Analysis
-
max time kernel
827s -
max time network
885s -
platform
android_x64 -
resource
android-x64-arm64-20240514-en -
resource tags
-
submitted
25/05/2024, 08:36
General
-
Target
Apktool M_2.4.0-230127_APKPure.apk
-
Size
10.7MB
-
MD5
8214b717b9db146c802ff76229a31869
-
SHA1
e1f0ec38ea92d8383c658beec04c05af7b6d44f1
-
SHA256
575f95f7a4ede4ac337843133ed02d16d213e3fd13837723171dc82ba3cbfd83
-
SHA512
617b468fbac5426274e9ec81a4dfed834ae40231d1ecc34e5782a86df5585e700dc3ec138c5f7cafa54433a5f2df116b388571fb733555cd5f1e337e304c29eb
-
SSDEEP
196608:1peF6FEvivJF5apwUi50GrE9Iz3QiXcWjFkDWDWy7n6/tjsIWC+8SZDsH4ILjoTI:PeoFEv8P5XUi5BrE9W3Q/UFkDk5O/to8
Malware Config
Signatures
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
-
Checks memory information 2 TTPs 1 IoCs
Checks memory information which indicate if the system is an emulator.
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Checks if the internet connection is available 1 TTPs 1 IoCs
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 4 IoCs
Processes
-
ru.maximoff.apktool1⤵
- Checks memory information
- Obtains sensitive information copied to the device clipboard
- Checks if the internet connection is available
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
32B
MD5d88a9d78ff2ac8c0a95a93d540ae711d
SHA12619131705e6ef26594e6fe80009bc5d111f8c78
SHA256aa4c9097c330fc38e132df6f334e17179db982d2287f3425e9a478a37bb6533e
SHA5129c683a75a4f07a0f7f59a4dba41d9a6d257bdee79930f1032c691842572feb3494b1dc944282d352b537162db67944ca46a16cba92ef66449a154c5eb1e71485
-
Filesize
1.4MB
MD59297ccd8ef0f3bec6b1f8bde4c62b159
SHA130dba890deaa02e47ef58fb2e40ec3aa1bde5849
SHA2563682eece5d9541cc6e7e4ac39d020fb1c1976e4200aa2fe18fdbcaa059442aa3
SHA512789aada506fdbbb8ad5d6aabde0c51acb316f64dc7c2796adacad879861f127bccd02b4f1a4c8d5814620c7ea7b08639abe84806064f6f694cead8238e8305eb
-
Filesize
4.9MB
MD56a0f6f58df8c4b7ef825aafe34f446c8
SHA18dd7542d6dd39d0db9a0a6f26148edc84c5a9dce
SHA256051ddd130a7c5e05dd499c4b09ac63425f709afebfc3f41b06bf9873e944a682
SHA512c9255306e70e96e4e000bb7bf2ac38c0824e5238e3b4ac8fed20da9799640bd1e792cae69bc0269f89fe5b82f3ba18e5a1842679836697e9fcf0475ba272e8ad
-
Filesize
1.8MB
MD5e10eacc370be791e0e42c66f920ce36a
SHA155ca7a6e59abe6adc59daa50d18e2a3423342ca0
SHA256fffc25f8fe141204ab62f881c6ce88d082fbc36cdbb01d75eb49469f09218cb5
SHA5129740cf45a365db38d7e9b376726f1cf9920060786c4efe33990e1c4ecff457b4e9cf628b2263e6bf6ca624427a7296163da85f3b923766738e5ee36f22107747
-
Filesize
1KB
MD58f7a3982014e43efe388abcb73bd93a3
SHA1841bb2403bf0886f2d4fcb809cb422bce423fbf4
SHA2564521b30fb44c2d3e92e535b4605571dbcfbfcdfd060c0a3f5295e2dd9ebf92ea
SHA512d5712925c2f84a8f2ed4bf68f909aa525aef6b4d4b5331648f5b0a64b3c87bf9f13881438cac6a19c83e22c93e932a9d037785cbaf1661bb24568b3b3c484ca7
-
Filesize
1KB
MD5f191b8a3bae223b3a3e6c44b0b96de54
SHA118a4f25530ac5ddab7792e5ecf5be61b153324fa
SHA256ac2ac90b3b2bb81277c88b505341b02a4eaa3908473078e2d5a90bebed397959
SHA512ae1748641283b7135b6ce26ea858f9876a154cdfff650b6bc3a1669c2becb7b7a2b1ca30b3e941b062bdd2b0dd8b7e2e38142be10bc2146505aad950f6682658
-
Filesize
1KB
MD59b5afd50951b69e9e5fda0606c5be14d
SHA1f824f74f62e12e1e0cbb48aa9c225319617f162f
SHA256ab578e1fcc9297cc33202dd1806bd33575c405a5daba34d096da7d7fe30752fc
SHA51284a4ac743f5f3d57a58fa8c4b5896a6261f9eb1377149e40ed58033632acce9643da8b38a3a029cdc3094313ad7b3058e0f6733461b0c3b8debc59ac7dc3fdea
-
Filesize
1KB
MD5645821195e628756b08c49617ccde2fd
SHA154a40c69c1ab0ffd409b3f4bdbe3531ce449d822
SHA25684c279d163d2ff27b63d1b63bb648bc413216f4a97bf716023d1fe480020dddc
SHA512dc381cefe5026788177b422f573a24e92bc3dee7bb376cf38519fcc41a9f162f47120d1548a34de20d600810f4f37a062bd9cb725e68fca68c46f8d07202f7f5
-
Filesize
1KB
MD56d1611ff6c2201b5edb8c4906b8adcfa
SHA19280e7212bbe3c96c005bff495048eb974d73162
SHA2561ad8ef556870edb70f69a9d3c112544c07de5162ba440d84d33f8bb0c5962875
SHA5128ed1f5362882bbcd283fe3f44644b4b95ddba08e82026b9415bde1aa679e0f1dacb4b2008d832e7cad05d3fb09567f0111aed11f2de81bde7b6d09c7f8ba8832
-
Filesize
1KB
MD523e9a8b69d126350ba96a04fe1946cee
SHA1654f597c30d646d96074596fbfc4bb8112737809
SHA2569837de028f460c35cc8d3fa45f14eecce30f6fbfe4b93d399aef1acb80c20d14
SHA512ea1e3f3b69ca998baef5abb8095d9869815d7f9e6f9a25aeb68bd82e621d3810e1812edf2c0e0dae0acbaa715f5b8833894fbb67d5312a74652f23b80b8fda56
-
Filesize
1KB
MD5d7d0766193ebb94e0001454b62b33ebe
SHA1d60ea27a1ec7b1dff2a8147ba0628edcd9e00e86
SHA256561dae618ceeb3b97fe92d71c7af8c30b05bfcda661dbb29dcb3883a772c4685
SHA51280c7760a36bd5b73f08b2a3452447bfc0367ae32e28ff83e3ac00a9dc7ea1f5f397aa0cd7a59f1e427661563125af87f5264a741c69efabc6067cbc2e6a26abe
-
Filesize
1KB
MD5f9c35ce11686090540155f5c5b6ef0e1
SHA1dfc4257695d534c19c54d96c25f656f94cc8487f
SHA256d72c27d4375f37c2bc0631a873eb115e030781753846aa2073e0c20e49c45832
SHA512cf3c524248ee6c5c45581d94e63181bc23aa5590525404207bad976c035c06aee963907e909fd89d7f8befde4c973a978b33e9a00a12928dd49312231e3e6e86
-
Filesize
1KB
MD51823e4bcadb53e275a8ff8e1b261b7ad
SHA192de052cb804dea75f9815a66d7d3f6f911cdb63
SHA256495675d32e89a149d5abe191f4e9c0e218b9068714e9b53a7c91e164a0741a23
SHA512b0d46eee477ae57c4dcb417f4f5b7b51691620c51603ed9097bc0d1e39ce94a2d7ade29d1ab80819e3639fd404034dd025c13c824d9cb21ae71ae366a2ce21b1
-
Filesize
1KB
MD54033dafc873dc7271e205b83cc9b4b17
SHA1ef543a467d830d9975ccf0d569a7841c8b5df988
SHA256a4384ba815b9499a5ce349b4e33c1755278873fe2eac150a068823f526e6dbde
SHA5126051af324ad8b3837086092f213904b26d63cbd9bcde46a75bce6dde69669ae418c265ebc91c1fe163ea1199959f4b594d982d4e38c201895a948f9490357ec3
-
Filesize
1KB
MD5958660da764e75a0764c73832a05d8c4
SHA1f2b21a2b4d08806134de12f3ef2edb13f1ccb03d
SHA256a0ee74218c2c62029aa3afca0dc25c3f69c8cb659476d24cae73a50176f76e5c
SHA512660d0b402f0718a88e5cf1217bf97c5a273e329482e17d39c63e8fb1810f6ba5b55fcafdde71b83a65d629cd9e666c1c704329cbd9416eeee95c995c021e5018
-
Filesize
3KB
MD5871fc41ca685dfbd88783c82701f0cf0
SHA17eaf8cdb336c5224e55cd96a79ca92a4dabcf0af
SHA25661312e6d383729fa6fced043dd2c7dfc743632e1b5404b31872f7dcc2c678721
SHA512a2228a39b775ed1b2b45716a900cf1286da5f106302f2744070f15c835f6863358e6db13f780d307c3c21b078f9270cffc480bc57b557e8c03a47b982a712106