Analysis

  • max time kernel
    743s
  • max time network
    1033s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240603-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240603-enlocale:en-usos:android-11-x64system
  • submitted
    09-06-2024 16:35

General

  • Target

    Hamster Cоmbot Bывод.apk

  • Size

    7.4MB

  • MD5

    43cd0d0837b2cf2371e93e4340614562

  • SHA1

    db8cd87819a91f311f22a78e1e4099486768099d

  • SHA256

    608bccf44f236542d708efc9e8d81372bb1a941969f267b315772acd370d2b06

  • SHA512

    7e5356ef27b70b99a872b3c5cf8e21358971c0c85c34c7fbab6a8a20a70a5859a34dc8c651e274fd3a13bcb3af6f7adfc2269b108f11bbb25eb4257ac5f9a0f9

  • SSDEEP

    196608:xwzajoJT+62TZF8SoGwsX7LwwYwwxfn8/XezdJsy7BwHxz5:4aKfsf1oRjzqXeJSyK

Malware Config

Signatures

  • Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

    Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
  • Checks CPU information 2 TTPs 1 IoCs
  • Checks memory information 2 TTPs 1 IoCs

Processes

  • com.example.application
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Uses Crypto APIs (Might try to encrypt user data)
    • Checks CPU information
    • Checks memory information
    PID:4684

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.example.application/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat
    Filesize

    8B

    MD5

    6b4b679a9916bc4b44ba6ca09ecb3e5d

    SHA1

    2f716d5d061d268d56b989bf5afe898c83a4c8e8

    SHA256

    aca455501aeeccde71a33e7c03dbc317afba8fde9cc1a3609a9c60efcfef48af

    SHA512

    8f76dbf3dd4518f58056e9f397559790cf186c72a0aec9a0135bbabfa9589f045f251bb9cc332824b9e8cd5cbef9a6c31690fcaf9c1520226991d237ef89b409

  • /data/misc/profiles/cur/0/com.example.application/primary.prof
    Filesize

    5KB

    MD5

    b6d3ca5f8b1bea3f243673abdcbc25f4

    SHA1

    917a67c3b5fd9814adc01e81c59ed08c70db70ac

    SHA256

    1eadd2d3de1286832ab2ff6ee7eaba4fc116b53981008593219e9afe543cc9df

    SHA512

    03bbd5bff2f967445e1f62da8570063f2aae822c3f0bfc67a42d7d0afc893ba5394e3d5d525dcd7c4569fe0f0e9a904b0fe5044c138a2427c46879bd7ae6a4e7

  • /data/misc/profiles/cur/0/com.example.application/primary.prof
    Filesize

    2KB

    MD5

    5d2501d6c4e30e2b59674bfac1983f11

    SHA1

    bce628d763ff640e3a8f24d4e932f6eb3f2af836

    SHA256

    8f6d3741ab98323a35d3dc329605250982fbbffac960f47a001495fdeb8440c0

    SHA512

    019d3c9d2a1960547b5e69956a9fc812123de6d4083d8ef2d689433151cdfbe0624b474aefff7dc54772cb3c6d039687b0ed8c964dfdf00cda6697f2a2af55dc