2af8c0fc980f4fe0082e6731a62a7e2c60a87bb9e800048d0a4591ec33094537 | Triage

Submit
Reports

Overview

overview

8

Static

static

6

up-mod-the...00.apk

android-9-x86

8

up-mod-the...00.apk

android-10-x64

8

Sharing

General

Target

up-mod-the-battle-cats-mod-apk-13-5-0-1305000.apk
Size

162.2MB
Sample

240727-ad9vbatdkl
MD5

4ecda5d125d38ada5e579ddbdc1fe539
SHA1

53486f37641d2b5de735fa6b676689e31039ee76
SHA256

2af8c0fc980f4fe0082e6731a62a7e2c60a87bb9e800048d0a4591ec33094537
SHA512

651672088ac3598f36199a62f6c1048ac70c0561215604c3b39d9563f9e87ec49041442a9a12c5c3776d4c8528893297d09f66df19f27c69a7ac56e0b803e6e5
SSDEEP

3145728:laqx1QwVCBoOs/OnzjbXh4nzbC2OAFydL:lahwVCBoOGOzjbxIzYkyp

Score

8^/10

android collection credential_access discovery evasion execution impact persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

up-mod-the-battle-cats-mod-apk-13-5-0-1305000.apk

Resource

android-x86-arm-20240624-en

discovery evasion execution persistence

android-9-x86

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

up-mod-the-battle-cats-mod-apk-13-5-0-1305000.apk

Resource

android-x64-20240624-en

collection credential_access discovery evasion execution impact persistence

android-10-x64

13 signatures

150 seconds

Malware Config

Targets

- Target
  
  up-mod-the-battle-cats-mod-apk-13-5-0-1305000.apk
- Size
  
  162.2MB
- MD5
  
  4ecda5d125d38ada5e579ddbdc1fe539
- SHA1
  
  53486f37641d2b5de735fa6b676689e31039ee76
- SHA256
  
  2af8c0fc980f4fe0082e6731a62a7e2c60a87bb9e800048d0a4591ec33094537
- SHA512
  
  651672088ac3598f36199a62f6c1048ac70c0561215604c3b39d9563f9e87ec49041442a9a12c5c3776d4c8528893297d09f66df19f27c69a7ac56e0b803e6e5
- SSDEEP
  
  3145728:laqx1QwVCBoOs/OnzjbXh4nzbC2OAFydL:lahwVCBoOGOzjbxIzYkyp
Score

8^/10

discovery evasion execution persistence collection credential_access impact
- Checks if the Android device is rooted.
  evasion
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
- Obtains sensitive information copied to the device clipboard
  Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
  collection credential_access impact
- Queries information about running processes on the device
  Application may abuse the framework's APIs to collect information about running processes on the device.
  discovery
- Acquires the wake lock
- Queries information about active data network
  discovery
- Queries the mobile country code (MCC)
  discovery
- Checks the presence of a debugger
  evasion
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

discoveryevasionexecutionpersistence

behavioral2

collectioncredential_accessdiscoveryevasionexecutionimpactpersistence

© 2018-2024

Terms | Privacy