cc5ba183ca686b45e37b903de57063d98c97914cddf0db2feaec70ce0d6f96b6

Analysis

max time kernel
129s
max time network
135s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
22-05-2024 19:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1141.apk
Size

14.1MB
MD5

a3d4e51edb653cdb33883229cd432d00
SHA1

89a03c75e1269bb89df6c1e4b55a97ce69569ae5
SHA256

cc5ba183ca686b45e37b903de57063d98c97914cddf0db2feaec70ce0d6f96b6
SHA512

356f6332f2b996c9218f32891611b27dc070e16124a426d714c92104eecfcba5c009c5977e99ac5800c6316777432787d831d4643a89de6f8090c4d74d2237f6
SSDEEP

196608:U5SKj7zfdgAKQX7IBoex0BHQ7BOnhQrQM3rWwXa1Y/sec7S9i53m2/kh/Rgy:zW7T2A/7u5aBqB0kQeqSU57n5r/ksy

Score

7^/10

discovery evasion persistence

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	insepet.skydroid

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	insepet.skydroid

insepet.skydroid
1⤵
- Checks CPU information
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4283

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db

Filesize
172KB

MD5
fdcb0296fc95b0c06c76966bca8ea7e6

SHA1
afa4052252a9f7f9ba7847c3f71d920447f163a9

SHA256
841ac91f357c0a941ee26119c0a97689209c3a797b93529000366d36c7212fcd

SHA512
4298ea3ef2ec7ada2d93b23c180933f66d0e99cdb06307911c4e3777b6df6e1ef83bfad4174d7d78335e63fcb67e043f874b935c686cfdebd2a99badcbb4ab1c

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db

Filesize
68KB

MD5
6e553c64c3a158103942ec2dd7eff0fd

SHA1
1d5c78f10f284f2e1d3a0f093a4993f417344fdf

SHA256
b363886aef8872ea42f8547dfd36183101affa2aae0d8b6790f9648f504915cb

SHA512
f3694b35efecb00db5a2461c8e29298998d3b7d0ee08965fea0b0c9b6d4aa3691cfbaa23df3a2c776c1735c1ee4d8859e0299939ff91735a2eabb0d83241c86a

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
512B

MD5
c83c8091e8cb8ac89376a00289b429d8

SHA1
f8e20eea96c34ca35a23e2ef7b5c9ee1bb9e09bf

SHA256
97c215daef7cc80739333f3a87725731767fa812bcd7262150e761fcf4b679b7

SHA512
53335ee614e568cf07fbb4fd52cd5ddcfbb47f047db0fcf2a0c5dc4454d171fb2ff67a73c85c93b9a6c847f8ca294afc3eede31d8715d3023a54da3374e39672

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
a2b8a7445bd8832f22734689db48b68b

SHA1
d8b4352780ce977fc206bf4c0a1b7b22d4566888

SHA256
21aa4f42211a24797f1b1c7a44f25aba863a6ed1e5031072aa7f65b5e1dc8b2c

SHA512
cc91690287659e9992e8e213433e4d1f0aae09f2fc2423c01a5df84b6772b9aa0d13654bd3ad183ccd74de76a2e516caf0e51e947543a98ce62883f73f774faf

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
71217374faa58513fa6477ceb6952833

SHA1
8ce5d4788affef94b77f28be9de7521097dd8bd0

SHA256
72b0ebc3c5cf059d685b2ea5dc2a162e3ead7d20bca37644df73d17bafa6f53b

SHA512
4c6fd7fd43d16581270e93c98c8f01a59d7991920f63e554ed0aec527b035facb28f7e02925fee38f39bd05e3a31fd3dd79caeeb07e4baf65b324b860215a227

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
eae5589e8d262f463551e0054c9c1977

SHA1
e3ae57036f6283b1ad3836be000d2d25403fb9c5

SHA256
b86e25c8dbbc062c56a7cf5b09f25e50b0b98f5f5a80b4466cd3ee51e669a1eb

SHA512
311ac0bfa0a938ce5acb899f4c24ad44b056f02638e9243ab0a2492aadcbf0f3d6e86e203b3c11f0a1ea25f9c20e62c60aae309c8a8e2eff872a681a099408a2

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
4KB

MD5
6efe59bd79eceea92c17b1f62b2653e9

SHA1
7c418b192c7482fab62a4b825e77423396376c2d

SHA256
24108005c3e31b0c8f02392af98b8e3f462364440143b0d43f0365c452129154

SHA512
14803887d66444b3be1cd32a55d6d0cc7259a7eb3b9c2add7bfb70b25ec2db66bbe18097541ba69aca39a601f1801b5af6ddb5469f928ca72ff03d8a069e416a

Download Submit
/data/data/insepet.skydroid/files/SkyDroid/SkyDroid.db-journal

Filesize
16KB

MD5
6445f9fa06d86c36dbce75d3624146cd

SHA1
b3a6fc72428f52baa03286a923cbda79f59b1e12

SHA256
f797c3f6d547d0bc06e9efa50d39f1167612149c3147c8bac1fd208dc42a45cd

SHA512
35654b99bfeaaf3e7535c843afa050f330f0fa62ce03991805bfd4b83cbb3e1974e59a3ab45cfd804bca6d486683f802b054c8c885c5ff078622f0f890387f97

Download Submit