de6467cff49678818a3c7a15f002da1a0d4008a2a23200d4d42ea2480a36ec79 | Triage

Analysis

max time kernel
123s
max time network
133s
platform
android_x64
resource
android-x64-arm64-20240603-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240603-enlocale:en-usos:android-11-x64system
submitted
08/06/2024, 15:52

Sharing

Report Analysis Logs

General

Target

angry-birds-go.apk
Size

20.4MB
MD5

d51d3ae9ccc70ef156bbe82f4e4be8b4
SHA1

29182bb96f01d5343618a450c1ebbdba0561944e
SHA256

de6467cff49678818a3c7a15f002da1a0d4008a2a23200d4d42ea2480a36ec79
SHA512

93c39f970f055da8c46ba65df22c0d4cb83912b121df98fb067637ea00d2bbc9d50b8336e4c4255a8ff17466fb07117cd02946a1d179895461f75a29e6b137f3
SSDEEP

393216:W9xwPxkcV0SsYCX6k8IP7HKHXvGFN0xWP9MbKSWeIh+E2:AM1VhVz+7H6XvGFN0xWObeda

Score

6^/10

discovery impact

Malware Config

Signatures

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

Data Encrypted for Impact

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	cm.aptoide.pt

cm.aptoide.pt
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4474

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/cm.aptoide.pt/databases/androidx.work.workdb-journal

Filesize
512B

MD5
84b71e0ce184c67c264f6c1bd4453093

SHA1
8fdfadf7d1b9de81e4f0b375f286faf6cc7a1e35

SHA256
f1ead67326d60675fe178f0f8e281aae91f5040b2915152ab41221e0a9062201

SHA512
6e3f5fed9014b736b1f02f0efc98916421dd19f28c7d3571ba89625c8047f84c1af0daa094db2926cf3354a7b8211ba1e4e4cb8d25389acfc3dc66325ffeeed2

Download Submit
/data/user/0/cm.aptoide.pt/databases/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/user/0/cm.aptoide.pt/databases/androidx.work.workdb-wal

Filesize
88KB

MD5
012f2e38020ae6a8fdda78175866d62c

SHA1
e5caf7e60b1f0346512d4b127e196edd341abdf3

SHA256
ae9524bb560457b122cba910caf1fd30893d4c057b3515d53a9fe53d2ae6e90a

SHA512
583f6324452f7edcb45531385be056440dd3cf8b51b5e1531936f4daee22f475fd67f66173d29c120fc01bbfece735fca5efecfa5772243dfbc88e50646972f7

Download Submit
/data/user/0/cm.aptoide.pt/databases/androidx.work.workdb-wal

Filesize
16KB

MD5
e1be88d4b6aae806185f027e1f8dc388

SHA1
d1466eb270da9231bb859e48a825ddc8fd555972

SHA256
a3f72f0bd7be3375783626599d50ab9334cd8d84a560b3f7a2c472a5bd260edc

SHA512
e40c27a2202fe14d6654edd75a7387a298f40af41c4efb087088e09de689cdb244cd9d308e7bd1437bfa37a7266ceac9627380ea46bbd2a8eb12ffd147e5a332

Download Submit
/data/user/0/cm.aptoide.pt/databases/aptoide.db

Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/user/0/cm.aptoide.pt/databases/aptoide.db-journal

Filesize
512B

MD5
6c64f9da463ea5e36da48b4d73d186f5

SHA1
740a9958186c8a8997261f8a58d33ad8e7c413eb

SHA256
24131cf063a10d5a679d68d4e11e53ab618a7d361433b12fae912da6c33f5e8b

SHA512
8a22d513cb7fa6596aeffd47357a16f62dfa97afe7cfea868806ca0f948054640ae86e5c9f5b262733f3782c7a7a022dac18958320f08ac9af6e9ec847667b87

Download Submit
/data/user/0/cm.aptoide.pt/databases/aptoide.db-wal

Filesize
136KB

MD5
90c11f0822907d54ed5e7a0c03892178

SHA1
2966f640849354c41b92f991ae054c4a4ab278a3

SHA256
614da486d1d626f33ebd1b3e323af082e9c76912595f20507cd9e36e70841c2d

SHA512
9eba948be7172e49700a54448e1aba1caaad3aba22bb35296f993326e0d68efe1b2d4344a02fc887685ba7c8f067bc71ddffe4ea1cc82f3c6862bbb9fbb5b2bb

Download Submit
/data/user/0/cm.aptoide.pt/databases/aptoide.db-wal

Filesize
16KB

MD5
3cc88135c2bc354d01da43b8d36f8031

SHA1
b8cd80150af5375bb69f9d2033123d30408cf307

SHA256
74af5bb4859ad326fb294363cbd3849836745f71c83d2c5f91802c95988d31d9

SHA512
82eb8ad6e6763876ea2357667a2f94ef51f4333922f9447f556f43c60997fd339fdaa627a98b2d62b68f1121f1f6fb16e39c0e1e6dfbeb6960a0530c02295f84

Download Submit
/data/user/0/cm.aptoide.pt/files/.fstreaming/fInProgress/currentFile

Filesize
2KB

MD5
81747447d4077913a751f0d9bee112b6

SHA1
d453d374291fdfd0653c1dfd5f1fe199f27bf0f9

SHA256
23c5cdf8775e745dd44fa570a08d95a01f73478d8943108ecd54b7a3130d0de5

SHA512
039b4db4d1352ab1518c4e63aa0abb36702244e95f23b1f75fe99eb23ebf99dc1a2cd828ca1e8a090feca81384884fa9e2710b2f042229f6ca7e0b2e67630001

Download Submit
/data/user/0/cm.aptoide.pt/no_backup/.flurryNoBackup/installationNum

Filesize
100B

MD5
5dcf2c0e68f4f3470c57258a8c2aec95

SHA1
5d3f21eb764f334c0695113c7530fb0fb81c0f34

SHA256
a239dfc7b949bcd8342daa484e5e7c2771125b4ed6dac79a217ab0cada54e628

SHA512
3541ba80ac184991cdd0a09dd1ad8eaa82087817df23979aea40d659514674e9a18ea28162e5926a69d2f4e1115dce2b9c7265093855402cddc221f7c136c466

Download Submit