Analysis

  • max time kernel
    629s
  • max time network
    592s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240611.1-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611.1-enlocale:en-usos:android-11-x64system
  • submitted
    15-06-2024 05:30

General

  • Target

    PowerWarriors17.5.apk

  • Size

    149.6MB

  • MD5

    291a7439a605a26c32ff03e48add1cc7

  • SHA1

    a9d7605913e0fc0bf10d0520b7012d769e4a58a9

  • SHA256

    73923a5216e29a37f7a95702ea7b8e67a4755cbf7eaea87d8ff834eabc873ca3

  • SHA512

    bd4ce69913352eb74b265e7a0ee1ee734e09a46efe5bc4c3794d0588c55eaf833258382f9ce4d00a5a17c4a7d4b5358eb656cb4e40097fb43e31413fd163dad2

  • SSDEEP

    3145728:PAyZsFxvS6EnT7RxVfaDAjC+Ku5IWCFVIoUOu2aa0EyuPhta9Rq9:Pm3qhn5jC+X5IW6IoUJ2aa1l5g9Rq9

Malware Config

Signatures

  • Checks if the Android device is rooted. 1 TTPs 1 IoCs
  • Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

    Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

  • Queries information about active data network 1 TTPs 1 IoCs
  • Reads information about phone network operator. 1 TTPs
  • Checks CPU information 2 TTPs 1 IoCs
  • Checks memory information 2 TTPs 1 IoCs

Processes

  • com.ZombiAriel.PowerFighters
    1⤵
    • Checks if the Android device is rooted.
    • Obtains sensitive information copied to the device clipboard
    • Queries information about active data network
    • Checks CPU information
    • Checks memory information
    PID:4424

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-5719a001e3258b1a6b0750417b76b62a7027e74cca1d4c787ae6cb60c602a0d6.gif (deleted)
    Filesize

    4.7MB

    MD5

    f35994e5d85dfe75505980763abe085c

    SHA1

    9cfac4eb2bb38592a7f53477f458701f6e15187c

    SHA256

    216b35596c4ba2408b6b80204b3f117a483d781a9d7932a9aabdaaa490978d95

    SHA512

    faf8e14c3f022ae4b090f3b57a1326deabebb5cd9d25dfe56fc2af37c49443c116e4dfade7255e162c1ffe83ea2f6d9d50e0c6f5366a9080feb2d6d7b7f73a64

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-5adc70ea2fb2aed95a98c782cfd67a451675bbbb02e8bfa8f558d15072315fc1.webm (deleted)
    Filesize

    1.4MB

    MD5

    2b35e783e31005f2df8c2af33647736f

    SHA1

    d125aaef7f1c284c67dece19aed0d05bef220371

    SHA256

    f57ced88502954609ccf954a21b226bff3aa04e37ce9b106123ac1dc571008cc

    SHA512

    64b6e3aa87082c91e1e669aad65fb451e70ee637410b07785e3c0514d67c005d0c727a5df6b9e0020faa855b556ff129fd08c97bf694d171fff426921adfbe5b

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-5cf0b08f1306fbfdc0af7c8d559b010242a9493b628698671d26e40bc31dc8c2.png (deleted)
    Filesize

    28KB

    MD5

    65e1db0fc12501d2317bc0927c9f95a5

    SHA1

    f1acba9593f550b240d8a43979287891e15ac173

    SHA256

    819bb7dfa6494224b09cfa66b6042f6eeb07d2aad25f4a4faa104c698499080a

    SHA512

    6d716e4715d7d6d6962bb125866c134d814eacde2b27b7dc8c07b183975adc318d9caa8e38bab3bcafd993dd26baf19eda60dbfe2ca23499b74242a89c9aa69c

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-6234ea413c72d94514f05f6e6a6a672ec35fab505f47eaa4b69a3f3839f07428.png (deleted)
    Filesize

    37KB

    MD5

    7b4413a8b4d6681b399d70c76ff214c9

    SHA1

    c5c5208e060ed19bf83fa01f9fb00e3366ac91d9

    SHA256

    bf5d0631e1aa5ca3a98756b9975a6c19711179622d7065e6744257b7da797f2a

    SHA512

    f501e593393735a6f3a92526c2d720b8472a4ea93c1c453a0006379b7f2dbd79bc94ff46932b6551f4bf226dcafa0f26c6cd3c00851694c67885faef634ca19f

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-73b5645e1ba4a0ae40ab120b7f18ddade8a865a29a4fe716f8cc59267b082437.webm (deleted)
    Filesize

    1.6MB

    MD5

    676fb4e2bf5ed94eecfa4baa05618b0e

    SHA1

    1a3a40dc3d934eaf1f1d3a7fdca18fd1f96daac1

    SHA256

    e9848d763d68840c91045423e692c37ff1b86a6f01fa8f88b0c5aa903933d98d

    SHA512

    9ac0560be903f919bbc25b3bb078b1d282062e36884e04ed905b8f4f7baa0b43d98169cdffa44f80d922d05aab8e23b5d60fb8c1bf687226d2716dfd46323925

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-dbe8932628de774667b89d0f0715095678e83e752d188d8fff3651fcca1c10e3.png (deleted)
    Filesize

    514KB

    MD5

    75df1ac410680d749b4d8c7e7b3389b2

    SHA1

    7fdc69cb0fec4a218f096123fb1abd66d27c8635

    SHA256

    4c22ecfd5ff656a054d7c8b88866a7facdec3d297d31b30f3b4ff57e9c6c8411

    SHA512

    02a38c688438cd6fd0975784c9b2101989d56e74916b9aa3d1e68b22ea33e524af88094d6a4294c531f7da84c31614be38ea562fd932892e3c1f7bc0fe8b9c1e

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsStorage-private-data.json
    Filesize

    41B

    MD5

    16d3e6eac0e79222a9b368edac765b34

    SHA1

    48d5e621fcdd84108f5750d6905180b622715b11

    SHA256

    3a518b70256a689906d6740062462e3124aad6e55c5aa47339a87a56e4933ee7

    SHA512

    d0aaacf86100135241426e2a0e9ba44414aa456cd708124e2f9c3a8037e008870cbcb506d316e4fe7cfe1d6dc3073393989a6f3c29f7cfabd6b0f65057afe747

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsStorage-private-data.json
    Filesize

    507B

    MD5

    59f0fdee87f4799bc4bb69ee926bded1

    SHA1

    f004ce72d5e93077fc9abd00825c773ac6b1babd

    SHA256

    80b5344833fc91a018f8977bfa52017ed38040a75ea20d17156029040ac56121

    SHA512

    f04efcf7ba7e5e23f10de4fd25e0b0b78361e9c44ccc0aab4d6bb26903439d20acc400cc6bbc0b09f2e9480b517ba087db0e3449a7b4a817d96970a4828b946e

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsStorage-private-data.json
    Filesize

    608B

    MD5

    8b5324f93c0b65a3c921419e237b8b6c

    SHA1

    95364444863666b79c2e434426392aee3b460e62

    SHA256

    55a63a1df637ec29b0eab7f6eabde84c1c612514a0a6f50cf270d8d5f2deae6d

    SHA512

    49a825eb64e8d6c9d36c6680515b3f2336f09f2415d79323b7a8c312087c2d400692f7d09543cc4e55079132c05ed01a527308dfb9cdb8ee792106aafcc7d674

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsStorage-private-data.json
    Filesize

    1KB

    MD5

    29deed2f5512cc54e0f2b403d7e86866

    SHA1

    4d41957fa9fa55167bbbabd777c92728458f3bba

    SHA256

    5b15fa1da2f4c34daf1cf0801a4d656a498c79d98d86d2d52c22dab72b78f5e0

    SHA512

    c5e785a376461b6be4f65379d4a30201a4c20d6478500e2d52f906747ee3e59f3c189f3492f4aeade26f5681df576a568d1f01a9e1385d7395e07e4798a62542

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsStorage-public-data.json
    Filesize

    111B

    MD5

    cf797712c8478ef1c56d0de6dfe58f27

    SHA1

    9ede9191666037ed1cc446afc3ca55d005e3b401

    SHA256

    61f1aa32ef96ce9617c08d8d6eab0a42ca136e95fe14b61e56c2b4aca4d8f58c

    SHA512

    830ce1fcec4b803e5928504fe962282d85e8f27a359cd9f2d677a45773b68daea8f85e1c31487d1b498a8442d8581aaf10c76d8fa8bdfff345864dcf816c90bc

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsStorage-public-data.json
    Filesize

    215B

    MD5

    cfcf25c762a880c44a964fc323efe344

    SHA1

    9270f0ed9698f8043ee72f90c56d3947f60fde70

    SHA256

    8dc77ef45a162008a3f3d11b682854c38ce0b8a7f0c6d490f905f99dedad6543

    SHA512

    a6b3f186270092eb6c7425941ca91a33b908b820f3a601913ccee619c458761efdbfbff3ffe17a72494244efcee0c50f93d0dfa52ebc0be343004685a70c37b1

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsStorage-public-data.json (deleted)
    Filesize

    2B

    MD5

    99914b932bd37a50b983c5e7c90ae93b

    SHA1

    bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

    SHA256

    44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

    SHA512

    27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsTest.txt (deleted)
    Filesize

    4B

    MD5

    098f6bcd4621d373cade4e832627b4f6

    SHA1

    a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

    SHA256

    9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

    SHA512

    ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

  • /storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsWebApp.html (deleted)
    Filesize

    1.7MB

    MD5

    386e4dd33ddfe1b956dedb2c7747be73

    SHA1

    637611e9fb27fd662f906ab78874b69572b0358c

    SHA256

    ebbd77005eb38cf7f187fcc7ded9b02ccde56d1f58d01d3b7637957b94bea151

    SHA512

    5701b8fbd266732c3d197df6a5ee533b3d4622a38fdd8b364269a856daaedfcf2ecfec8934642826a3422bd985662399c27e897912914b37d4ef3e2a70a4cfdb

  • socket:[74330]
    Filesize

    55B

    MD5

    5ad7179842bc552700c732c7e611a568

    SHA1

    4b88f19662779e0e79c37f578bb2a66825362a5f

    SHA256

    f40f71cdd3b320a500fcab9b7c2c7d6ea885494c464b5774f5ba5cf05bfd2a96

    SHA512

    b7703a9f05782d83a7baa39ffbfdb2a1ef4fbe38e752f02e99390e5b6dad36ca3788eda10b4eadd8e10b531b0a0d8d4cb55e9e6a18ac6277e59ed969a1b5d015

  • socket:[74487]
    Filesize

    48B

    MD5

    b4853afb660816e4ab8d8f96aca56847

    SHA1

    0e5dd8cc58e508c1892b6d273088b68725e37e57

    SHA256

    51a6e6650c4538c86ce15f77b365caaaf64f68d2ef0d8708007bee2fccff65e2

    SHA512

    ab611393bdca649d9e14690564285289adb6fb0cd1a491038c84f655e8c479ca45ea6cd035570f5e8c87b5827001a3ad5e31f01f1f9ebb4b8bc23fd779ec1e5f