60b1899e58d6ca549e3474e5834419a393ea21e501387c63f6e914eab37d5754

Analysis

max time kernel
14s
max time network
130s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
23-05-2024 15:46

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

magis_mobile_v6.2.0.apk
Size

45.4MB
MD5

c92feb1245aec543499f5f9bf749fd38
SHA1

2c0449c415cc853312a10cfe9a907372e52801af
SHA256

60b1899e58d6ca549e3474e5834419a393ea21e501387c63f6e914eab37d5754
SHA512

44fc20a798a4171e43f3cb64a04499e5e9c6bcf8df44a70af119836a7f264f313b23c5d99ab015d5395c6097be2baaa0f27474b48da2014f7770bd9d0cfa6828
SSDEEP

786432:8xFaj3Vhig2G5LRbqIwtf206uji4NMZ0P4ay6gZ7+yKZ4IxIpBBiqDTWtWVLms6N:c23HwCLxqX9jith3TpHCjs2H

Score

7^/10

evasion

Malware Config

Signatures

Checks Android system properties for emulator presence. 1 TTPs 1 IoCs

evasion

System Checks

T1633.001

description	ioc	Process
Accessed system property	key: ro.product.model	com.android.mgandroid

Loads dropped Dex/Jar 1 TTPs 3 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
Anonymous-DexFile@0xca858000-0xcb07f690	4323	com.android.mgandroid
Anonymous-DexFile@0xca43e000-0xca85789c	4323	com.android.mgandroid
Anonymous-DexFile@0xce2ab000-0xce2bf840	4323	com.android.mgandroid

Checks the presence of a debugger
evasion

com.android.mgandroid
1⤵
- Checks Android system properties for emulator presence.
- Loads dropped Dex/Jar
PID:4323

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.android.mgandroid/files/if563566742c2d30b

Filesize
12.3MB

MD5
8d05d6ce6a29582f48e5774293d225bb

SHA1
d00ab9bcbeb6a43dd05c806de750355e12cc059c

SHA256
c695f510a46b5e3e168123b86f69962993f25800e4c0fd6479532d04b1d95a7e

SHA512
b1909189adb81c14b85819c4c6dc8185f4c98a55681dd9a7f1f1309e1c51dff89ba2d481882ed3c235a984cac89c11b42dc280a4a98abdf976976db7a6978dae

Download Submit
/data/data/com.android.mgandroid/files/libexec.so

Filesize
522KB

MD5
7636300c06bce717fd788f2fe6feef39

SHA1
cea7ec57f85331d548485c928b06bb8013c5fba1

SHA256
b0ab74c381526f282bcafc664b0125a0e34d7fd081200c1b19d649f34ea66546

SHA512
3e80a3927b148202e885cc30c8314afd4aae8953a6825c08d813c555a144125ab8a036f591b027c82c438d4b888e770d96200516b9eac61913d05967598d1144

Download Submit
/data/data/com.android.mgandroid/files/libexecmain.so

Filesize
13KB

MD5
129cf057b05a1c1deeed84c4a19bc520

SHA1
caf30d0ac69171411f78a8e361e542390e5ef4c3

SHA256
39d33b5b859617bb53c1804bc2688cc0e5532cf28b2847ccf339c63c866636de

SHA512
ba49271f33aeba4cd036066d4665cc151cd85bfb4dd9a103eb08c8ff7a04d748e2dc88f7db9faf58de284ff3837772dfe81daaecd13d555671cdaf68719b34dc

Download Submit
/data/data/com.android.mgandroid/files/libijmDataEncryption.so

Filesize
446KB

MD5
72b29ca122fa57c30ff2aaf6fcaaf191

SHA1
285dca283cea43f908c6cda623d036c82dbbac25

SHA256
0e494c2a848447b9f308c89dcf1d56c85b115c189d6475fa99e4ca207e413dbb

SHA512
3b0db1ebbaeda870a8c7ba1201f140e8bb91c45068009523b1470173faca94ac60d6fb4ea895e9f04df265df8048e5e5a7d60cf52aa206e5d5269d237a1274b2

Download Submit
/data/data/com.android.mgandroid/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.android.mgandroid/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
a41204bc1b8342bccc0dece26d47a592

SHA1
0e087596d9084d5e57a21a3c49ad6b7ab8c9aa5e

SHA256
05b84986094672f14871804685df3918e2694a742139ed6865d611772fdf09b8

SHA512
59135d6e88be759305a0466b86b1990da9dbb5d6c4ed5838c9a8051284919331d49d6a13cfd37135a57730dd07c4bc6ff59365926d92b303a60316c27fcff851

Download Submit
/data/data/com.android.mgandroid/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.android.mgandroid/no_backup/androidx.work.workdb-wal

Filesize
112KB

MD5
d0a7f1a1647b3ca342f20a86a8f993d0

SHA1
d9772b7c840f1812f81fd6439a6ca57737eefb68

SHA256
090f4ab860537231e9bd86d61bce6314888e5943ded992417d2ac7146e24d298

SHA512
9b52e11b6b5fd0c7f709279c80233422e2b8b124ba2569c7cadd3860720ce4ccfabda40a3620d6ac87f56f263e6f0278383dfed5642f5645e281183969412084

Download Submit
/data/data/com.android.mgandroid/no_backup/androidx.work.workdb-wal

Filesize
120KB

MD5
132f1e44c4f3b4b241b6c771b486068e

SHA1
1641c2dde3e54acb8f152bfffdd803a389278090

SHA256
54dad4cfcc660a24524f76dcbbea6e15b1599e3edaf1347f09a5eb6cd532d3c3

SHA512
ac22b0d82bf94e327cbda8b4dc295ddafd9dce8fcbcfbf380f533c6780c40774576045915557b25a9d886128819eccab603b6959224031e726c85c780acca8f7

Download Submit
/data/data/com.android.mgandroid/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
f0d8ef1d838e17cac4b9b9227d1c82b8

SHA1
01c347c955032c38281e3a55aeb51ae2cc45af4d

SHA256
3ae16abc54adf1da948a53d81a7b74ce1c86535fcc1badf2c0cab433d067f003

SHA512
dff0db772436f9fda0cfbbaa60fc8720c4409b97f902d473d2fe07a85d43252a50e2887e61a6f95c85c610a4937b8b68f17822e05c914ab8c3998de97ffcf1f0

Download Submit
Anonymous-DexFile@0xca43e000-0xca85789c

Filesize
4.1MB

MD5
2a4c76d453dca351f8538e21dddeca13

SHA1
41f54111f0d371f2167e39b16c927a5ac992a435

SHA256
d024e132f7abd3666eba37a2a2996832809cbb26d8065345e24f914a5daeecce

SHA512
59bb87f0233101e3fbfe284c9cbff013a6d77d5a844f575d4260619c87d6cfcf7ddab5f0fb711ae8aac3b457badda3ab7bd24b8ca793f728aa14866cc4b2e572

Download Submit
Anonymous-DexFile@0xca858000-0xcb07f690

Filesize
8.2MB

MD5
672c209cb1116c34dec85e373ec073a5

SHA1
d2b8e2dff1fdc1c7b44c8779f8e89e7c01482597

SHA256
c4744cdd8f8a94fdf9fdc2a3d0b23b900d38b25f40ba718db14a202cd58160fb

SHA512
e8c4ba2c6105ccaef6754da195ff953291b17f6f21bdf0d21868ff08c98b176cd1237baefbf613a5982cbedc60fc07578ecdd6d6e7a89ed8e440fa8390a54976

Download Submit
Anonymous-DexFile@0xce2ab000-0xce2bf840

Filesize
82KB

MD5
287ae2486d2df9c9225c20a5e479be94

SHA1
87eace09bf53570e7b3413d74f9bb452b62460a5

SHA256
64964a1ea701e678779c6dce7e874f07d656b9f0e7681196d0a75a3341742328

SHA512
d0da074b9c2e5f89620e713c299c76bb4087c10bde87cbae619ce877b1ea6c80a88d31f8ec9e10360a40918ed26f8bd550456cc0649be298ee9d669186685922

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads