Overview

overview

7

Static

static

6

d6a24896d2...bd.apk

android-9-x86

7

d6a24896d2...bd.apk

android-10-x64

7

d6a24896d2...bd.apk

android-11-x64

7

Analysis

  • max time kernel
    155s
  • max time network
    170s
  • platform
    android_x86
  • resource
    android-x86-arm-20240611.1-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system
  • submitted
    13-06-2024 23:57

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d6a24896d2f88df880e5d5acc89bba51046e8d4e6f574b4fbbd319771de94bbd.apk

  • Size

    3.3MB

  • MD5

    712357dc4d693d3383857b3479377371

  • SHA1

    5e76d90749e5053024632a7d5b44d231f9b5f692

  • SHA256

    d6a24896d2f88df880e5d5acc89bba51046e8d4e6f574b4fbbd319771de94bbd

  • SHA512

    c8aa49d43946d09284324202a6b92bb23fc60765e1f1af3bbe4829fe67bc222f433682b142328a0b7889077b2ee6b532d6c3454c98e41c88725f7986df837b50

  • SSDEEP

    98304:+iGSefkYKL89o6HcDGXTKN+gDbLFzpzfrypkIC:/GS6ugXTq++xLIC

Score
7/10
collectioncredential_accessevasionpersistence

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 TTPs 1 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Makes use of the framework's Accessibility service 4 TTPs 1 IoCs

    Retrieves information displayed on the phone screen using AccessibilityService.

    collectionevasioncredential_access
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
    persistence

Processes

  • com.perl.gqm
    1⤵
    • Loads dropped Dex/Jar
    • Makes use of the framework's Accessibility service
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:4300

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.perl.gqm/app_outdex/libdexprotector.4300.so
    Filesize

    369KB

    MD5

    30e9a5d0b665fb8be218a54481fc6e30

    SHA1

    d89877df5f88ca997aa6daaba23c5d9f52889f1e

    SHA256

    54b51ae2a8e34832efd4880bea116e26068fb053b49245d386b90cbbec5f4527

    SHA512

    6f558baa538224978c90e7c8fa16d12a0736c0f518c271d879d4ae417c1d92b5fb82566ab92fff9b47b07601d8a52e345f6571722f4bccc7031225f5a8020d41

    Download Submit
  • Anonymous-DexFile@0xea7e7000-0xea7e712c
    Filesize

    300B

    MD5

    7c80da100acf95df2c9629e515898a6b

    SHA1

    28c7d9a00126bc12a0760f9cc6270abea6866d73

    SHA256

    ed26ed598d0393b52cb68fd71e26f7eb5fba998f72c1c30eae4622bb0752692f

    SHA512

    b2eb8340ae3dd3ddbe2a5cf3de6b735a33bb15b51b728f01643fed02375c8962f37fcbd4827fd578cb73678847cc47c45290d763281be5caeded67fa8923c6a2

    Download Submit