26734ded8e304729b4f43c8d9f2bd7274166aa1dfa3c09b7eeab87096ce2451b

Analysis

max time kernel
2s
max time network
128s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
07-08-2024 23:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Delta-2.636.626.apk
Size

172.3MB
MD5

b8b14d9c2321f4e1597386c4f7b43fe5
SHA1

9b7edc004109983b462dbadf973a0320d958c32f
SHA256

26734ded8e304729b4f43c8d9f2bd7274166aa1dfa3c09b7eeab87096ce2451b
SHA512

52ade0cf8e025eb446c85493c76b5c1600dd04d4e08c493d4a7ef3011d722006ea02d04416d00d98721a2b80a85c0236205ac5ac86f702124d4a9225e06df02b
SSDEEP

3145728:PjrqjDIzQAxkbedCBgByAs3es8MPrbqqkLwQgClAsHF9fV753ni2yutY6VkKs:Pjg6QAxkbeABgBBC8wqqkUQgClAabVlG

Score

7^/10

discovery evasion

Malware Config

Signatures

Checks Android system properties for emulator presence. 1 TTPs 2 IoCs

evasion

System Checks

T1633.001

description	ioc	Process
Accessed system property	key: ro.bootmode	com.roblox.client
Accessed system property	key: ro.bootloader	com.roblox.client

Checks Qemu related system properties. 1 TTPs 3 IoCs

Checks for Android system properties related to Qemu for Emulator detection.

evasion

System Checks

T1633.001

description	ioc	Process
Accessed system property	key: ro.kernel.qemu.vsync	com.roblox.client
Accessed system property	key: vendor.qemu.dev.bootcomplete	com.roblox.client
Accessed system property	key: ro.kernel.android.qemud	com.roblox.client

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.roblox.client
1⤵
- Checks Android system properties for emulator presence.
- Checks Qemu related system properties.
PID:4241

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads