Analysis
-
max time kernel
4s -
max time network
131s -
platform
android_x64 -
resource
android-x64-arm64-20240611.1-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system -
submitted
14-06-2024 00:26
Behavioral task
behavioral1
Sample
28d0e20e586cc9eb9b1e997c255341ca4cec3ec5b723053bb81f21d5c53fdb90.apk
Resource
android-x64-arm64-20240611.1-en
General
-
Target
28d0e20e586cc9eb9b1e997c255341ca4cec3ec5b723053bb81f21d5c53fdb90.apk
-
Size
3.1MB
-
MD5
0ad31d38c41ee0164a168bb345e1308a
-
SHA1
89c3e12d87055d2cd961583613f98a0bf0ef4192
-
SHA256
28d0e20e586cc9eb9b1e997c255341ca4cec3ec5b723053bb81f21d5c53fdb90
-
SHA512
ecede83c49dc8285df9987b1924e24c00a3b57c4e8682e2d3481ac3f29605d17f7e5ea3ce42b1f3f0d8a08a1c333535c573a7f106d65f49c46734a6e297ef818
-
SSDEEP
49152:fusZDi+sAeSbx2rlhDnhtC0+h6olPtesLNbyIG83GFgyMvE9N5HD:Zde6xulhjhtXNolPte8cgvE9N5HD
Malware Config
Signatures
-
Loads dropped Dex/Jar 1 TTPs 6 IoCs
Runs executable file dropped to the device during analysis.
Processes:
output.stair.ratioioc pid process /data/user/0/output.stair.ratio/[email protected] 4646 output.stair.ratio /data/user/0/output.stair.ratio/[email protected]!classes2.dex 4646 output.stair.ratio /data/user/0/output.stair.ratio/[email protected]!classes3.dex 4646 output.stair.ratio /data/user/0/output.stair.ratio/[email protected] 4646 output.stair.ratio /data/user/0/output.stair.ratio/[email protected] 4646 output.stair.ratio /data/user/0/output.stair.ratio/[email protected] 4646 output.stair.ratio
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/user/0/output.stair.ratio/.jiagu/libjiaguv2.soFilesize
277KB
MD5ac7c38994ccae5da411d9dfac19be51b
SHA13b30612a7f9f3bcc65dbf0445ee91f25e55392a9
SHA256d242f9fd458c1da022e2bd8b967f167e5e35c460cd27d035aadf55bfa83c6738
SHA51208a10496349960ea7403f698e7e451291d362bc7e2b1a8eb8348745d947500af732af8d87a96f0884b668272e3eedb7f84e6d01081114fbbd46d0357fc12c9fb
-
/data/user/0/output.stair.ratio/[email protected]Filesize
741KB
MD547cd3af13c36ceddde70024cdd2dd471
SHA1a99455ca2048ff27e7dee270ecdd939728bd7d12
SHA256764c4077f4768ced454ceefd47182e5586746a2d9b4a442deb8b4fb8eda15a4e
SHA512aa0d4297d08af986a7228ea739fadcbdf298599863553c1301313ef9b12cc31d17619941bccde18eb9a7e4e2a6f2796c4e211a0a8ffcf439bd66d1172537a77c
-
/data/user/0/output.stair.ratio/[email protected]!classes2.dexFilesize
754KB
MD5cb3364a4e44668eba46cb4256b8785fa
SHA12e181b1fc628ace48f3f1e896d2a46f73ca49bf6
SHA2566afde59b7dd816cef53fae5aba6882832369a48843b6c50d9c02593ad690ba55
SHA512a3ff011a41c28b1b56a4e21e74da82ed249aa181d0b8aa9f0d9b21b16a10ea80b9bb803102be1511fae75fc46c7966364996d6f27f5cae5f085dfe575cc14662
-
/data/user/0/output.stair.ratio/[email protected]!classes3.dexFilesize
661KB
MD57eebad851f44d11f2bb326232cb219aa
SHA11aa6e17464be5cc738017d74cbedc2bce3209bd2
SHA256c2829ecf91d58b36670a7b1d73618fca9ea0c90be8929e7c917892f3226bf2df
SHA5120801a84ab31adefb18f32b1292e326f2bcc6fd4bb0d80309e1c545f4e020bde0ef6bc07207911cfef13b297b462d5c67fa04d63424d0f18170beeb12db76312b
-
/data/user/0/output.stair.ratio/oat/x86_64/[email protected]Filesize
424B
MD51b8dba5255b8b825fa64f9c55bca1fd3
SHA1b259b63e912b51da95c2b82160dee6af108d9859
SHA256b0f36ae14c513f6082d45c1a01e85dcefaa4606c054874e5943aa6c94190dbd8
SHA51203025b41bb1b44ffead8127ba2b1a17164637c84b03beb9d0188bbea2476f655563a0269a2aa56e636ee688f171e1483e239af9c89745e88bbec02af25b605c2