2983cfab8a652d93abcca5b5776f80decef17f79c38aef0d912c263f1edfc626

Analysis

max time kernel
47s
max time network
147s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
02/06/2024, 13:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Park@Perak_3.2.4_APKPure.apk
Size

24.8MB
MD5

7e9877b054202104c57e09cea57f0cc5
SHA1

be99b803d71ec9efa5075eaf937e340ef370a423
SHA256

2983cfab8a652d93abcca5b5776f80decef17f79c38aef0d912c263f1edfc626
SHA512

7e01a0b1b6a0da47b817fa08706826143afe57157025c3a158ae14faafd9ccd61c306f6c3222113a4a6c39047eb2a2a09e08fa2d2432aba79dbfed6b9ffe7bfc
SSDEEP

786432:kua1keCJojEROaSAW7xX5rKvGPv5v5U3LxaNUm:ha1Lu+CC7PBPvhe39ML

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks CPU information 2 TTPs 1 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.qamarsolutions.parkatperak

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.qamarsolutions.parkatperak

Checks if the internet connection is available 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.qamarsolutions.parkatperak

com.qamarsolutions.parkatperak
1⤵
- Checks CPU information
- Acquires the wake lock
- Checks if the internet connection is available
PID:4227

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.qamarsolutions.parkatperak/code_cache/flutter_engine/248290d6d50a1bf1a6a246544347c03acda867a5/skia/7e1844439eaa3eb24d00c6314ddc81ca532fdd1b/676ee892fd18de7e134fd3acbbc8071b71631d61.temp

Filesize
1KB

MD5
2017a102618f2c4459bfbfb64824881b

SHA1
e553b465ea63f4b432026dd1310d745632e65962

SHA256
2b27511dec7975c6c5454c95f060fab9b2234faaf7e5f64da9ef1ef700044944

SHA512
ad9b8f7be1e7df61bb5c1db692feaf7bfc601bb594e58cc5626f75622ab3f6edaed7fc4940293318b88a83cf34e35fa5effb32767e95a8a89e97e65be7e45b9a

Download Submit
/data/data/com.qamarsolutions.parkatperak/code_cache/flutter_engine/248290d6d50a1bf1a6a246544347c03acda867a5/skia/7e1844439eaa3eb24d00c6314ddc81ca532fdd1b/705add3ecd0197f2b88943a82db10f640105cfb2.temp

Filesize
956B

MD5
8db2543a353af510cbd8dfbd3275bbd5

SHA1
154a10cc23be473c5e725ae8c22945f9431a9561

SHA256
e6bcbeb142dce6713a3cfdf1360098589e58d65eab6a17ab7567be7d57d8ff42

SHA512
ab3210b37ab2d365320c62794b796570ea9776e05506d15e99476f51c50ddc517956455ad3fbc6a71dbd0bec6faac12bba090d376dda073736468301814c3740

Download Submit
/data/data/com.qamarsolutions.parkatperak/code_cache/flutter_engine/248290d6d50a1bf1a6a246544347c03acda867a5/skia/7e1844439eaa3eb24d00c6314ddc81ca532fdd1b/9914cdac01b83908cf184d3f2637a496bd19fe37.temp

Filesize
1KB

MD5
c8c41b21e91f5323176efcc45692e644

SHA1
e1185e9d6e8daa8f8af01399518c9f21726eaf9a

SHA256
c83fa53add863a676e29ad96586c4513301aab6fa6c9b3e9404b26d5620a6d9e

SHA512
3317b74c41d8afa29f5bac61a231fa57428b60e2c045d10c55eb943f384e0b183a7ba6c3fc4220f68bedfdd3f88b7edd89abaebc7ea22c554b425028e79f3da4

Download Submit
/data/data/com.qamarsolutions.parkatperak/code_cache/flutter_engine/248290d6d50a1bf1a6a246544347c03acda867a5/skia/7e1844439eaa3eb24d00c6314ddc81ca532fdd1b/a34b99d0fea7226c46aef76bd20757e826c064d0.temp

Filesize
1KB

MD5
4fc9fd81321a9c8a838ee50bde332cd4

SHA1
2197118613ef9286680ef5c40719c215177cf05d

SHA256
7fd892167ae5c43595b9274cc31220a5e73656cb2ebf87a841451e82d39b64a0

SHA512
9bc29933c04a169e4a3327ee71ec42e7304cc9cdbe24f8acd2e08a54879bbcc191612bfb2c4131b360035a40aa6764eda88e7a502bdf89c871333f51e1cf6b9f

Download Submit
/data/data/com.qamarsolutions.parkatperak/code_cache/flutter_engine/248290d6d50a1bf1a6a246544347c03acda867a5/skia/7e1844439eaa3eb24d00c6314ddc81ca532fdd1b/cd0aebc6a5ab1f494cd5a032873289a051acbce1.temp

Filesize
1KB

MD5
80be9047b1a818a2ffa5870ab15d5e5a

SHA1
93a5a293a779a69e67dfe3f1f7474d48254a4fde

SHA256
ac1b8aa8541f21946064360f644b7301c7fca9f3bf30514b3b9eac7b4d06e364

SHA512
5946ddb4b18d9c5a8743190fba4b2408803e0306b4af26abf08eab989a5c7da545a96be297df367144c38a0e856ac61824ec5cd09885ae77b04aeea47f5587d1

Download Submit
/data/data/com.qamarsolutions.parkatperak/databases/com.google.android.datatransport.events

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.qamarsolutions.parkatperak/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
7a4467990cb7e6eca4b74ac3c499abbd

SHA1
dcfc47f531ada80ce8ece3d66f12e16cfc1d2f45

SHA256
8fb017915edb1d13d5fc4d0c1db7c1ef4b4b9a197e69d188aa283b6dd0d32e84

SHA512
2ce586b34a73886169e5a545dfdc34095100fdce1193b8c522d548567d871b936713f0cc1813c24387c81034bc87bbe1bed8ad8054738f3bf419407c7f21d134

Download Submit
/data/data/com.qamarsolutions.parkatperak/databases/com.google.android.datatransport.events-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.qamarsolutions.parkatperak/databases/com.google.android.datatransport.events-wal

Filesize
68KB

MD5
cb43bb222f3557ff6c0156c8d20b2ca5

SHA1
707ee01bb0f8fd11cc357fe951d98c260072aae1

SHA256
7007cbd1ee0d7ca61057ab20de95f7a1e74e6b55c3b6b4dc536b2f2a5158fdb5

SHA512
398674c4e3cbd9c3482bc8fe5b648ded967619ec4c7780b8705ddd2c0d50cfb38c8383bb4ff5e79eb6754fc27f45d39ed58fbb072ebb538fb06c77931995c5b6

Download Submit
/data/data/com.qamarsolutions.parkatperak/files/PersistedInstallation5541720632054847171tmp

Filesize
90B

MD5
f054dfd9b347cf19e0d47fdbbf187146

SHA1
6663ec3c975509b19874f9b01661e9239b18b89a

SHA256
7fe4f30367b962ea71807f2be65b25198a2c78e2a3938e8a16ddf6065786b711

SHA512
eb64636ce4d02d3b8abc1ceb328b1e51e163bd1fc7cdee7bab7966eaee943f5d28b1d7829717b5ef6b111949e3a4690876e60ebd8a8073e66372248c3535e89c

Download Submit
/data/data/com.qamarsolutions.parkatperak/files/PersistedInstallation5753978440450459889tmp

Filesize
569B

MD5
4d162872cd61044cbb45c6f3f2bdb770

SHA1
b14add044b755aea600e9fbbbe4c2ccc13982849

SHA256
3e1ef8a354d6f40b3278811a364f03db0eb27ff907b4ba470d6f5a7988dc0317

SHA512
776177bd29b87591150f0627e622ec537a28f3e9247fcba325b1d598a84ca1fbedc21b10e7f70eb224530ad4b3567a16aa9ce40ba0a3974107d67357ccb458bb

Download Submit