12039dfd4858226ffc65fbadb5d6808c8c31e124768a88c12600a1e4b9f41cf4

Analysis

max time kernel
2s
max time network
136s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
07/08/2024, 20:02

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

Delta v2.635 32bit & 64bit Crash Fixed.apk
Size

168.8MB
MD5

79293c3fa15ae174733897a8458bb567
SHA1

a20a9dc123c7425a234a199fe0908fc0f043e6ad
SHA256

12039dfd4858226ffc65fbadb5d6808c8c31e124768a88c12600a1e4b9f41cf4
SHA512

5c7578b0e57060e81d41fb525a48d0dfec7ee2cdc79e85d9afed03437bd583d7d25dec791e72bdb66b35142f32b57e649afa9f58485836efa27d6ec334f21dfd
SSDEEP

3145728:SzZ/mTBc0pw6yLFtlBoUSyjui8WItUfqmmYoibsdhz23EfHN8/QQs3uVP0CmH:SzeT3yLHlBoUTWWsUfqmmGYzmE9Q3V9g

Score

7^/10

evasion

Malware Config

Signatures

Checks Android system properties for emulator presence. 1 TTPs 1 IoCs

evasion

System Checks

T1633.001

description	ioc	Process
Accessed system property	key: ro.bootmode	com.roblox.client

Checks Qemu related system properties. 1 TTPs 3 IoCs

Checks for Android system properties related to Qemu for Emulator detection.

evasion

System Checks

T1633.001

description	ioc	Process
Accessed system property	key: ro.kernel.android.qemud	com.roblox.client
Accessed system property	key: qemu.sf.fake_camera	com.roblox.client
Accessed system property	key: qemu.logcat	com.roblox.client

com.roblox.client
1⤵
- Checks Android system properties for emulator presence.
- Checks Qemu related system properties.
PID:4224

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads