06b4a1689118c1b0e92a9e89a3f63c6d80e88bda02b1c91f8d841cbf1b667145

Analysis

max time kernel
10s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20240514-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240514-enlocale:en-usos:android-13-x64system
submitted
24-05-2024 12:48

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Matsuri-0.5.11-x86_64_2.apk
Size

14.1MB
MD5

8df7357fe8297cb53f8ddc5e0b78fd20
SHA1

9abbe7a7d3f30d32317d5c9ec4f5e43b7866548a
SHA256

06b4a1689118c1b0e92a9e89a3f63c6d80e88bda02b1c91f8d841cbf1b667145
SHA512

3eac586e861861f9a5aaccbdcf1a6d7d831f9be7ee12b8987545dcb2928f48ce5a877237882759fc16fa2be82866e44fec98f1f0c34b131b5794a90141add80e
SSDEEP

393216:+Si6LaHRS0x0pplQALfR6j8rRPUyQubFpyR0VuIghQ:+SfLaxSTTQYbufubTU+ga

Score

8^/10

banker discovery evasion

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

T1418.001

Loads dropped Dex/Jar 1 TTPs 8 IoCs

Runs executable file dropped to the device during analysis.

evasion

T1407

Processes:

moe.matsuri.litemoe.matsuri.lite:bg

ioc	pid	process
/system_ext/framework/androidx.window.extensions.jar	4372	moe.matsuri.lite
/system_ext/framework/androidx.window.extensions.jar	4372	moe.matsuri.lite
/system_ext/framework/androidx.window.sidecar.jar	4372	moe.matsuri.lite
/system_ext/framework/androidx.window.sidecar.jar	4372	moe.matsuri.lite
/system_ext/framework/androidx.window.extensions.jar	4414	moe.matsuri.lite:bg
/system_ext/framework/androidx.window.extensions.jar	4414	moe.matsuri.lite:bg
/system_ext/framework/androidx.window.sidecar.jar	4414	moe.matsuri.lite:bg
/system_ext/framework/androidx.window.sidecar.jar	4414	moe.matsuri.lite:bg

moe.matsuri.lite
1⤵
- Loads dropped Dex/Jar
PID:4372

moe.matsuri.lite:bg
1⤵
- Loads dropped Dex/Jar
PID:4414

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/moe.matsuri.lite/databases/configuration.db
Filesize
4KB

MD5
0eb157e1a86d4d00aa601dd2f6ff3ee3

SHA1
fee434f784e73cc7916322e949f727caf8363102

SHA256
b9a8194b71a046e8c0eb30995827b582b4bea834f630a5df2483b778a7d7d8a4

SHA512
b9b79b8c3af8a3f140df230fd89e95206358ba50ff214e7323a2dbbe2937b795f970e588302ffd5d721318bd597ce0a27af26d6cdb07f45569c30209845082a8

Download Submit
/data/data/moe.matsuri.lite/databases/configuration.db-journal
Filesize
512B

MD5
09f8a1c56174f17e05600c153be5b5c2

SHA1
74d7763588b6bb3b285392d36a4bfb1294010959

SHA256
c192a4c717a395ff3fc3021b7ee9699274cb3761e19dce480ddc020607a8a6e6

SHA512
a428df287c529ff9167e65b6e73e9a8726cd54a9272a276c3ecb5b2f80b67189aee5515b6d5b9a6c9a1395c6bec7925dff58d8e9fcc05ae7f940d74388d15b67

Download Submit
/data/data/moe.matsuri.lite/databases/configuration.db-shm
Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/moe.matsuri.lite/databases/configuration.db-wal
Filesize
44KB

MD5
dbc69ef4f084eb9a9d1cd322198f2c70

SHA1
dd2ee9e611fa2ed7c12b753122e0bd49dc238a98

SHA256
25646da327d18e11aefbf9480e1fb56c4df6a9710cd09ba40169736aa27c9a9b

SHA512
78352a1cc86472ff7218cfc2c03539b679a3953967d0c970159a05d1d26a2e49a7b6aa0f47892ed028febb9bc5f29bffa7a984d0988681977ce42bf36f640db2

Download Submit
/data/data/moe.matsuri.lite/databases/configuration.db-wal
Filesize
16KB

MD5
57e8b2c783fa88102dccd5842bb9d1a2

SHA1
1b08f2f2f73796827c695f915530971cd7208e0f

SHA256
0b6895706efb8440ba7dbecfc88707ebd240f157bda6338d238be74b35dffc43

SHA512
1340639ae8cfac68c44fef4163f89631eb83c121b43db0e71f515afafa2868e3d049edd21cf1752aeec9fa6578ef55e309af4509d685d865e295d539377a4319

Download Submit
/data/data/moe.matsuri.lite/databases/configuration.db-wal
Filesize
36KB

MD5
b66e99e9ed13184b38bddab31c1e1d2e

SHA1
013aa73c6c17a2f8d28d6976b2fc5e3b076d02dc

SHA256
dae9826cc98675dae059e46ba711e1521f8bccb4476b350d369d3ce4ffd815cf

SHA512
1bffad52ce2f86b6de88c3abf572a720efe7f0dc3879610cf9287d54673dc19594cc2bdf7fdea9f21573b6cfc831e0350dbd3a313af7ca8c5f998f3b4a07147d

Download Submit
/data/data/moe.matsuri.lite/databases/sager_net.db-journal
Filesize
512B

MD5
2ac5080426ef1549a239ff1e9ce819f1

SHA1
1dc53a17fe35f0b24bbb1b98407caa6b75206122

SHA256
3e0044c9d4931bca63857e2dd583b95dd7f7a64495c80b04809551875cc043e6

SHA512
fd690cfe42e1c92d3a4186992df8215e7bc2dd0eb5f19877ea9cf2b9f22da3330bd9a1378df542c4bb3d0f96eb370852432b7ca8028526466a7923126eccfd11

Download Submit
/data/data/moe.matsuri.lite/databases/sager_net.db-wal
Filesize
56KB

MD5
8d22f734b67fc2fddc3a4c67df8a3b24

SHA1
88026c9db3f193d8dc68278ea842ef5ef1a18aa4

SHA256
bd961a680aa11ffa3753a8314a82d89fc28aae7289708426dd7d11b6322ebf99

SHA512
4a7607642ce388ea1629d7268f15ca7042702827a158aa68d6e4c326e49200abe9ae59686f0314e4ec55217626a507aa349c2408d001a83807ce97fc25382f53

Download Submit
/data/data/moe.matsuri.lite/databases/sager_net.db-wal
Filesize
64KB

MD5
c4ef66d52c211b9b7453c92971eede61

SHA1
139042f57eb9d87331d47c734241c21b24e44c43

SHA256
8beaf4c8de83071f660309695d8a53f3d50cdf57b5694b38a86b51bed4bd8295

SHA512
6ea26e83173a2c53f26f8df92d5fcac0c351172cc2aff2dfa52cef4bae7b6a5e2686c6cf84738589423b8d118fe521e18c9f74cdcf97d99149d533907ee59a42

Download Submit
/data/data/moe.matsuri.lite/databases/sager_net.db-wal
Filesize
16KB

MD5
a6248a08165eda1aa3d0bca0f0b8105c

SHA1
e8e6dc2d522e7d4ae41c2f7b32b3292a8bca5bc2

SHA256
a150f6fa1e4bba0e238ebf933ff1261b3dc5977a09ccae0d48ea5742b0a6ce86

SHA512
ddd5a5fe024d1fd526bd0e399c7604d01578d2e2891fe3862b5f5e3d7796f07d7c18855b79f6e7b3aa5b9185c3deaa9a1938001dbaa8fb9a92d1ec93b81acbf0

Download Submit
/system_ext/framework/androidx.window.extensions.jar
Filesize
123KB

MD5
3056e1bdb7d4e19789d0319eff484bd0

SHA1
6791ae47aa9466fe0bca27ad6643f846853bbee4

SHA256
8e6331a07c9f2ac139214c527dcaff2c82d126bbe7bd3420cdc36d6a8c9204b0

SHA512
c790980fd68d9f89e32743bc28846807d5e5947c555f494de47714dec5cbd0c08d81c3260fa463759d1b17a953af3c44ec30b14fb08bf6b29db3837346c9f658

Download Submit
/system_ext/framework/androidx.window.sidecar.jar
Filesize
25KB

MD5
29469324e59dfcc052f24b5af4e7b2c4

SHA1
10c1e17ac6f598037bb51baa07945663645de4eb

SHA256
9195dc6a1c75a841384050240dfc972e48178964993fba6619788625f4b40d1a

SHA512
5e27c2b1431369a248298f2f749136a575005584f9999f2a4c204a0c47adce2e33c8df9f058bdafa1bde1c99e46d175560cedfcddcd8581718ed1d9973c37cc2

Download Submit