0c50f17b9d31fd392353b737b2d2ed2f34c7340a0d80810f1bcc3b03cecc1f3e

Resubmissions

07/08/2024, 18:13

240807-wt3a3a1grj 8

07/08/2024, 18:12

240807-wtaaaavemg 1

Analysis

max time kernel
95s
max time network
148s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
07/08/2024, 18:13

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

GTA VI_8.0.5_APKPure.apk
Size

35.1MB
MD5

73fe77802256c31a8f58a000594e2ea6
SHA1

57e4d1301e42f84125b753201c4c4aec4c5ee4ad
SHA256

0c50f17b9d31fd392353b737b2d2ed2f34c7340a0d80810f1bcc3b03cecc1f3e
SHA512

2b453a14e14c357f092f25e84b9f14719959876384b2bc5d22795d3afda72b383c283fe5f6319994bcded2123e4ef7252417b08e8308264a5e67735aca283672
SSDEEP

786432:Vh2QYqrFStPDkqDACSIgH3PbXqDuZQmbL4M30TgOLTQHUSiQrU:VkUrqLknI8PbXqqvZOLk04U

Score

8^/10

collection credential_access discovery evasion impact

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.gta6.apkrate

Checks Android system properties for emulator presence. 1 TTPs 1 IoCs

evasion

System Checks

T1633.001

description	ioc	Process
Accessed system property	key: ro.hardware	com.gta6.apkrate

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.gta6.apkrate

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.gta6.apkrate

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.gta6.apkrate

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.gta6.apkrate

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.gta6.apkrate

com.gta6.apkrate
1⤵
- Checks if the Android device is rooted.
- Checks Android system properties for emulator presence.
- Obtains sensitive information copied to the device clipboard
- Queries information about active data network
- Queries the mobile country code (MCC)
- Checks CPU information
- Checks memory information
PID:4513

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.gta6.apkrate/files/UnityAdsStorage-private-data.json

Filesize
57B

MD5
6f560e56361e99c7ffaa4da5b6bbaa6d

SHA1
c8dd888cc14be2f706bbf357afb72864b6fc426c

SHA256
a6f74ba3c835796ed95fc1c9829b9b55ee212feba1fccd48a0ab79ec50914837

SHA512
21dabee12e0482f9bab0cfda5f0c5efe726065638bb52f4fa40e9baed57bba99b123d6bc8c0c3f719fa44f8ffdd1d13f292ed7ee7444581ebb90cd115a730622

Download Submit
/data/data/com.gta6.apkrate/files/UnityAdsStorage-private-data.json

Filesize
97B

MD5
4348269d49d4b4f189ef77349160db04

SHA1
c89c435b97d345370d9156ee61f6ac6c9bf375c3

SHA256
d7bfe34d6bcbe7b0e87c2c677dab72ff18c556adb946ca1fd349970d1b97f477

SHA512
463a10f2d15bdf9fd189adadf8dd591bdb5a34694da6aff9b8634140c5447b30e068e896f497f2c03d921e80392f744c45e3029206802423d019826ee61e5696

Download Submit
/data/data/com.gta6.apkrate/files/UnityAdsStorage-private-data.json

Filesize
663B

MD5
11adb8c4c25842a5bc56e8bde061b8c5

SHA1
6dce2c19d22f42f034e50543571b54a2ff282b88

SHA256
67929162920ecedcd4fe2208244030ae56734c03d7a93033800e8b0e5b770b67

SHA512
531a9de13087447d9e4c4b152dfe0d1b1c5a4c0b10523b4ff04faa5347fd03180edda4b2b3dd51e68be005e90ef392e61094f5a0e0cc1569f7b1b10e35a60b50

Download Submit
/data/data/com.gta6.apkrate/files/UnityAdsStorage-private-data.json

Filesize
1KB

MD5
d9467c04817c7241f3fb04b74b9fe4fc

SHA1
c2ca27c6d4c3f695a760f179b5ae537e30eb5373

SHA256
7fb4c742cda46d3e7b8eade4f7c5e63885766da7783f2b505807d9a8797f0e72

SHA512
66c719f6126429a37fa2e25f218c76bdb44d1c798c24fd518e36e386ec9a7ebc2317350d9bf5cddefa8e037d56da9162693e79886ca6bd5769f48b13a9389022

Download Submit
/data/data/com.gta6.apkrate/files/UnityAdsStorage-public-data.json

Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
/data/data/com.gta6.apkrate/files/UnityAdsStorage-public-data.json

Filesize
112B

MD5
e60579e81b43160819ed44297a34f161

SHA1
5c7eea5e1955b8da1ff5034dae0ac8b4aa7c7284

SHA256
c25343c1e8278f2579dab2aa50afcf3f9c2d6d66b9a312fb181bb6a5703c4912

SHA512
31a651ff40b055ae4b23b949e18f30edc9dab515893ab906669fd4f55b49fb9954394eab5ce895c620d3f00e967ef4198b8994a2887cd969f4fc8dc5bbd595b6

Download Submit
/data/data/com.gta6.apkrate/files/UnityAdsStorage-public-data.json

Filesize
217B

MD5
73731e1e040f725327bc5547947397ec

SHA1
3659e7ad14e8f5e9c2ebcdc23bfb61b6cbb90a2b

SHA256
2a85a6612c53cc748f3f4f297fa1623d9f483fc88404076c1e9deca96620b14a

SHA512
3dd8785e2875f12da0d4455b302d995c51c09790a95815c2a8d0fcf946c764b1c8e8ccd30ecb12dec70e3a06d0cc0f811bc610c56cb1771c7cace59a3713a7f8

Download Submit
/proc/4586/timerslack_ns

Filesize
8B

MD5
d46bf94e9eb1d22281a71504685082ac

SHA1
e4e0629aef7425ba63e897bc471f8625de44edd3

SHA256
2ddb67b8a8c259ffaff61a5abdd38f5b5d6f1c6e2af4344c85b17b77af2451cc

SHA512
68a1a1fd4de784e3a2e0e956d0a63ac4ca540ef90e7fd9a2ddc92cf68e52e29792db64f6615054a6e5460467f0b7abe055c899136d98ce6ebab3d580bc55ec86

Download Submit
/storage/emulated/0/Android/data/com.gta6.apkrate/cache/UnityAdsCache/UnityAdsTest.txt (deleted)

Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/storage/emulated/0/Android/data/com.gta6.apkrate/cache/UnityAdsCache/UnityAdsWebApp.html (deleted)

Filesize
2.1MB

MD5
e53a34c9123c1e47dab549bacb5b1e79

SHA1
bf6b472d77bc32e5b2dfb186649c07d618611548

SHA256
213268e5a8db9b8c5a479ca2b6480f70396b39bca57532def812d34e4a4f7eb1

SHA512
891adc900094c15610cec51db73f1227b8dd3d3cafd7853af333bf3b75b219f123a93d6a8b33f06cc6ebd23a7c55dfcd75debb72e984e13f1298292c08016df3

Download Submit
/storage/emulated/0/Android/data/com.gta6.apkrate/cache/UnityAdsCache/UnityAdsWebViewConfiguration.json (deleted)

Filesize
606B

MD5
cb608d47ebdd819856ffe5ef5951c5b9

SHA1
407c37ab59fa9f4874cf3402748c97c265920cf0

SHA256
0c515da46921c98a36954ec2363148eba1d47839f6087a2e5ee116d25444debc

SHA512
f1832c3ba42f4986910df8f4469962a5d5cc3c2b9024399cb76ec0872968c753742e948a65b2c88d1f2ef84bbcccb8ebc94640d1b0c4733971f65f61a30d3c53

Download Submit
anon_inode:[eventfd]

Filesize
8B

MD5
33cdeccccebe80329f1fdbee7f5874cb

SHA1
3da89ee273be13437e7ecf760f3fbd4dc0e8d1fe

SHA256
7c9fa136d4413fa6173637e883b6998d32e1d675f88cddff9dcbcf331820f4b8

SHA512
991294f43425a5b80f8a5907ca7cdbb611401282585a58bb415077005428e3b4c0f661fc07ba5c45f627bd8bdcb172389ce2fda461c029b837abc70f0abbea20

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads