5a82e6f57808ab9735aae773e0a163a0c2d04aa7abbbc92e374687c9f9e6dc99 | Triage

Analysis

max time kernel
123s
max time network
133s
platform
android_x64
resource
android-x64-arm64-20240611.1-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system
submitted
14/06/2024, 14:25

Sharing

Report Analysis Logs

General

Target

lucky-patcher.apk
Size

20.4MB
MD5

4a18b32089b162b59571844159feab1c
SHA1

36536df4315a0896ec343a8d8a5d6bd6dbeaccda
SHA256

5a82e6f57808ab9735aae773e0a163a0c2d04aa7abbbc92e374687c9f9e6dc99
SHA512

6a8c19805cc9812bdb3b3e2d806e448efb38ef04e5f7e7d5b80530dae3339b7771257e3b6254c82bb221ae928ae12d30317398c44d555330df286a0452c8d91a
SSDEEP

393216:W9xwPxkcV0SsYCX6k8IP7HKHXvGFN0xWP9MbKSWeIh+Ea:AM1VhVz+7H6XvGFN0xWObed2

Score

6^/10

discovery impact

Malware Config

Signatures

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

Data Encrypted for Impact

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	cm.aptoide.pt

cm.aptoide.pt
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4459

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/cm.aptoide.pt/databases/androidx.work.workdb

Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/user/0/cm.aptoide.pt/databases/androidx.work.workdb-journal

Filesize
512B

MD5
db57bc39e6d77dfbb4670eb26a9890ce

SHA1
c9bd45c3e83fcccbab5f58b1994aeda1d1f28a60

SHA256
e85a25a704ea83cdee9e538b75432b2156ac4ce7ca9049ff0bc4a1aa555f3e69

SHA512
a4318e264a7af0469c844c7896f37c78ab544acc58da2a11ad784f0ea612084beb0353e400c5ff7199126216a12002579c5dbb211fb0be480f11e3d97a67f2f7

Download Submit
/data/user/0/cm.aptoide.pt/databases/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/user/0/cm.aptoide.pt/databases/androidx.work.workdb-wal

Filesize
88KB

MD5
7409f475e9916592aa8ffb63b5d9fb7d

SHA1
485f6d1417023dff8d8d88f6ca62ba716f89e8b1

SHA256
cdadcd61bf0496505077e66363ad604b5394e432892130cac7c214ff1b3f8400

SHA512
f416c57841c0f6c487f490a4151e39235e82ad12289cb7be981af51a8695d2b333f1004f9b62d0e9a3131ba5a68b49de0239845c58113f4dbad728ecf50c2dcb

Download Submit
/data/user/0/cm.aptoide.pt/databases/androidx.work.workdb-wal

Filesize
16KB

MD5
8563b6bb0bfb31681d00e82e2cd99d79

SHA1
72eb61e954aa7f9b2cf967f3abbdcb2a63d3a861

SHA256
12c7467f38596f0ee84d408e6b6b924d2fc4ad29ffd04f38333b22ce240f7abd

SHA512
e76d07b8f4ad3ef475cd0fed991c7ff9783e7a620b1bae126cf3b43ab61fb659e4b12172f6fbd55f5fd1654dfe446f80cba26146b3a43849fd5d8b7c1407661b

Download Submit
/data/user/0/cm.aptoide.pt/databases/aptoide.db-journal

Filesize
512B

MD5
f698a6e06f42ad01054c27bdd4284477

SHA1
a3b3903f54743f2ce6bf35e14beec8f774cc611e

SHA256
cbff047e6355a62b25b801ac531009d573c88f66c25f077f99430ca017b5475f

SHA512
cce179011450867451ac3881076fa85e1273424f6f6630c5b629138eec163030180213b8a995597a018f5eaec09c3535a2e983490454faa1a93884b3f2f3e4e7

Download Submit
/data/user/0/cm.aptoide.pt/databases/aptoide.db-wal

Filesize
136KB

MD5
0dbd50f26d7eb0679bbe3c2cc153a8a3

SHA1
bf34d522d3733b1c7e36a4f4853079125d012032

SHA256
f9dfab0d601b01504d63016da28f27e89874238971a9e5c2851637db5e1e5c4a

SHA512
bdd817f93e5b4714e2db14fc18fdb3905418920169336859339316b7d7af6e332f3abbe39c486e5ac817dd5c2ae313b46547378fcfdf93db424ddca3dbe7830d

Download Submit
/data/user/0/cm.aptoide.pt/databases/aptoide.db-wal

Filesize
16KB

MD5
e936dd648a9a3ba37a6e17a88fe00512

SHA1
d5abfa10a1682a94c4593228b7bf29ef96b20e79

SHA256
7fd1797600e2670bc1140b7b79508b9c445c8fc0ad0373e3d4cfc32efd5abb36

SHA512
4c0b85bc144700826ad8aa974a9e4328ad5c492518b0c06fefdcf53e2e80307c1b32929cb30b024d1fb7b67069f6258c1ea68dfa6cd614df9fe88da5b5974166

Download Submit
/data/user/0/cm.aptoide.pt/files/.fstreaming/fInProgress/currentFile

Filesize
2KB

MD5
2211b2b9e62cf809ed0db8a5a4308067

SHA1
2472f589180f2cc18463c296d0c22abc0affbe8a

SHA256
0aa488df8a6ed7e97626a3235f027f82e877219cb5bfaa1b79ec021b79c51e6f

SHA512
b94f3f5f25da0fafb2625b2491fe37269aa467244154dd82faa11f69504397af1c9e155b89faec3568751253453a690e1fe3baa87a6874379a28336c526209b1

Download Submit
/data/user/0/cm.aptoide.pt/no_backup/.flurryNoBackup/installationNum

Filesize
100B

MD5
065b72304017d2e4b980398ee731e8ad

SHA1
ee3b4ab2bb02dc6cfa6dcde7abef9b7bf6b8a09f

SHA256
8398b77e3b535e5f4b54c30ec623d9b8b5c6d2f8b29509f9a5f844c68fdc5273

SHA512
0e9fad607226ac6cf62aa0099fa9be1d91dabbde75150cee6233664350b071169fcce8fef60327753c2a601867b44bed5630fe595d33b3783d3dcb74e836adde

Download Submit