hxxps://github[.]com/Da2dalus/The-MALWARE-Repo

Analysis

max time kernel
176s
max time network
146s
platform
android_x64
resource
android-33-x64-arm64-20240514-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240514-enlocale:en-usos:android-13-x64system
submitted
30/05/2024, 12:00

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://github.com/Da2dalus/The-MALWARE-Repo

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.android.chrome

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.android.chrome

Legitimate hosting services abused for malware hosting/C2 1 TTPs 1 IoCs

Web Service

T1102

flow	ioc
80	raw.githubusercontent.com

com.android.chrome
1⤵
- Checks CPU information
- Checks memory information
PID:4204

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

files/dom-0.html

Filesize
185KB

MD5
2de356e2f9e9d5ac945d56f362735de1

SHA1
9be8741d63a421dd8952763d95d7994aebf74288

SHA256
d7e8bdba7eea71b0dabe43c913631b544b04f4199c52fbcc7882c7dc8690607c

SHA512
0a86afe5f76e252389946162c73809eb5910d219ebbadd887f7bc53df520ec0d9ed7063208aef5ff3dc62da99632e8a2dde1f48b6d9ccebb037354196b5917b8

Download Submit
/storage/emulated/0/Download/.pending-1717675289-Grave.apk (deleted)

Filesize
1.0MB

MD5
5607b78903e6da220b0a297c17911c94

SHA1
c7a19e2990e7d14fe942e69d6069d9aafadd54b1

SHA256
ee7b779247bc7469291635dc6ce5530e81e6c1807a75638a57b8f670012d2730

SHA512
d200a647f52ee411e7533e9cdcc594b01470b09bd12967d8088f8bef8db298b385b2abdd3138a42b1134c7fc3cfb2ccaff26b70d51049ede200c0395dd01c5d0

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads