a7c7430792525572322b505de9a1e2119e85962e8e602feb878a042ab7bd2de9

Analysis

max time kernel
39s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240603-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240603-enlocale:en-usos:android-11-x64system
submitted
11/06/2024, 08:39

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Game+Booster+v2.0.0+(Premium).apk
Size

14.6MB
MD5

bddcc0fe9893f18c1fb661603e6e1b57
SHA1

0818d9c5afa036d051e3024f8f7c80eeec6e52a1
SHA256

a7c7430792525572322b505de9a1e2119e85962e8e602feb878a042ab7bd2de9
SHA512

afeb536e93274a943c033bc5127a2cfb7b366ad6330e884f177b9afad0d15cae9e9c3a722f96ffae6ca6084e75060c1e8736609158fa2bec8582bb98c6ab2e46
SSDEEP

393216:KNmrAAb551sLKTBDG66S3NQ5IAt57nUM2153Z:Kyb3bTF/9o/7nYJ

Score

7^/10

banker discovery evasion execution persistence

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.g19mobile.gamebooster/[email protected]	4547	com.g19mobile.gamebooster

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.g19mobile.gamebooster

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

Scheduled Task/Job

T1603

description	ioc	Process
Framework service call	android.app.job.IJobScheduler.schedule	com.g19mobile.gamebooster

com.g19mobile.gamebooster
1⤵
- Loads dropped Dex/Jar
- Queries information about active data network
- Schedules tasks to execute at a specified time
PID:4547

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

T1603

Persistence

Scheduled Task/Job

T1603

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Software Discovery

T1418

Security Software Discovery

T1418.001

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.g19mobile.gamebooster/databases/app-info-db-journal

Filesize
512B

MD5
9e11840510c0de6d71f103589bf547b2

SHA1
2933a7308b354f1dcad96fee7c1d94a11f2793fb

SHA256
065b80d1b1444e87d8bbe4f40f3bbb25f047450f2978f9e6b6f18d1292ab5e5a

SHA512
683ab0bfa67bc85424bfe6dd77df4398d73a04752ff7d3bb65770037405d224ca3ef02a19d8fa17ad75ff21b2ba89d693ca891832a15b361c715fe277bcb5fb6

Download Submit
/data/data/com.g19mobile.gamebooster/databases/app-info-db-wal

Filesize
36KB

MD5
745bbf320acfc10cc96a55506bf4688f

SHA1
2b44f61ecd95e642d7b2a8cc30df4e0ce056030e

SHA256
f886760f68da78bd544a81ee3dc82904ed087037363773c3be0effd4c74e21c8

SHA512
bc531769b2b395c0e42677cee01a09b03106a4a986b2b0a088245bcb8cecc2d7d89b8a7660a6b889caa3d4c190a4c6fd1302143b322e6cc986f19f774f893255

Download Submit
/data/data/com.g19mobile.gamebooster/databases/app-info-db-wal

Filesize
44KB

MD5
ab7d94810d162d75509b4c3c1b164ad4

SHA1
53ebb03291468a620c67cd36baf488fd974f8068

SHA256
5c974e632b3eed75bb9b489d6816f8f4cef0d97b39dd39e10e2bf36250dad683

SHA512
d7323649b81c0d46056e5cd5dc7f556a0937eb97b2fd866fb3a96890d3644ae0b40bfae1f0384737f0740767117284f1da6d4b5a8f85f3342bea6a2928e403d7

Download Submit
/data/data/com.g19mobile.gamebooster/databases/app-info-db-wal

Filesize
16KB

MD5
d4400d28bc88aef8d2af3ca5a2415b95

SHA1
804b8ff890653f273bd5fcbc8a8de3704027c978

SHA256
10c9438d85af86b32ba33f8041a8d961de04d8276e3aff12f1cb5f2c6b5df007

SHA512
d395f2b3a680b854f4fb2c1617f62306715b2b90ea09fcce7ff718e88b7349322eb82d98f4102e43aae383fdb85fbe23374372bd6c2b37b3fa7572692d0a3255

Download Submit
/data/data/com.g19mobile.gamebooster/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
4c07cd09bc84d4ab623a09586586dfa2

SHA1
6974a4ad03a73544dc5b1d3f3a6708cbaf6e54ba

SHA256
c2e5702044d3d3e2ce4db296e74b9a1c0ed3573bbd540fcd3040e3556932ace4

SHA512
f477b9a4da4b15fa51003c184e823205bc6dbc4d93951b373146eb43d269975ab845a95a401eb75fe62890b1afd73fac4021014932c0b62abc208163227f4956

Download Submit
/data/data/com.g19mobile.gamebooster/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
694e43e55485e144440e3c35cbe1b83b

SHA1
ff3d022fdeda8e4e4fc14773ad69d40051c7f2d6

SHA256
01996ab11fbbff39b4d918522a9ef0507170a16e77dbfe929f4d5d4c2cb7c3b3

SHA512
e29064d32be63518a742bde6458d3f092b24056d7badfa79fadf4a3156a2e06118bb92482d4807b40b1cd9700ce7e2a8d83299321c85cb413a4d99ad056c0536

Download Submit
/data/data/com.g19mobile.gamebooster/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
ea0527adec5e085d41c6d0a8b586bb56

SHA1
a4720f2e473a56aae4744861bd05220f74e7d66c

SHA256
355ae2c6e21a1b02561fff2408cacc99d7d2995742e1ecfbeb6ba9b9653466d3

SHA512
7ea402327949edb0f8c8406210deffda1850c739fb9de6de9f9dfd2329d3a5ac5e6f63eabf8135578fb3a4bb8c4b4140f6eb657198e2a9b1a9fccfa007b49f18

Download Submit
/data/data/com.g19mobile.gamebooster/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
a88235c236304ac5d6f5cafc1d85f585

SHA1
a72f39af97246a24ce5e1c84c450dcc5fb166d58

SHA256
788482c445e8a23e4046bd6655285848f04a55240fcd8cfc1600c1ef5df614e5

SHA512
7e3840bd3af25199753cdd199c1f70f4b37d5633ff7a8ff7b4c59fd26b46940a2ae3b6c2cf91696e75240c51302dd08106df19db9e789e404cc14401f2bdffe0

Download Submit
/data/data/com.g19mobile.gamebooster/databases/com.google.android.datatransport.events-journal

Filesize
24KB

MD5
65413aa59edd1b6ce4a0e46356bb7a28

SHA1
7b0eb2be1e1ee3693bae44d333af7f418d9865cb

SHA256
6cfb40d0a73643f427cbb2086f66adefdb63abf3bab82dd49561bd399ec99b8f

SHA512
7d547a2cb7a81cfe71a284c20abd37f294ec09cb066ea7bec30703712b769ce5dfaf261aeaf15aebf7d7772b95125cabed11a05d6f7c62465fd30a9f398f4399

Download Submit
/data/data/com.g19mobile.gamebooster/databases/com.google.android.datatransport.events-journal

Filesize
16KB

MD5
8293bf5b533cc9cf87d41fd3cb2d7638

SHA1
d73ae3302ca07398898469ca958f9571743e7848

SHA256
66974c765753b3f963b2288fd154c8d8a99cb4c17d0659698debf6f6cbbbcace

SHA512
3b5364bbe5641fa9012aa0df74e09fd7cf8e3e1828ce18873d92ca41b6e3d2401c80cc5a13361c2fa17b7fcbf08f61c24aa45b4f97d139d9fb7d0eefaeaff655

Download Submit
/data/data/com.g19mobile.gamebooster/databases/com.google.android.datatransport.events-journal

Filesize
20KB

MD5
3773cd72f9b74bd7229dea5350b3cfd7

SHA1
bf423f718fdc77c2e4d8c6af0fbc6cd58eab2bb8

SHA256
4428182c0a61a66410d1f53a843d0c28af04517c6116cf2a2bb87f92d43d859e

SHA512
4bd1dfb2a4356c922699f12c5eddaee19c437a5ce1fe524e52e214da95ade282f0216c3827a4da454589c72e6b9d2b0909f792bf28e235a254fad5c99eb07041

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db

Filesize
16KB

MD5
db706612fdc22b234c2606ab93626a50

SHA1
e2b5d1d1d82e1e9159390852d635a0f6823a6a88

SHA256
2940eea4e4cb8d1ae6fa670083bc65f4067ca7aff66e4517df7c9912c2634cec

SHA512
39b9f0de23f7f3867ca1d0cb974c4b434fb38bbd15bcc3cf3878af382c91b486510ce6e3aca915cfcc9e9d0de8a214f088daf84710bab4bdbf5c85117421dabf

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db

Filesize
16KB

MD5
91db4a8b0f0cb4a812902638cd49bf31

SHA1
c7d0592a78f83e639a526e3cc7efc6ec1db60fc5

SHA256
1ea96f82746c718059e84a80c6dfcb419806f5cbadb4384b3ef8157ef43ead4e

SHA512
9d55b8dad251a307cd5128a948b4518e4804ad11553f1a1cfe56e14c830210071247270005fe4b2ba3f3572764aa3a7e8bdd42c697ed2c1f05f1ef5f1ce3f2fb

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db

Filesize
16KB

MD5
91d17294975f6c799ab167333f03ac7f

SHA1
17288e4032579a2431f286ce5ed53581fb748d51

SHA256
7064dc8369c96ebc2c8e4631c909e84f25b5dc4a669cd61198c3d47c7d84999e

SHA512
3d635b4dc924738f63a25c3d6575aecbabce7f8682baa75eb56ea3e02f398a6a07d20ccf7570cab9a7ba078c87b41920dc0e393ce7120a0d07f03eb3763f5c23

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db

Filesize
16KB

MD5
576db35a3b86e8c7a3656d38c40aff5c

SHA1
9c1b4e0d96e9a14f4df5f532a73d944145bff210

SHA256
023d3f8589ac14e539790c898415ab29eb08375677592ca53b2437a109375831

SHA512
58e4d99bc56a050d053c52725a02a23cd85d01b8443aea1b2f8ccd9ed72ef3b60b7e33be48bb1f12bf4ba37baaa86e376e7d71cddff5dfa98f8910fc0ef6a5da

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db

Filesize
16KB

MD5
8ce3ea81daffd1bd00430ef0a0acf4c0

SHA1
5d13006f6e4b33bdcfa6d2a6464994883ca7143a

SHA256
8ccf82d05de9790bc7ac92bbbc0fecac509788ddf840c0eb855071874d65bd04

SHA512
99810c4b5e2552e4ac6bd690ad1b9239ce7e592f0a9a254967e516651879e57d061ca7fdc9d1475277facaea00fd15b798f7fd8d65865b46f349fa4d27639497

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
579b4be1b88045aebcdae29dc135e42d

SHA1
01b301a226f33ebe6e9fa32fa02899f1551a4a30

SHA256
ef9ed6af7a47d1646452723e44c476588d2362ab94c8925dd4420011cb85e675

SHA512
c8be7e7865554a2c1f1f040659ed963fb4671dd447b61f30215ef8f457e930358a11e69d64e0c169c7ae4ad71d4214ee337ecdf50b23ce2871b7a357c709ece8

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
5fe204a0013221d9c7e070d1e6946111

SHA1
c548f84d2fc12092e3912817798c0312ede09028

SHA256
38f8f592304939937d0bacdaaead1a20ad3cec7797d4342f92ced09a1467448a

SHA512
b254898e04d0ba1d03e8754080dd9bdbf556f552a5d015388ec9d21c91a9e6838ffc36031566bfe0f678fe82d992bc3875b5d9a1010ae2e8334c5864d0d89ddd

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
69d03b88699cb931c872d1b209f20852

SHA1
947fa978b04766f0c5a78508c347bc555629850b

SHA256
adcae2cfa7badbefa9d03c9e6d2c6bb36576974047070817540fbecbfa0c0636

SHA512
69d76e8a2e593a3c80991c67a281b36340c2405cf8cebc95912c3f9cdc9876422ee8c5140bf21380b6bef3c76aa8e5df3a32e6b812d76f0188fce7ba53f661cf

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
099b33e96bfca58826c9ab4584e96c9d

SHA1
f578f0cdf3f9cf29857f66384850f834e7f3c3d5

SHA256
fee78e82f87e169aa7adc792ea044e22126dce44f1f198bd3b8ee394de78f95b

SHA512
6b4f4d82abb38efba671f7af60f732699c70940d5cf4c6f6f6a75ccd7736676782e95bf74bfe2e695a90d2807618c4bbca3fa98e759e52caae08420cc3b5d8d3

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
6037cb4665de5e25e553bc505d98e604

SHA1
1a9875cfcf17ab0e150be86a4dffd42b536825ae

SHA256
009bb575590e11ca7f1e5371b0f483e5a0e105dcdfe82e4e6b418a899d210b1c

SHA512
021eb869a7a9db37bd0bd6bdb228e10fd0666c103bf261b3c6508475f365df5fd021e9be35c6d3ea034ab130a869deb454460d77647459bf306ffbe3dccb5ad2

Download Submit
/data/data/com.g19mobile.gamebooster/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
514a501c6ce6382a9a7c9b4f1071829f

SHA1
00c95714afe29845542e9f15ccf68c895ad42f99

SHA256
97c8fd9be586441560ab536d6813a2f4b132b6c38448aa17392766e02e7ceebd

SHA512
ff130e438e7da4e57412b33f500e2661eb8958b98bf4dfdfbea82451a8fbd2afa20caac5210b9eccc14f463bc971f825f1eaed72ac47f8a68a3cf9dcb8b31ee1

Download Submit
/data/data/com.g19mobile.gamebooster/files/PersistedInstallation3135115312383801907tmp

Filesize
90B

MD5
de439e41e21c9d0323bbd1c6efce1f28

SHA1
e6ab535c495cce3990f904bbdafa7b0e5c02eb6d

SHA256
c71fc999f203a29b96c7b2579a33db30b259fed80b4cecad26fc84c1797b4c4e

SHA512
bd5033eb409b5bd7aeb3540b76e35b43edd8220595403d567b2d35af971f35534e0c5663e46eb94b0c2daa02f5ce5c1ea0a625ebe0bc0e2a2729968433458b2f

Download Submit
/data/data/com.g19mobile.gamebooster/files/PersistedInstallation5242752233410168260tmp

Filesize
569B

MD5
976fbf8001e1997dbb6b5174d7fe90db

SHA1
3c593dcbcfba5d86a7fd5ca3a3d6691d0bd9608c

SHA256
bd8868c02aae5994981cc1bd1018df1ffca448bb3c8acd7f2a6bd76cb6705159

SHA512
823ac1dc3eabcfb09f741cb1de25c18979757e1150c1c5b95e6ea11878b880d6ec4cb1ce97bcadbe92b9a80ca375a14a846162a8136bffcca61d08f38ff19a33

Download Submit
/data/data/com.g19mobile.gamebooster/no_backup/androidx.work.workdb

Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/data/com.g19mobile.gamebooster/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
6cf4a8749ad87dcb358d34fc5f1cd891

SHA1
ff80a09c3fa0ef8073abadcb873d1fe8662fb534

SHA256
939b8de22d8431e0c9c916d3363635d080d470a1f47dc8da4e319fa8ae7eaa21

SHA512
856d5f6142c51fce61ef3b7ae16c28f0abec10d351a2a60aebd582490f1deae1c3d08497f73d868c9309779eeaffa5f828899130c0d9e95e460d44e51514826a

Download Submit
/data/data/com.g19mobile.gamebooster/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.g19mobile.gamebooster/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
40812af10cb773f7c107aa6a250dac0f

SHA1
a43e9e036d77417a23b056e205a325220d9190d8

SHA256
739d01439a552f0f0d7f42738181710c66f2a9b9514ca17fd52789d876d13ea2

SHA512
6505bdaa5a89a61ed2009dc5468f959fbf4ee0464548802208f05f4f23169489b2455b0768265f1f0b023d79520873b04df357f2b7487c05ea944994e1727097

Download Submit
/data/data/com.g19mobile.gamebooster/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
9a2e172d122b5af6cadb58f04ecc762d

SHA1
76e5911f25094a81245c585d6440dfb4cb005802

SHA256
f647b96d5b5e91a0aa65b799ea27fb180d4fc9c1ebe852a9816eb71c79866df4

SHA512
7c42464c833fbc798bfeee0d3b91287a9d9d40e65afc65c381c70d497dedd5c0500717c4a163183b48abe9768a3c752e9793a35afb2f85ce7a475cfc8ba3ad76

Download Submit
/data/data/com.g19mobile.gamebooster/oat/x86_64/[email protected]

Filesize
835B

MD5
cab720f55446142a6978f3ec5dde6b22

SHA1
c845c283129157f207cc59fc9be04d3c25697a22

SHA256
1a6e00339ebd9212670183e128f71adb676e499536ae259e72b5e59ed7f8d3e2

SHA512
2351af5830fe415f1b8e3660a6894ed814f91f9b2514cb0d4a3c666b825f4db00f85333f1629c42d032df1fcc5b7fe0498fefc3351ca7d8b511ae5622bd98ffe

Download Submit
/data/user/0/com.g19mobile.gamebooster/[email protected]

Filesize
3.1MB

MD5
9b8164be4f0ffaedadc82125e5346c14

SHA1
c4bf7a6383958b493ed5c4dd6a19862d366fca4a

SHA256
8e632284c9b0180ef28e309b4b0f282ef608cfb9d9046df899d8bdac227ea9ce

SHA512
352b3e9ef70839d0850ff7ca4a1f19f3df546412ae5cac1243a80588e573fea6371edd4c408a2edf1b48d70a10a5cb579513d3cd38a4b5ccf4b7528dd28704a4

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads