df21b141bc179b05333ade542520eacbc4d901c8299764d8a3d4680bed1707ef

Resubmissions

12/08/2024, 13:01

240812-p87e1awdmg 8

12/08/2024, 12:53

240812-p413es1hpr 8

Analysis

max time kernel
201s
max time network
278s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
12/08/2024, 12:53

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

FiveNightsAtFreddys2.apk
Size

29.9MB
MD5

d221ed79de677791cbce46503254e864
SHA1

a0e603ee7649bba70b8dba0044e26b23ef7540a6
SHA256

df21b141bc179b05333ade542520eacbc4d901c8299764d8a3d4680bed1707ef
SHA512

025e1e718f12ed759e744c338412af92a9c58617374f0deddc00f6925416f5683dae3506be853237e0d3879a5c851f88937287bd76bf5b587f2af84816f4e089
SSDEEP

786432:fIpjX6QKFJ375OZdq/Ymdfe+6MkmhCepPHkjq2kLb/:0jX6LJ375OvzmF6M9hRhHh2Kb/

Score

8^/10

discovery evasion persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.elite.obey

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.elite.obey

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.elite.obey

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.elite.obey

com.elite.obey
1⤵
- Checks if the Android device is rooted.
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks memory information
PID:4245
- /system/bin/getprop debug.mapview.logs
  2⤵
  PID:4306
- /system/bin/getprop debug.mapview.renderer
  2⤵
  PID:4356
- /system/bin/getprop debug.mapview.gmmserver
  2⤵
  PID:4380
- /system/bin/getprop debug.mapview.renderer.label
  2⤵
  PID:4404

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.elite.obey/files/DATA_disk_creation_time_its

Filesize
8B

MD5
8591e5050a3b22618af28c2a2b40fc12

SHA1
b837a8ae0918029462d14abdf191a01029b59a35

SHA256
ac3ef4a2295c40e669d93b4df24890b15f3c43da8ca8c11797c52819a5ae7f29

SHA512
e152f77e10239e895eb28c647c6ecd98ac39345dd6a34a4f5720d26b5cea9c8d5a70824ea6b5ccb42495fab2a29d7ef900c1883478055db87aeeb72634256201

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_its

Filesize
8B

MD5
34cdd239b2424e4826e1b0c5246d9990

SHA1
40e85c8cf2d946268ca466930f28b6f07b4392c7

SHA256
27843722fbc8a42495221e2a54dd9ff1754d53a9a19fc15d4b824cbc13607cc2

SHA512
bba673eee9a7d1ef373330add7fd4ff51c149b091340d5cecee24b166b835d83a1e14ac943f02947284735631641a0ce6067ade4da0dacd047439b4b1ca52d96

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_its_ter

Filesize
8B

MD5
0e5543f757d829153f760af2f92b2d79

SHA1
d02c6419328712c7e1f08749f51f2fb8747e5d0b

SHA256
5b21ac1118f7ee307e72dcd2471c86ba995b1680ce5c3275f576172ca74f6e46

SHA512
f04c4404c798fa6eb61a14a5bc5d66f84cbac491eaa93058fe062e266ded22e9d788a40bf36735927c1b6afd613b9e92b1944888e044fa108ffe76961c469546

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_its_ter

Filesize
8B

MD5
f600ce7f7d88714173f13f05b55b46af

SHA1
af11ca823054e19f7a6352fa85fadef2af71f90c

SHA256
4147f330f3c81af2b854f26fd299b5bc8d13ecc0e0d24297d3edc66a659e322b

SHA512
2314becd8dfbeff2d69fcc5e6b2dd8751e5d9ab60faf8a4a5298ebfc2e5c06865cd97f180f4069418b24351d68e957729a9d15671fef3923baafcb16082d4cb8

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_com.elite.obey_default

Filesize
8B

MD5
acf23c6f8918dd92ec0b1842f5b7769d

SHA1
ea807c15f5207d1052d00219cb99b1d1fd2e686d

SHA256
d359afa73219e0dd3dcd788acc97bb9791898b8c82efd9cf0084c01b7ddc0b3f

SHA512
2152029242c739e5c7599377def8f8d50cda8ba673a2aeda48fd3bf6d66b2163331e446dc8a95640589fafd29d191cbfda898d0537ba2a25f32d26e7408ec02a

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_com.elite.obey_default

Filesize
8B

MD5
ed201a1dcdbb6ecd211a8b1493ad33a8

SHA1
1443b666260ab257816eca23f0809806d5e2bdc4

SHA256
d50ad6c01b87bf52f6b1d7f98ba13f687660689546dfc55236111203256e19c8

SHA512
f0aa6289c3b10cffcf03a71ae6fe4ae4ff1e735c2e30eda6fa1d2842e5c7407fbaf2a9f3cdf125b43c8dadabd2873f6373450ad336af11f24826302e4fa88787

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_inaka_com.elite.obey_default

Filesize
8B

MD5
6a79e93a4de494b5dcc88d714742f024

SHA1
bfbdc8fed0538bf2ce5778cab6e1bb45c29e364a

SHA256
d02d13e2cd2d0a14628ab455ef0daaa88f76f0f03394a2cb3981977e67d03a6a

SHA512
6693a6ad005a8a1e3243eb667995694020b98b36fee94b7d77b9923c3281efd6767ae6566e96ceb3a61138ff18503d0699f0b8b46c47ce0ca22bb95e2875b7d8

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_inaka_com.elite.obey_default

Filesize
8B

MD5
83a0af84f4019b5e12c7c9d1531b9fd5

SHA1
ccb36f66d11967c3bfa814a3506e1fcc71e6110b

SHA256
4efd826d0787e44e9eaa3a51ac12f6aa718dd4d42a679cea9a4f432a90b3e963

SHA512
929d0eb462877f25893faa66a7f83793bf650e7f7e78aa06bdfc8dc8d515284ab3fcfdf30763873d3f24b6c67a9d3b749b425d23d6f9f741b07996a69a44a081

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_labl_com.elite.obey_default

Filesize
8B

MD5
413b392071cddb41e151489d3283bc09

SHA1
4dc093c59b74dd7768c50827956149524814fad1

SHA256
5a86a7e1494ab9247607fc6ad8bf2e66121b33232d2a79210feb2a4855664c99

SHA512
d09f1782779f0739de7007535e006ffa581cb9cffe22d719b1a1265806314cab18b78f76e534b2da16ba6bc62c2c878beee41b4f776bde1aa93c48fbe35bea81

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_labl_com.elite.obey_default

Filesize
8B

MD5
e5e984c54627bc8ba80fbdc00f7c4fb4

SHA1
fac1e75435e7f251ed06b31af2483e47846e5cb5

SHA256
f6e4a51597416f9e01757f876799e62050bfecf15d883b1685adf87e6d234dba

SHA512
e2d89d6159608d5d603abb49c90603fb30d725924f623bc16654a53848cf829b71daf745124b755f5f25dd7fa12af6f8268f10553d4fa4c11ca05b2940dba9a6

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_no_pois_com.elite.obey_default

Filesize
8B

MD5
858bc2ab1b8fa3c4068c7cb1a088a572

SHA1
50b7b4e6ca13b85295664248fb1a3f43752eeff9

SHA256
14277e650897c22f37792448d6546a151d501cf92260b539ab2125cc756a117e

SHA512
bd6fc5d09e9fbf0e580ff9a5b83e6a14d4caccf4a831b441470051d30dd3f208ed414c4c97d4551e908d42f59e5994d837fd31cd62e09e7bf5748f5e4b18564e

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_no_pois_com.elite.obey_default

Filesize
8B

MD5
f1583876db8193d7354d4506429fb5fc

SHA1
74d50b382d54eaaf50aa590d6b6076b80a105418

SHA256
dfc2b06bc4464d3c94d4186e3466c4a27073e1696d74ddb95e3d8b7e187c3c86

SHA512
2ea43db1bbe3f9a2e2662aba25a3d8bbb8d7b5aa14c962f0aaa9aa0855a993dba68960f53b0d35ae046c8beb42593651173786e77e943cb501a312fec162964f

Download Submit
/data/data/com.elite.obey/files/com.google.android.gms.maps._m_u

Filesize
4B

MD5
c9f17e0904973e18d885fceaf9d08c37

SHA1
e85b3d9d46537350c400081c45510c62d705b862

SHA256
e300f9826b86d940f2907962161c378e3862ec6b3495d3cdcf79b37ef7975be7

SHA512
d0ec89895544310c2e176550d4c5cedb611a359116580895e658870c226aea947413ac97655a34515429fc716bf83c0e456935f2b1f24c0bfc43c23e0d05f1ed

Download Submit
/data/data/com.elite.obey/files/mmf-res-2131361792

Filesize
14.9MB

MD5
efc643109a41a6b0ea8d80037e98c997

SHA1
8a61830baec02d7e7f61cf611ce8f52fe5050e6d

SHA256
deb7305a950a07fda13a4e35f40ae4d01a9fb99113a178d4a3156407f096cc34

SHA512
22e3c7d1b8538174415310f04fc3273f516c93bcb171b9d9afdb85a0a19eb0d80e4d45ae0ddd6791162e78f31f5d24523ebd59ccbfa7c344127e9277bb66e919

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_bd.m

Filesize
26KB

MD5
43967d7bd71c9c9465a5f4e517c665e6

SHA1
2ffef388a89ef1b7af87a35f69ab62d5abc7a4cd

SHA256
f9b0469a9b356a126fd2cc011eff98690375829ede67c202a46e62dcc7fa6c8d

SHA512
9e0c64aa4e0e750a3538dcda02755ff78341f7ac633055aa525feb8a18712f3a4fb0d0758543f5d56f6051d631935d68cdc92d16983510213d452182f4a09235

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_bd.m

Filesize
26KB

MD5
48ddab725978154a7d5ad587bac598b6

SHA1
acec8f444b4bf1dacc2bad6a458afa7b38bf9969

SHA256
90ad70126f51b3f0637621826f154d4bab4fa21238b731fe232c243904f1e015

SHA512
c2a2675f9ad251166f4ad3ccd39fb3e657ffa6de8015be1ace8618f1054c346dda01bebf3451818959cbc3aed13c4b6016e17e5ce6ec42c0ceb63231cc736691

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_its.m

Filesize
22KB

MD5
09370ad455dd072c66e722f251180294

SHA1
7b7a5ec6fdaec4c3ec96d28077aa4b026f79d8b3

SHA256
f07ae2aa19e5bad919c9a62cc98471b1241dbe6bdc97215a99ac489056a03323

SHA512
b172c9e43453cd4a4153bdc18ef444e656291ddca25c6131886621b9a76ff93871f359e30e57c1d085f61d81c60b7b38f80e8427694a6c908c4656e2f8c7a767

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_its.m

Filesize
22KB

MD5
9cbf138cad82cb7c68fa7492575b6a21

SHA1
fde07c6b628f2d664ad9cafeebed503daf6a07cf

SHA256
0750875b5b06a380d5b823bbad96b5d171c30a675fd5a103b7d4535b9f4d3b37

SHA512
5e48a240fb81b1305ad93b60d789b5727051471006694e0c0303bafdcb578624dd78dcac9b11a633774178825186ac036c8c5bfc8eb6a6702e53ed9e63ed1206

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_its_ter.m

Filesize
22KB

MD5
3b595c13297714d9fa7d4168c13499a9

SHA1
3475ff3213ca53126934d7b29d1b3e36dd9d5bae

SHA256
0ac8e109aa88eb2896e2d74a71ffc4b6556529cdf685d0b575090825a72e9c42

SHA512
4ac563e7dbe321676e880bd93b0eaa1bfd335f3c3d0631987705a6eb96511e01025e8291a78eefeb4398ab013517f195466111cc98c4edbdb1612be237695826

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_its_ter.m

Filesize
22KB

MD5
b7fb7e913c51c113cce647502c28b363

SHA1
58c77ae52f1f32b173716fd5e7e09b5e200919fc

SHA256
6d45328e7ee59ee92794d7b867f0de662a41aa32886f8f5cbd567c168d012355

SHA512
c2498e3d296f1840cd9a12ee4e4939c38cdba4f90f3ce477b17d9e9919fdaa1a25ef707f9cfc6919a5aa7c49a7ca2d597fb9975c24e422077c46aa501490c9eb

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_r.m

Filesize
20KB

MD5
c358aee980149bc6a3dd7a445760cd70

SHA1
fa27b4530dc44c0daddf691391609612581eb5e7

SHA256
df51eb5056b4dfbb620cbbcab1bca5cf73547f80d269f45938b85a198bd2e9a7

SHA512
42e9038c7635657182ce4f47697aac0a9f1b79262c29133aa5c592d1fb228bd712c52c535ec1313ec4643f906a6524ebf9af5332576e952617cb0dc727d9ebd9

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_com.elite.obey_default.m

Filesize
27KB

MD5
e80ad7f238a169a86e00d34a5e64c70f

SHA1
8a1aa4a25abeab9050f86f4c30d03b108d0be940

SHA256
cff8a1e84afd6fbe6481d2f1b5921ab2ff873c07bd986830d3c120116c620bba

SHA512
1ba387c7e2255db778bcaab2ed468c4d01e30a24b3529e715e0dd4d574bfa978e02d4a6c8c1aee560f0aefab5bd3fb3ed3e1b233389a6453d91e6624ceba2742

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_com.elite.obey_default.m

Filesize
27KB

MD5
64bac4c942cd27881ee0cad9d151053b

SHA1
805dbfb81185f92e75944820cae31830421f0b0f

SHA256
4c922dae09e7c9ea8659d55927a4e2898e69ae82b950bc4c583de4108594a560

SHA512
bd2ef32ae4a7252bc903e02dfa4d074491d415140c68edbaada79b109e16f31354dd49665231c48046c9a79c50e46d9541ce5f88aba58096ac34899d7c727709

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_inaka_com.elite.obey_default.m

Filesize
27KB

MD5
e1d0113da056f48d8292d14f1b728658

SHA1
d3603ae25a3f315d13148405a102a78cd431c6f9

SHA256
d675f738a94140bef362a7468f138e4e70873b575d462f6095ba06122aa70869

SHA512
34bb3e23345060366c8d4d18187e314df624bba9c04eeba89e57f264d09298f58e4b3c11112dfeda64ec4c79225b05feb3359600783da58efd44428324123c06

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_inaka_com.elite.obey_default.m

Filesize
27KB

MD5
f7e2001b0978ec146dcb373de13f261c

SHA1
13596752cdf681905c9b15ff2228275e8dda41f8

SHA256
749951390e854df47a63974cf607da7206a5becc59b2d3ebd613cd001354a412

SHA512
eae15222ac1901fde6a21d8f708b01c901355b063ae2fd3115dd5c76d0c02d5d65a6591dde3852fc7f5cafd5da5c4656914c0f24888d96c4d6defba5ea490b4a

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_labl_com.elite.obey_default.m

Filesize
27KB

MD5
0372087a9f38a16db24bde4e7fd80253

SHA1
71ea6e5772b2ac9359117d0f9ad50e1a4e3d9e4f

SHA256
97075374c522aa7989ee5f23b140883086bc50a1c205eebb48deebfa992ad9c1

SHA512
ca19b3ae9ae4a575c49b268556101bc0075cf94a498685df4e7e006e08cd1019846cba7afb2bb8a1fa789305d20a9e52bb4ea0b5dd372d25eddc1925710df96f

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_labl_com.elite.obey_default.m

Filesize
27KB

MD5
85c178e0ea99994124d5683a8d2290c3

SHA1
77545dfb7210f343be4fcdc5d8897d17249f00b8

SHA256
99704f177fe173967abddde40997e46357bae03114843a7fed83ba66a3096bbd

SHA512
9b3afcadc5444d70a95691408b23273b0cab7570ae01d482874d97bb5214ff15430a63ccf05a3d3f7a314455e7b705c7b7ddf689188defd20c12afe98de048a9

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_no_pois_com.elite.obey_default.m

Filesize
27KB

MD5
9702d2d71c067426ef4919b49ddff38d

SHA1
720bbc00e0d214200448e1f7adae8163a23ee4a3

SHA256
5f4a16d686f968d4c0ac8031a05b3e8b9d281606c2965ca53702b3f17c207a77

SHA512
6429fee70ee3f8b20515b161b699e3e560a42d207733ce8445359aeff1f653c266d69c8c0b57939a710b830b23f98287097f84258e9589db183ef01513fcdcb3

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_no_pois_com.elite.obey_default.m

Filesize
27KB

MD5
684be56a0a0d000a87266cadf4783051

SHA1
4b44cca4303868893b8db0c1649e6cb1d98909b2

SHA256
44e2730a6b0f2c179793993a53575da01896fccf4a3a212848941cc1434ac566

SHA512
aed1f905f9f166b11198b1382bb378ba10cb8f3174358f1f7429ea98e789534f0c1f74372d26b7dd5f1d6ec7ddb8c3ee0965ab35079f36d3a7b7df4199c557c4

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads