Analysis
-
max time kernel
22s -
max time network
150s -
platform
android_x64 -
resource
android-x64-arm64-20240603-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240603-enlocale:en-usos:android-11-x64system -
submitted
07-06-2024 08:06
Static task
static1
Behavioral task
behavioral1
Sample
Rewards-v1.2.4.apk
Resource
android-x86-arm-20240603-en
Behavioral task
behavioral2
Sample
Rewards-v1.2.4.apk
Resource
android-x64-20240603-en
Behavioral task
behavioral3
Sample
Rewards-v1.2.4.apk
Resource
android-x64-arm64-20240603-en
General
-
Target
Rewards-v1.2.4.apk
-
Size
3.4MB
-
MD5
d9de1181b3bfcbb47e779ab71b974b61
-
SHA1
3da1a11157c7116f6558df4515164787d32d489f
-
SHA256
eeef3f7828a3471f2a0dd38eefea3b70a0bb16f2672bace8372c529ad97e1ad0
-
SHA512
e8b286516c1faf4487bbc4389db4355c5183e50a9114ef2d8121f6e1fedc433015889ee0a0f2828ae6dcb84a92125cae4281b517176a1044022ffc4fdbc365d3
-
SSDEEP
98304:vPG6ZWFpey+Dj+nSIVNL9jBnanR4avniJXiTwrYAXW+r:VGcDYhNPLaWmS
Malware Config
Signatures
-
Checks if the Android device is rooted. 1 TTPs 2 IoCs
Processes:
com.legendsayantan.msrewardsioc process /system/app/Superuser.apk com.legendsayantan.msrewards /system/xbin/su com.legendsayantan.msrewards -
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Checks the presence of a debugger
-
Checks memory information 2 TTPs 1 IoCs
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/com.legendsayantan.msrewards/databases/com.google.android.datatransport.eventsFilesize
56KB
MD5ac73adb65daeeb46474f24513db23b46
SHA10f7b0a3a8c1a50518fe3ec52d139248391f6a153
SHA256c6ea57dadf0eae2de15c4b76fabaeb3dbdb6cb7aac9e693cd62ae58b3a19fdb5
SHA51233644ed3e30ca97a14dfd52116769cee2b07281a3826d43a7bbadf6011c5ba4b526eb211e4edf9a8449ac6e3d52b70e9769f1136d070b6b9f3a56c75e688098c
-
/data/data/com.legendsayantan.msrewards/databases/com.google.android.datatransport.events-journalFilesize
512B
MD5893c0666799a3958247e52388de68efb
SHA144b770e20efb574c8400a72f066c7d216a84a0fc
SHA256d48d531f4d02f37b98e960c0d758678108532782252accc430eb8298b3646385
SHA512acf2ed20a3bbd5b20bb40b4e372e26ca5bb8b1c4c474ef95c4903cc9650ecfa8b00e94cbd821bf38ba1be8c6cd9b1bd2128ac2fb645b5a24b104250a7ae8f020
-
/data/data/com.legendsayantan.msrewards/databases/com.google.android.datatransport.events-journalFilesize
8KB
MD565342c0984239434919f5d3a18155eae
SHA1e4e5f0b5b8b1bb081138789e21282302cfb95a1f
SHA2563859a0f5947dd3b80fcdeebb3bf14f74221b87ca9b53e41b54ba6d624d4e7c8e
SHA512082ef429512ba63afad7b21726c4014592d89c06f34bb3fe80a20cc2cc659267bf309ab42fb0a9463e8109abe89dbdeb7e5f156dbb843d22abf933ce0c8a81c7
-
/data/data/com.legendsayantan.msrewards/databases/com.google.android.datatransport.events-journalFilesize
8KB
MD549194e823822f1baf7e14a4a8cfa2313
SHA1d92cbeaa7a80e6874b276b40e876d32cdb48c834
SHA256657e0385425c373af8a8790a052d5cf1764c3aadd56e4fb35bf6c0617b302b53
SHA51297fba8fe83bde5e75c703e3e460697f9d1fe78826e9756a08a2b1b589812dbdb19c865412972a7733bd558e4209e32d7e4729702058b5c61ea2738eb29b9ee3f
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.dbFilesize
16KB
MD5d9cf75fdd1c2292d986f6c3d5d60f2c8
SHA107ecb1d3a26d952ae5fecf54f36699ab498510b1
SHA2562d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a
SHA512442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.dbFilesize
16KB
MD56af96e555c3b6757ea9086118eda0fd0
SHA136c92d16c187ff53d3f76885680c348fdaf495b3
SHA256936dfc792b6b9cac1294751a3e17534f8217e23c31fc0c9a2acbfb3e689a0685
SHA5120a8d0b5954c4b1f327bcbd78e0daddd0e26be09f22c967d93fdf1a206a58678f2a283136bcfade0a8bff757c5399a8db564ce5190764599ffe12f4e26db6d12d
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.dbFilesize
16KB
MD5c4810266aaffe7e1e4cba9a4ba42fd10
SHA1f5f0b1ff5795355e88e779ff19d22ff4dbb18425
SHA256827ddca7fa6062288df7d9eadef0c7b83677d9f77a58fe1211ac1163b81304a3
SHA5122de06ecc228ea5f48168236bf0369ca463e96061c9f5f7ecb44e5f42b772efa21713dcea5ce3c9bf9d83e80eeb1b2aa23d330cbb6892a7ea2db16c4eef7b8860
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.dbFilesize
16KB
MD53a6a2a87e35ea8eecfc67458ee3bc9ec
SHA1ccb721fbb4295a3fef77bdf9143dc28ca606e91d
SHA25663bf4e987123c493033d300ab72ec2175560fbe009b2215e7c5443689cbaae17
SHA512bcaffb425f749b78b595c129bd62305c10993009449b1bd74666077b75e2a20e29149b167b7e2838eb4f96a80a465a49bd1e61b8c9a002240c2999e6ed4ed3cd
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.dbFilesize
16KB
MD564bd8deb0b97d0757b7707283ce06df4
SHA1e27f09a8a7b72878944cd4a94f98ab16649e6673
SHA2562e6ac2ae5eab761e7987d6c2129bc696f66f13a5f684a1900184f0a68a844bc3
SHA5120b8982b5f7bb74642c7f9a77b63711664cd1aec3ae0d600f4494f6f1f5bb1a3978de2b511ef531fcd4fc02c4406c2e87b6a79bc19565aacaf88a5ada233518b2
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.dbFilesize
16KB
MD50794e0c4b4644193b832f21a389bfef2
SHA1f02cd2c78297c4c6e3cfe5b4b4f3465485c0acd4
SHA25621b797d00369fae7413e37fcedc7543ed6a3f4556a1f73328f682a6ad947596a
SHA5121b0f2ec7c8940ff04fe4b8ef0c65aeb358041b998ebaf524bc9a22ad7bf425dedaa4e209439ef6c1f71d01729a8154d81b0a55bde2476fa4a6d9bcf65f6fba52
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.db-journalFilesize
512B
MD5c9136a9ce16ffe44fae8495e0ad3e35a
SHA117a803a5573957f9d4cd1558714b50896e5d4c98
SHA256fb666e0f8557b6fab6d335023c2770d4e988a55dba29c28dde9eefde688a8a7b
SHA5127294167dc3f80baad6c04e58a99d5a1c2674a872ce8684702eb78bd198ee241552421b3dd4cda6f7a524ee2c3b91a52b8a277d246ddbdfafb08d99badbfd7d73
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.db-journalFilesize
8KB
MD5553cd8a3ab4c988357b78acc762e5785
SHA130964cdd4aba7ca70c257145c2e3155e27a2b9be
SHA256f11c48b56b8fd44f4ead3de9a3d7a87f2b83bb0f77914fd460e15a85f36fe107
SHA51231f0c6e0ea77e0e73bdbce60c04fd9502f0bc9b055c1fb9998bc68c7eb2be6a393a0aa9196e1d5114dff34175df0f231449bdbca5a27e5e7913a9c21a6939a31
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.db-journalFilesize
4KB
MD5c70ebf997b3a94597ceead48cd079822
SHA1a750a8beac4cf7327a1bddca68f741e93be594ef
SHA256da0095664f0a3bb631c26dcd04a7c9d9dd66ec68eff60e7d59172d824380a2f2
SHA512e56e242ca49faaf0615c1f85d5f259a20702b0d93650123a5e45c5cccc70c71a40c3098d6a3146ea5779bab0a1e44b9a21709ef21cb42c3614fa2553503f431b
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.db-journalFilesize
8KB
MD5bffacd7500da062d6f7ac40b75b1c5cc
SHA18fabbe97a52ae17c9f03f7657d9cf03da6fc7b30
SHA256a095aa460a07b3ec049aadf71eabe82e7fea1c409d61dbaa2d61ac84baa87043
SHA512718b626d6bc000b68c9666577556fa0cec32b24acc7de686bef2b65522504e2309d97fa58683433c65edbd12ad98044fea4b9cfde6868794019276e7cd1df17d
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.db-journalFilesize
8KB
MD5bb79e1ca8afb22467abce41577508cf1
SHA13699a1cd3e043ae159cf8dd3d4980b9cf3dc0ce4
SHA2561cff20118e79a6665c27b771d585b1343da5f8e73e507b7740d9a6d354d63022
SHA512eed611e6a1c3d04dbd8d40ab0a2dea0327f0ef4ee778d98c3410f3848ea557b0fe4a392c8164459471316b7fc4c16b04f5f7b4d2df080318800a1f535a6fb3ff
-
/data/data/com.legendsayantan.msrewards/databases/google_app_measurement_local.db-journalFilesize
8KB
MD5fe6b4a1f614834d5f35647dc8db57424
SHA10dd3d7122a8055d4f6474a467cab220b31bb762f
SHA2567909afc2ff35ea18394ddb31dfa7b9383bb0990fc351ddc77f9eaa1fff6afc39
SHA51270d222ad6917ad7949616c74b70409a185ed71b59a725704eceb5d3b98c80b7c795999c459eff88cccaafc23bbb397f5df3c68d2f75af51c4ab190fdae7a2651
-
/data/data/com.legendsayantan.msrewards/files/.com.google.firebase.crashlytics.files.v2:com.legendsayantan.msrewards/com.crashlytics.settings.jsonFilesize
724B
MD5eb2a81988080da4581578fa5bc68c158
SHA12bacb2f53087805865389ac6d7569faa23b98dc8
SHA256b0bdda99ef23bd212cd77a6d29477f62693a8ff43c9a75b576923c7043fbcaf5
SHA512b26b5a3103849417dbb066fcf94b3eb0879ec14fbb46d3097fef0abbfdd122ca74a8d17be98a9f186a9ed0e9d14ded9b1967b33b021e79f7e5eb9353ea97a53f
-
/data/data/com.legendsayantan.msrewards/files/.com.google.firebase.crashlytics.files.v2:com.legendsayantan.msrewards/open-sessions/6662C02B017F000111C42F3896E1101D/keysFilesize
71B
MD50520fd142cfa0130eaeedc835481f826
SHA165b3eb1fddec90136e40efc550edcf51f73d0fbc
SHA256a7c8a12c57ffb5032b2212e0197d4865a0972bc2426a0c1a6d97755c103ece05
SHA5126c8239beb65c8d7414f9d9ba4c1e5cfeb11bdeb24d65fdc02badfc4eeeddcd199f7baac1011b21ce82cfa85ff20802502937e3c07c72b6ab7bc66c2bab789ed2
-
/data/data/com.legendsayantan.msrewards/files/.com.google.firebase.crashlytics.files.v2:com.legendsayantan.msrewards/open-sessions/6662C02B017F000111C42F3896E1101D/reportFilesize
800B
MD54d35b40b65fe47c5857a33b7395e35f7
SHA1148598d41237e611053f4b9fcb4e1f5c1886ea22
SHA2562283055f01c0c2ebcf513aceaaf47f38ef30c67d202fa554eea1be7a7ff1e15c
SHA512fd226f5f0eeac6a57d02f13a9b25ecfab28b1ad8a7d1c823fd7b796f6f7453881bb5950dab6361efc86b9d416e8d16ca46f6173bc6b8e9972ef4073c6f4c874a
-
/data/data/com.legendsayantan.msrewards/files/.com.google.firebase.crashlytics.files.v2:com.legendsayantan.msrewards/open-sessions/6662C02B017F000111C42F3896E1101D/userlogFilesize
174B
MD5bde4cefa7471c06cdd9f1ad8a57c5bac
SHA1b30a40428602a27082ac77ae1c94e36bdeb9dd90
SHA25687704a63b557c3403ecccf7b7e82da017986c960501e23ddf2a97db97bb734c4
SHA51243ece59e7dd4faa7d6717730d30f8ab62a3c07f55d956e80eeac43d231e195db7df5f7afc85702caef327b683e7f7e8c5565f3a5fbf8f7ef0f25b2de90301f43
-
/data/data/com.legendsayantan.msrewards/files/.com.google.firebase.crashlytics.files.v2:com.legendsayantan.msrewards/open-sessions/6662C02B017F000111C42F3896E1101D/userlog.tmpFilesize
16B
MD5c33583fae4e0b61cde1c5b9227963237
SHA1fe2ebe4d27469af1460f7e852031a04208ef629b
SHA25635c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc
SHA512fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e
-
/data/data/com.legendsayantan.msrewards/files/PersistedInstallation217853482153953026tmpFilesize
567B
MD545b07a14f2f75cd57a7f36a451d0b287
SHA14aa8ff18ad371ec1dca58cb78ed6cf96675ef4d2
SHA2563b24068721a40e33aadfd78d1a30556ba87f0989d22ebab57ecf915d3e0effab
SHA5124aa4c2350f8147832f72dbd99668a0f9eb582f24fc7ea2882fe0be8139dbb9998f7972a830223e1e17f0318dbb6520253e8aa58ffdf0fb3c4f85a7c0696f0a34
-
/data/data/com.legendsayantan.msrewards/files/PersistedInstallation3659114926757167888tmpFilesize
90B
MD53456fed8710f928fd55b7b67c4640206
SHA1977a36537d48b8332c3ea4e3475ff712d184a139
SHA256853338efcc691fd0fa5496f2c22f76eea532fadcb63cff7155ea6cd914816283
SHA51245b13c4a811f976d329052117e77ac492f6731ff7d863b0c41b2af3fcc576efe1cd8508e116f8c1d27c2bcac295052b00334536181db29cf09dc2f91a7727555
-
/data/data/com.legendsayantan.msrewards/files/datastore/firebase_session_settings.preferences_pb.tmpFilesize
33B
MD535b51faac8b5af3886e70bb5a885dab1
SHA1e6cb282da46cd4bf113e25c8573268578dcd11b6
SHA256af5b3362ec35985974c6b73eeba53e5063861f2491252d61d8cd42168aa5ed6b
SHA5126ad5e9766cc03a4436e1440b9e47c44da6c6440a3c94b1cc988f8c5680043cde6f7b7e02b2b4c71b25df4209c39ed099fb65fdde02a9f09464609a1abe6af8fa
-
/data/data/com.legendsayantan.msrewards/files/datastore/firebase_session_settings.preferences_pb.tmpFilesize
75B
MD5944e6a5a08cb971370c65c06061f0ab4
SHA184d47725cc29bf167b782c702575bce4bf2ecc5b
SHA256ba8f4af0e35f93cc15649f4c51969f5279421fc12deeafaddec5e5c48aa58dab
SHA512bdc404233927a6a99160492d0b3e2cf00776d51b33612b8c9ecba395747b3572cf1790269fb199915aafe84c546d30e3259833c9d00af8c412823396882ca783
-
/data/data/com.legendsayantan.msrewards/files/datastore/firebase_session_settings.preferences_pb.tmpFilesize
121B
MD5ffcbf87665a36fc21782400bd0537e79
SHA13dbfbdbfdcde953317b089f9a9fa0bbe50c698ee
SHA256a21d3bf2cca0951e9e7b3fed43cafe9f89a4cf9d844c82279b260852d0ee473d
SHA5127f98ac150c422eb4f1126d86501d0435817ceaa7eb5549e4d21a295d57be3d3fed4388cda782c084130c4ac8d57a4f225139a2e42e8a12b34cc1679140d16b57
-
/data/data/com.legendsayantan.msrewards/files/datastore/firebase_session_settings.preferences_pb.tmpFilesize
163B
MD5dcf7d6c1cfd5e7b56074e3001577c78b
SHA1b8eba89aee9f6688ecda6675ef8ff4998da0b141
SHA256ba0830617929c78abca9391c2059f89c78049911f502ef5525d39341e4da2b91
SHA51242d75be824d69de23d2e8605d60c3608db20ed5c059f5b67c63ca2845484c67150aea88a3aae36aae12a4ea266fb6b469d09f765bbcd444350d836ab83f7695d
-
/data/data/com.legendsayantan.msrewards/files/datastore/firebase_session_settings.preferences_pb.tmpFilesize
212B
MD50547453cb0e4b71174690d35e91b89fb
SHA1fdbfb139721dbf0b766e6e6ecca4e32aad2f53b8
SHA2569b54624284d0abcea75fd161b08d83cc7456cb4cc5f7f72a5e150a59dbd00d31
SHA5125dd3c4c08859493f10a94e584dfc4423e986f68dc6d7ded894eb1d64d2a7f1f21d16303a92738033d9b7a69c0926546346a56e08e08c5500314f51075b0128e9
-
/data/data/com.legendsayantan.msrewards/files/profileinstaller_profileWrittenFor_lastUpdateTime.datFilesize
8B
MD513dc06772b787222690245e37ebcff98
SHA137fedf9d6d95f6b578f21ab8ca510dd7a6ada8fb
SHA256980c01003a9a1257cd2b593bf904476837c9f281fcdd33afa426a6e8d2d7b9f8
SHA5128afc715abee37998005351846b51de7ea954d2b4ef6016ffb53a703b83c9a2c80f8a69f1486ce4baa4d14f7f0139de5bec8a7da1bb337ffcf00c398ba38e335f
-
/data/data/com.legendsayantan.msrewards/no_backup/androidx.work.workdbFilesize
4KB
MD57e858c4054eb00fcddc653a04e5cd1c6
SHA12e056bf31a8d78df136f02a62afeeca77f4faccf
SHA2569010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad
SHA512d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb
-
/data/data/com.legendsayantan.msrewards/no_backup/androidx.work.workdb-journalFilesize
512B
MD57b0627a2e95655bd87c01aa268526bf3
SHA1e6d1fa667e4d3be3ccd03d5a5925d9fa03cf13ac
SHA256767002b42009284fb7c0c83f9f164a01bd02b194db6007d8fa32546b1e0848f8
SHA512d110559d83d41740c3f00b3cfb396e5ec37b968cc21c548815c4485d622ea2bf55975e46242446feed1a88da9166967d3793bb3e12ab3d75fe16a0487f2279df
-
/data/data/com.legendsayantan.msrewards/no_backup/androidx.work.workdb-shmFilesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
/data/data/com.legendsayantan.msrewards/no_backup/androidx.work.workdb-walFilesize
16KB
MD5f4ba70fe217b6a4f56b9d6c787bdea4c
SHA1f0ee6ae1523e1e4039f5eb7e5e2677d8ee2341f7
SHA256dd071afdb9c19f1338ded84acbccc6d664df8ef1afd5fc1d5f9b3ad1a9b14d68
SHA5125b013b5cc97a8e334fcdebe8c4531bce4faf2acb53a1a9b33fc1bd1006bc8c0335472423b6dcfba358df47e14159c12014a1f366cf26a052cc87c1d26655c972
-
/data/data/com.legendsayantan.msrewards/no_backup/androidx.work.workdb-walFilesize
116KB
MD57f764386a2bf01bf1e17661e6d9e2b61
SHA1657c18a684a26eda49ea40e4c098759f6b8ab29d
SHA256797c4edbf3ca01885f95499c77ce12dd03dc5e6f3e7eae4cad6c47b89d6ee267
SHA512b29cb7ecec5ab1200a8e546633d82404338d432402d41e1e86e2b5ed080831b58532e21e001b8fac1de6f6358d0c7b4abf62bcbfc6e779961dfa0948443f8ec6
-
/data/misc/profiles/cur/0/com.legendsayantan.msrewards/primary.profFilesize
988B
MD5be0ed78b00b9a1e212bf17374e284d15
SHA11faac55cb9ccd93cdd80bfd6ab032b0a98b96889
SHA2566597c15c4d3a85b9339c17c1bea0c9c28f4c9d50360202c9d0ba4c96a6318d7d
SHA51227212bed60f8492fa8c384b47fd2c8753473651747fc9fd41c5ef662f11e5137791314fdba235e90f421f4dd2b8b2f0bc2f88035bd2815f3210990170924c6f0