General
-
Target
Shopee PH_ Shop this 6.6-7.7_3.27.09_APKPure.apk
-
Size
229.1MB
-
Sample
240613-3qcpkazbqk
-
MD5
c0982b9a45d3249372a069f35c530d48
-
SHA1
211e6c454f7adf9f0b7547f4b35ec30cf3b544e9
-
SHA256
7031ff31e01ff7edce3f830ef6bd2e83606b4c1898264d4e16261c663042bc2c
-
SHA512
38144db25fe4fc3a4d9986e40f9eed52016366ffa0f14e1bdc99f484fca721d2399e0e93d9720703d8a997039d6553e56cd05ef79923884c5aaac385d3e5648c
-
SSDEEP
6291456:om+xTdJkhc+TpYke9WREzFN5GHN+RppFX08ym7sHP5KOV95q6G+0Ma:oZdJkbpYkeoS5+MrX08QHXvGt
Malware Config
Targets
-
-
Target
Shopee PH_ Shop this 6.6-7.7_3.27.09_APKPure.apk
-
Size
229.1MB
-
MD5
c0982b9a45d3249372a069f35c530d48
-
SHA1
211e6c454f7adf9f0b7547f4b35ec30cf3b544e9
-
SHA256
7031ff31e01ff7edce3f830ef6bd2e83606b4c1898264d4e16261c663042bc2c
-
SHA512
38144db25fe4fc3a4d9986e40f9eed52016366ffa0f14e1bdc99f484fca721d2399e0e93d9720703d8a997039d6553e56cd05ef79923884c5aaac385d3e5648c
-
SSDEEP
6291456:om+xTdJkhc+TpYke9WREzFN5GHN+RppFX08ym7sHP5KOV95q6G+0Ma:oZdJkbpYkeoS5+MrX08QHXvGt
Score8/10-
Checks if the Android device is rooted.
-
Checks Android system properties for emulator presence.
-
Checks known Qemu files.
Checks for known Qemu files that exist on Android virtual device images.
-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries the phone number (MSISDN for GSM devices)
-
Acquires the wake lock
-
Queries information about active data network
-
Queries the mobile country code (MCC)
-
Checks the presence of a debugger
-