38191a2880cea788707cd818b62d3eb5afea0e6342f66fc480fdea4bff2d8e75

Analysis

max time kernel
179s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
30/06/2024, 07:42

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

TentacleLocker2.apk
Size

48.2MB
MD5

d3b4aefa9de69678470eab2e58f7d866
SHA1

12f3b345a31b10e1029c406971198ca500c0f8d3
SHA256

38191a2880cea788707cd818b62d3eb5afea0e6342f66fc480fdea4bff2d8e75
SHA512

e3e3395ec8b8c38213eb2c6bfa136337792c89e74245c8eaf4c8c9b3a5d5eb528405b920f820ad50125eb9b2546795f7a1226c97cd5bac9e8e08ad092bee6238
SSDEEP

1572864:+jVSHSiyxuZpR7Byw/yux+Z/zsfDcIzTIT+9M:+jVSyiyxkDz+Z/zUA2ET+e

Score

8^/10

evasion persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.HotPinkandAnnue.TentacleLocker2

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.HotPinkandAnnue.TentacleLocker2

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.HotPinkandAnnue.TentacleLocker2

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.HotPinkandAnnue.TentacleLocker2

com.HotPinkandAnnue.TentacleLocker2
1⤵
- Checks if the Android device is rooted.
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4258

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/171973343900000.eedef4cc/c

Filesize
1B

MD5
c4ca4238a0b923820dcc509a6f75849b

SHA1
356a192b7913b04c54574d18c28d46e6395428ab

SHA256
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

SHA512
4dff4ea340f0a823f15d3f4f01ab62eae0e5da579ccb851f8db9dfe84c58b2b37b89903a740e1ee172da793a6e79d560e5f7f9bd058a12a280433ed6fa46510a

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/171973343900000.eedef4cc/e

Filesize
556B

MD5
95486d79b74e567860ea73e6f71a730a

SHA1
98845eb03519f2c980c11c4496a7ecd6092a46fa

SHA256
f659e6b51ee2b9314d8b836ae3c3f62e7b7a1a6249ab94a96c2c315534602e8a

SHA512
501ed1de20b632b7b4013c508ff54209b4366893ccf9e6cf83e6caa0e5c21490c92ef26e3fecc809c1569ce393d7769b102cbe09021f47ab37a6b81527634d0f

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/171973343900000.eedef4cc/g

Filesize
1B

MD5
c81e728d9d4c2f636f067f89cc14862c

SHA1
da4b9237bacccdf19c0760cab7aec4a8359010b0

SHA256
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

SHA512
40b244112641dd78dd4f93b6c9190dd46e0099194d5a44257b7efad6ef9ff4683da1eda0244448cb343aa688f5d3efd7314dafe580ac0bcbf115aeca9e8dc114

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/171973343900000.eedef4cc/s

Filesize
434B

MD5
a20d822d4b3979e9067ecc429c300727

SHA1
329ba7c492a08e7ddee3b1454494494edf85d1a7

SHA256
83d24923a5b09b609c98b60c966f1e4d1dedcb012e66f46d22905b61baa84e96

SHA512
908375ea0f860fc22fb2a88ed80e535a82140596bfa5f60211a336103a801ecb77ceac86c38ef8fb5452fb6bd0cf73529d49be0d76fe1c5414416886608eb65c

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/171973343900001.eedef4cc/e

Filesize
580B

MD5
174b6a9d802ed29f2fd8d717451dd586

SHA1
745679755f71c575ed49a96c0cf884e0dd3e77c2

SHA256
6ca2bb0d00cfdf5adec9dcf6c4a90a16130184575b0051916691bc061e87e2d6

SHA512
cc6aa4e082f6055388096c481da01827b992653b1afd21f8cff8f62feb02196280d6f3373784e53ec35a5ca84972712d4e842be068993d2b91f6e4cddd4aa749

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/171973343900002.eedef4cc/e

Filesize
1KB

MD5
e7c38613513735f8b20925d27e0daf00

SHA1
c7e27061204522d6dbeee4b3baa89215ed80d0db

SHA256
05367e2a2d5ee3a3d7774f73070900d4152d0cc96da6db03e4f60bf6f52e1145

SHA512
b9d96519ff5374e6750be611d35e870b3bb97a644bbc6b9e881ea777bc544286828e93b5bf2307ca0e9d03627f3b55e1e383afdd49565c0ec811ee69f2a790da

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/171973343900002.eedef4cc/e

Filesize
1KB

MD5
218af4319cb969111fbf0743bf2ad9ef

SHA1
66a6df40971061f249cb18491777ef85e7c115d7

SHA256
84b1dcc242d15d5d9ca18fde8aeb5bc1ee6d4aa44ce8ae27fb34f26ae375ab01

SHA512
b34372f336da492d4e38884c25d01337ffa5fccc5a9f744d7b8edb9eff715b73fef14f6bc419ccaea9bbe0175c91f560228092a029a87f7ee4fe29dbfc8bc5f0

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/config

Filesize
293B

MD5
8673a8ac0b06a9d056d08d62f857ba4b

SHA1
a351bea1932270bafbe468584058fef20dcfc31e

SHA256
83b3f90c4edf1f122c8faf9784ca0aee4dd017c65493ac181c1814211703db96

SHA512
edf28eb7fcef654f139285d308f817ee230d6f064a4c865109d6dfe6f73c11f8f35737c8159c8a302118237ab980899ba5773f547cc9da4028643a53b08e324f

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/values

Filesize
135B

MD5
ed27207e52bf256cc8f9f25a1eeac8d8

SHA1
7ca173d287c1466ddeeef9bfe84ff68de793e637

SHA256
933327869caaf0ce28fc8f048668a83361c45aacfa7f164796804ac4dcfbde6d

SHA512
9c7a7bdb6baf258c29f3705d309165c93f726a69aed30214597b168dd0ddf492d0d18274bdeaf2ed56657480f7e39b13c1f88be52ad545c731bf2f9d13565b80

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads