e24ad9004cb46df8047944c468c8e67581e88e35bd3ec7f9e9748543f3cb8d29

Analysis

max time kernel
140s
max time network
180s
platform
android_x64
resource
android-x64-20240603-en
resource tags

androidarch:x64arch:x86image:android-x64-20240603-enlocale:en-usos:android-10-x64system
submitted
08-06-2024 17:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

VirusShare_e09e167e47a753b7eb20583ac507b231.apk
Size

108KB
MD5

e09e167e47a753b7eb20583ac507b231
SHA1

613a7f09a91564958ea5df67f4142b7160d63819
SHA256

e24ad9004cb46df8047944c468c8e67581e88e35bd3ec7f9e9748543f3cb8d29
SHA512

980905682699dd3c67e5767b713e96136b52e5f6dcf0bb059e2ccda683c759188bb26650fbac0859c3b214be3283f7799328c7a83616eafa4c540637d80588ce
SSDEEP

1536:qNaG709qVQSIoJJgtXyRy/q+og7cJwPowvxjdiGI7lFtWbsHwdMEX/ysvG100lbo:UaGAg21ootiVTOd8Z7VWbsqPXmbo

Score

8^/10

discovery evasion stealth trojan

Malware Config

Signatures

Removes its main activity from the application launcher 1 TTPs 1 IoCs
stealth trojan evasion

T1628.001

Processes:

com.install.l

pid process

4989 com.install.l
Queries the phone number (MSISDN for GSM devices) 1 TTPs
discovery

T1422
Queries information about active data network 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.install.l

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.install.l
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

T1422

pid	process
4989	com.install.l

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.install.l

com.install.l
1⤵
- Removes its main activity from the application launcher
- Queries information about active data network
PID:4989

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/lbt.txt
Filesize
29B

MD5
088525454e3e7244196df38e5f81c273

SHA1
478fe226f125869d61a8e02e73623b5486c0b996

SHA256
e924b954e96fb8ae38a739659f8fb2762e94dfa3cedddbc3044b87c6acb0cc87

SHA512
a071edf88a17d8a0f65ddd8380187b613e2c680142cde7218638a3e4dee1102666a70685db62292acab987aabb4cd398394d3e6dae8e59f4502d34d26437790d

Download Submit
/storage/emulated/0/lbt.txt
Filesize
28B

MD5
3cac3db92381d625a2a80a00e526dfed

SHA1
4c37894e80625feb6ad5c9591a877f9e515c91ab

SHA256
99982d878240a3f38599e2f98995c80daea832e5fda929459960d419e7c5dff6

SHA512
d923cda049df2efe8268823d6c88f09a8bbec16a48c35cf88a5c8d9a2b0c09bc57623d27cf92a5b2ad0bfa74c7ef0058469fd18079337671437608967ea41b7d

Download Submit
/storage/emulated/0/lbt.txt
Filesize
27B

MD5
bc86441f0c29f82dd683ecf84d098dc6

SHA1
cd2e38407cfbbc1602d15eceec23c637bc8009fe

SHA256
87514face63a043903159c8a418b42460e8ed54e38e09b86b50463e745584e24

SHA512
9b67bf0b5619e0c242d51d165781c9ce4c29cc4a4fe2139b5b727b780d01e9ff9caf3f51d22cd27a4c86b4cf3ce2cf5190bec8d109aaf3ca38f1486c8773e92d

Download Submit
/storage/emulated/0/lbt.txt
Filesize
46B

MD5
52b58db3316b897edb13c5bdcdf14962

SHA1
024a75f1b8452c1eab8cf323cd4f82516fa92102

SHA256
c8caf54de58aad61381f640de744fb428bed745b866bdac94259c0889bd324ed

SHA512
1c543cb0c1d7c29dbda719abf62a1e995cda2f6af2f22b54bf7dd950a453b5232683656eb6042317234da01d89b3f2da16db3c818bcf16f48afb2db0c6502179

Download Submit
/storage/emulated/0/lbt.txt
Filesize
27B

MD5
73e8ea8b45a1d294438985e5fcb4ec28

SHA1
d3437b5d2662c6f733f817d1d4046425c9c50a02

SHA256
363fdb521398bb75c09db67efe125e8edaa94a5ca0e9ea99558db89f1a175115

SHA512
d3bed53132976db60278d3c4a63f80f35659846c9b6bd25927cf47e94fdf1592356181a79a995036655ea448d2650405a221d6bddcaeb72944308c3b3fd3212a

Download Submit
/storage/emulated/0/lbt.txt
Filesize
106B

MD5
dcf1f757e2d581b3ed8e81a8ea6dfdb0

SHA1
d26c224aca8f6b2c6d282523468ef2fe7894e249

SHA256
fae5c92bc50fbdb8d8a998a517787474f04e56b526023f67971b00defce515c7

SHA512
49833d5b6eb9e630528d47624f0b341bb8b8b72b9171e4be95a3f1446b9d92d1f052000d182dfcdbf824151b076d1f76f02a449052845c194c6451f936e5e8bd

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads