df4406005a89cb1bc3f0dbf1b4fe44ff874acaf2af25cd3534658eb97bcf5538

Analysis

max time kernel
5s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
30/06/2024, 07:14

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Minecraft Trial_1.21.1.03_modilimitado.apk
Size

343.9MB
MD5

330992161b5e85cea31c7be403bee7f1
SHA1

7d2897d10d6692208316643de5475aa928e508eb
SHA256

df4406005a89cb1bc3f0dbf1b4fe44ff874acaf2af25cd3534658eb97bcf5538
SHA512

760dbdb8aa957f18521bf9077141b331dfdaba3f40a3b34f91c21b39d27e1084ddecc9587a95ec337bfa54a49bc2606d7d400efa1bc232f8f5c483cc983d071f
SSDEEP

6291456:CdUk8qmq7yQR7DeFbZwxmIMnnpcjZUAyAy:CdUk8qm8V2dwx4pWuAyAy

Score

8^/10

discovery evasion

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/sbin/su	com.mojang.minecrafttrialpe
/system/bin/su	com.mojang.minecrafttrialpe

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.mojang.minecrafttrialpe

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.mojang.minecrafttrialpe

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.mojang.minecrafttrialpe

com.mojang.minecrafttrialpe
1⤵
- Checks if the Android device is rooted.
- Acquires the wake lock
- Queries information about active data network
- Checks CPU information
PID:4434

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.mojang.minecrafttrialpe/cache/appboy.imageloader.lru.cache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/data/com.mojang.minecrafttrialpe/databases/com.google.android.datatransport.events

Filesize
56KB

MD5
40c40f5f63f02999173517c161889f28

SHA1
dfb31ac2339b2b62ef9cf933ea17477efaaae393

SHA256
3d83e4bcc28f7e46898fb16368c9a7a1f4dc749b2650a05c359c61fc6aa42179

SHA512
8630e1509bfce964bc64853ac4b6101aaef9451d9c0496cace8703b91540e3ba49fdf2dad50400c09f44d5e790bbbf76c699a5c529918e9e397ada215810458f

Download Submit
/data/data/com.mojang.minecrafttrialpe/databases/com.google.android.datatransport.events-journal

Filesize
512B

MD5
0e246fa2a74c076fa4e15210df059856

SHA1
6a003a1f52fbaf9f0af9806fcf476642ee3dffbe

SHA256
bf4c1c3fd5dde2a1e2b05e259b19b3866efcd010b04379afa73c8357655316bd

SHA512
5dd74f15eb0e36703bd8de2c215966a0fb2e49480c7c7d85ceb0bde8f8efbb988d59629695386c55597c64c04e79773462195b81acf4ef6517d2e96ac2df07f3

Download Submit
/data/data/com.mojang.minecrafttrialpe/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
791dfc8f993e1f36c1fe0f67c96a0825

SHA1
584c7204b56d9e95f91411061962376ac12db773

SHA256
31dd50f7f39240a51ebd113b39ae45c3a781f61e39e11415a785544574153976

SHA512
97eb9cc964c6ecd381fed1ec317574d7ce8489dca20939835ff5e5053b8336aa6343191ad44e2f244173844b50d05939d329a37331dee3a0d56ed70556d6140a

Download Submit
/data/data/com.mojang.minecrafttrialpe/databases/com.google.android.datatransport.events-journal

Filesize
8KB

MD5
3c448f0d168fd819263c7082ec5b168d

SHA1
bb3684e8e3710153ae769f0573130ac7e4eebbd2

SHA256
828ef4d36df2337a8f75dee5ee57f9638e021d2e3e37f07b138e46ffb58358e7

SHA512
06d1c4c68024eba6c0cd404a9a60f0ec0c386e67adfdad56757db18ad6e36f94a3b76facf93b64bb9c877a879fedb66328cfc5a65098dd6551dbf7af84e0d108

Download Submit
/data/data/com.mojang.minecrafttrialpe/files/PersistedInstallation4162496945824369629tmp

Filesize
90B

MD5
c769111e02fcb9c2255c3d926186650d

SHA1
c3d75fa3be287bbc7b2ef12ad3997bb5bc1180d0

SHA256
9d6ee00471342ffd9f65b47fd5e8d6180cba685893bce76303209200d8c40c4e

SHA512
e6049e2f01574234dd87d49ca3d01eee78643f9de927bc099e9b142612cfe5c7fcb2c9f1aee497f2cc8763aa1304de944e8e8561b7e84a9d24e92506ac4139d6

Download Submit
/data/data/com.mojang.minecrafttrialpe/files/PersistedInstallation7407996464950998835tmp

Filesize
569B

MD5
d9e871dc76a756db3cffed00713b1c78

SHA1
cc741ae9fea0aff8849730b8d7d08c30ed706ac0

SHA256
6b9863920dcf86c9487fc94251748810e8ce84a65ed9ed6dfa0334cde124205c

SHA512
e31cef363872f1f86a8b86e31671c9219558aa963022a00acb502d06a8bbf7a8030b3fe69dbe0807e08f9e5630ea395a6a1d985fb0e83d106c9eac99ea792d45

Download Submit
/data/data/com.mojang.minecrafttrialpe/shared_prefs/com.mojang.minecrafttrialpe_preferences.xml

Filesize
140B

MD5
4fcab85c34adb576a7ba1d6f16b65a64

SHA1
6d0ef6b099ee8ddc1071a4a5fd26fd2d16660111

SHA256
caa4a407e9daf9b82fc7fc5fc7e72e38de92e87df5ac83bce7d71972aeb4d31d

SHA512
f6f02155d181ca2654597ca92021b6dd2be37e58814eecf115fe7e29ce7531ef0f10c3d2b1cec8e48b022a8355ef45a8b8e5ae04112e26cfc117c2738890110a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads