Analysis

  • max time kernel
    4s
  • max time network
    131s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240611.1-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system
  • submitted
    14-06-2024 00:26

General

  • Target

    28d0e20e586cc9eb9b1e997c255341ca4cec3ec5b723053bb81f21d5c53fdb90.apk

  • Size

    3.1MB

  • MD5

    0ad31d38c41ee0164a168bb345e1308a

  • SHA1

    89c3e12d87055d2cd961583613f98a0bf0ef4192

  • SHA256

    28d0e20e586cc9eb9b1e997c255341ca4cec3ec5b723053bb81f21d5c53fdb90

  • SHA512

    ecede83c49dc8285df9987b1924e24c00a3b57c4e8682e2d3481ac3f29605d17f7e5ea3ce42b1f3f0d8a08a1c333535c573a7f106d65f49c46734a6e297ef818

  • SSDEEP

    49152:fusZDi+sAeSbx2rlhDnhtC0+h6olPtesLNbyIG83GFgyMvE9N5HD:Zde6xulhjhtXNolPte8cgvE9N5HD

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 TTPs 6 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • output.stair.ratio
    1⤵
    • Loads dropped Dex/Jar
    PID:4646

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/output.stair.ratio/.jiagu/libjiaguv2.so
    Filesize

    277KB

    MD5

    ac7c38994ccae5da411d9dfac19be51b

    SHA1

    3b30612a7f9f3bcc65dbf0445ee91f25e55392a9

    SHA256

    d242f9fd458c1da022e2bd8b967f167e5e35c460cd27d035aadf55bfa83c6738

    SHA512

    08a10496349960ea7403f698e7e451291d362bc7e2b1a8eb8348745d947500af732af8d87a96f0884b668272e3eedb7f84e6d01081114fbbd46d0357fc12c9fb

  • /data/user/0/output.stair.ratio/[email protected]
    Filesize

    741KB

    MD5

    47cd3af13c36ceddde70024cdd2dd471

    SHA1

    a99455ca2048ff27e7dee270ecdd939728bd7d12

    SHA256

    764c4077f4768ced454ceefd47182e5586746a2d9b4a442deb8b4fb8eda15a4e

    SHA512

    aa0d4297d08af986a7228ea739fadcbdf298599863553c1301313ef9b12cc31d17619941bccde18eb9a7e4e2a6f2796c4e211a0a8ffcf439bd66d1172537a77c

  • /data/user/0/output.stair.ratio/[email protected]!classes2.dex
    Filesize

    754KB

    MD5

    cb3364a4e44668eba46cb4256b8785fa

    SHA1

    2e181b1fc628ace48f3f1e896d2a46f73ca49bf6

    SHA256

    6afde59b7dd816cef53fae5aba6882832369a48843b6c50d9c02593ad690ba55

    SHA512

    a3ff011a41c28b1b56a4e21e74da82ed249aa181d0b8aa9f0d9b21b16a10ea80b9bb803102be1511fae75fc46c7966364996d6f27f5cae5f085dfe575cc14662

  • /data/user/0/output.stair.ratio/[email protected]!classes3.dex
    Filesize

    661KB

    MD5

    7eebad851f44d11f2bb326232cb219aa

    SHA1

    1aa6e17464be5cc738017d74cbedc2bce3209bd2

    SHA256

    c2829ecf91d58b36670a7b1d73618fca9ea0c90be8929e7c917892f3226bf2df

    SHA512

    0801a84ab31adefb18f32b1292e326f2bcc6fd4bb0d80309e1c545f4e020bde0ef6bc07207911cfef13b297b462d5c67fa04d63424d0f18170beeb12db76312b

  • /data/user/0/output.stair.ratio/oat/x86_64/[email protected]
    Filesize

    424B

    MD5

    1b8dba5255b8b825fa64f9c55bca1fd3

    SHA1

    b259b63e912b51da95c2b82160dee6af108d9859

    SHA256

    b0f36ae14c513f6082d45c1a01e85dcefaa4606c054874e5943aa6c94190dbd8

    SHA512

    03025b41bb1b44ffead8127ba2b1a17164637c84b03beb9d0188bbea2476f655563a0269a2aa56e636ee688f171e1483e239af9c89745e88bbec02af25b605c2