db

Filesize
172KB

MD5
fdcb0296fc95b0c06c76966bca8ea7e6

SHA1
afa4052252a9f7f9ba7847c3f71d920447f163a9

SHA256
841ac91f357c0a941ee26119c0a97689209c3a797b93529000366d36c7212fcd

SHA512
4298ea3ef2ec7ada2d93b23c180933f66d0e99cdb06307911c4e3777b6df6e1ef83bfad4174d7d78335e63fcb67e043f874b935c686cfdebd2a99badcbb4ab1c

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db

Filesize
68KB

MD5
6e553c64c3a158103942ec2dd7eff0fd

SHA1
1d5c78f10f284f2e1d3a0f093a4993f417344fdf

SHA256
b363886aef8872ea42f8547dfd36183101affa2aae0d8b6790f9648f504915cb

SHA512
f3694b35efecb00db5a2461c8e29298998d3b7d0ee08965fea0b0c9b6d4aa3691cfbaa23df3a2c776c1735c1ee4d8859e0299939ff91735a2eabb0d83241c86a

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
512B

MD5
8c715d500db86dfafd36be3a93119567

SHA1
4830fd6bdf289c3af1c9ca397aa0baab048c2a77

SHA256
262b4653e85ad17912cebebfe172dfbddbe910264f28783790d0160867716f9c

SHA512
208ed8ea1cba31cbfa2a917c37b6fa15870f80584b4af0ce4bafe70517dddc9315c93d11ad93dad3a6f78e2a8ae217185f934d8ad2652d067478c95a4e093625

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
6012521621380bc7b213b5e5eb801afc

SHA1
9d0d80009e5e5a282eb247dbdf2c742626ecebe5

SHA256
429e60f60ee74c6e9c3c5755b7f27ec7dcfb988344ac4425f75e531b99ecde89

SHA512
725e9ac478bd2e984bc14bb83dc437254dee32973a2763da7458d8edcb5246a7eebe9379389f1e3a57bd87f7aac7c73886b2fe499c70a9430b098337b25d34b3

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
02c98339409410aa08ad5b0060015abe

SHA1
de53162fd16cc9225f500366faa462c4e3ef5b1a

SHA256
53085f4f155c756fd5d65079588c9e3aba9388aa7f5b0f6b91082dfaebc81081

SHA512
136048a8bcca89c75a9baa3d7a3aba250ccdf91a21d02e1dc029ccc2061e34e63d3adb974c0e9e308ccda7559f93bceef4cd028851a3a3a363993a37987d7eea

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
fa9a3cc17fc52bbfae19c7c83e1e2105

SHA1
f923631c82ca9faad1f083501be2ecc3184f2a16

SHA256
771648aa1dc946ff04fa1f5bcb6a7ba02d6006742eade7f285a215abf5cf7d65

SHA512
2b682a9d910bf7f63b994cb3d39109eb54de22002e829237259eba5db95685900d220ee3225952bd102a2e9c1cde0f4469e52d0b0b013f80e45898bfcc3a402a

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
7428148adf91551040b94281ae6b3987

SHA1
ce5a99c2cd1f24f8861e8c08eeee97027b6c7d13

SHA256
235fd2dc1f7382f14cb9c33331314ecce5ebe107f62df62f33da57361641d1e7

SHA512
ef444c08023d5692dc880ca452f783a6e38ba8b141edc816f6047cc3267cd4a1123dff1b079c5efd4a4fcb1ee823ea1b5008e8811ae19bf4f34c6f26f27c7b09

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
16KB

MD5
65ecc48feec7a85970cc2fb2a6399667

SHA1
c218fab9f667f7a9dae464a3571400ad734c17cb

SHA256
6ef839408175dec2ed367aef35dac2d701c6e19733480fd164d0e1a31e85a2ec

SHA512
fe414dcd2dd49174ae647ad85db777dc2a604f1578769d471db102c078b8eac4f71772cd4a03d1b2a0547733906bc7805d14346f92c94a18594bd5c28b9f983a

Download Submit