df21b141bc179b05333ade542520eacbc4d901c8299764d8a3d4680bed1707ef

Resubmissions

12/08/2024, 13:01

240812-p87e1awdmg 8

12/08/2024, 12:53

240812-p413es1hpr 8

Analysis

max time kernel
19s
max time network
47s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
12/08/2024, 13:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

FiveNightsAtFreddys2.apk
Size

29.9MB
MD5

d221ed79de677791cbce46503254e864
SHA1

a0e603ee7649bba70b8dba0044e26b23ef7540a6
SHA256

df21b141bc179b05333ade542520eacbc4d901c8299764d8a3d4680bed1707ef
SHA512

025e1e718f12ed759e744c338412af92a9c58617374f0deddc00f6925416f5683dae3506be853237e0d3879a5c851f88937287bd76bf5b587f2af84816f4e089
SSDEEP

786432:fIpjX6QKFJ375OZdq/Ymdfe+6MkmhCepPHkjq2kLb/:0jX6LJ375OvzmF6M9hRhHh2Kb/

Score

8^/10

discovery evasion persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.elite.obey

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.elite.obey

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.elite.obey

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.elite.obey

com.elite.obey
1⤵
- Checks if the Android device is rooted.
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks memory information
PID:5052

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.elite.obey/files/DATA_disk_creation_time_its

Filesize
8B

MD5
5803a0db918fdf01c8acfc00ffd3682d

SHA1
3273f10b93de986c48dd0225b226c35cc3fc096b

SHA256
4badf94d10850180ccfb3d766880793e5e4c29cca11c389e54877f01d37d0f65

SHA512
aa871d4e8ecd9666fc55190c6a32e69216604e2def18bf26c08c0bd4b83b40aeae990eec2a7845d8a8b40b17453bf233bbf477229a140c6e7f66602c23c515e1

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_its

Filesize
8B

MD5
e4261d19dab65b24088a4a08f8b9b2bc

SHA1
dff6773a7fc8085f06b2ae190da5bbf1f562e582

SHA256
a19f8549f851b66773740c1880002d858131899a1a35e74a9b0966a76523e375

SHA512
d3479c5de2349fcfe253d50de6d52a1233925053aadd6e9a510a18a51a39c836d805110220e6d4ec3a2507f952d9f0f3e04c912b929791dac76262e64976fbeb

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_its_ter

Filesize
8B

MD5
08166d5189b031e95b66355b88efd96d

SHA1
2248512014d513a6fb08a0d6f37059405d761d76

SHA256
5327fdccd38796b72351d00af33aaa8a87c79bf2bc3bce5d233334616c5a1edc

SHA512
c3ca8173875f631207ce25cc45aa59dc1f1c81f9f1591dc425f4a8b150ce949357aa8ebb0154b53b99c2417ebecb810e479fc602d8d1b868b911d4ae1f4fb52e

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_its_ter

Filesize
8B

MD5
5f1001ec9f1651a8a256d3dd24abc964

SHA1
2317eca6a1ebcf6af4e5b4e974be1ab6ab902076

SHA256
38b64a3c1bf9609713b092ad07e8a81da07f5254e1dc09f157f899e0015e774d

SHA512
8c4ce6ff17ae6bb793da17735013cbab167f403e5db66535aeddb53db7b37b8f9c442853b757d753b25c4b6ed31fdf3bf951357d8e9b397a4eaf83f0fb5022cf

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_com.elite.obey_default

Filesize
8B

MD5
204b8eaa94a08974319ee28ae2fe2cde

SHA1
219ebe796ef11318728c9f5b44474414ad0c25d9

SHA256
cfe630389fd6f6dc13e42f629c7d9f6f71da7513e25b5ef36d0954e35bc4afcd

SHA512
9f3f34f58cec5ed6024bb18a0c8ecbb34dab48dc1b0890a78ace71c780f4bde322dd03c924a0cfc16b7c665a1b4d5a4f885b719111a944a3de73c466fda6fb15

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_com.elite.obey_default

Filesize
8B

MD5
9a2c869a6c9f706d8af08c3ac7dd9881

SHA1
1a7fdfbf78f6861ad3399fc3aed6a188eeea3742

SHA256
d8c408ff26b041c57a6deaa6d915e9b474c8ece0707eac1fc9792115a92d8805

SHA512
d992d0d3b93161dca9695b462266a98adabe40e23a9064b2098c4572b89a405ed1d54f58dde80b834ccc251377ad083797059cca9edb84a8ee03e354de7ae45f

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_inaka_com.elite.obey_default

Filesize
8B

MD5
d6880cc596c612100524171d46cc41c7

SHA1
8f6ad2a3563389e330ddffef17842be084621cae

SHA256
19658ee0d12ea782f779b3fbc3ee0dab9d47fadc4e35b205628692bbe213dbcb

SHA512
ab3e2895d0905ebac796ae601585f200f479d0c26e3ccff54b1cbc491e9877755dc4230d361625743528bab22b86b8a3a31bf03d0c5b98af51696fe0776d2407

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_inaka_com.elite.obey_default

Filesize
8B

MD5
a24f04b4d4b28b50a2eeab0bb59ed6b9

SHA1
d1fecc2d21c23b3cc3d67ae106c45d28885dc1ee

SHA256
469af9cd4837fd0956c8dfd65cb6fd99fc3949b2bba86c1efb058f38dc900735

SHA512
2e8796903cac371eb6f59f548a311e18b58b6d6b518f89fb51385f3d4c2581e93be89eb4824264dd5d6b3fdf357866dca7460b595b717a5fdae103a4dba6b5cf

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_labl_com.elite.obey_default

Filesize
8B

MD5
f506b5c6b8e097a6fa8d70548307f5f5

SHA1
7f586d3bb7244368f59375f0422dbcb613043fa2

SHA256
8d782eab2b40190ef8d400997b429137a0338ff0be932d70b620b17786664e41

SHA512
2c27d95cedb455c8b175d5dcaa80e2db3c0ab1f49c6dd831f2a602f3e82dba5deb0b54e2c42105989b877f0faeabafdd4a7968b01179e9963e4d9ad76aaf9807

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_labl_com.elite.obey_default

Filesize
8B

MD5
dc6288950c89a0f7841f6d38ae80dd19

SHA1
5d42972d634bf5130e425d7cbb7a82dd3edb7765

SHA256
99db6a30f7984600ca6b5183787da12327e9d65755ce41ee7483ee500ab68f5e

SHA512
0b86e41b5c0a3da62804a17730ef673996cd78b3cb08b80df9989d026be6e3a38fc96a2837023580dbd86e9b51afa76e6ad7e975612efe679c3ed1ccb7dd9233

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_no_pois_com.elite.obey_default

Filesize
8B

MD5
ba3be68820f9f7b3e288019cca5695c3

SHA1
d34285e90c7107b4628f3e5502e0a8f979b42bbf

SHA256
a903595dea343e75e0e8222498952f5cbfbeeb971e679a98aed25a0f8c50ee7a

SHA512
a861dbd2d8e14990c43564371c700935c8b3580006edf7a9f82e4da28e5f00ca8f6997c7790887d21ceb01f354baed4bc5987c63083566a1e051db59019a9962

Download Submit
/data/data/com.elite.obey/files/DATA_disk_creation_time_vts_no_pois_com.elite.obey_default

Filesize
8B

MD5
b2240da65850ee9aa4d05d3e227873af

SHA1
d2ed8915f237e889e23a8af4f21f97f10f946bba

SHA256
709ec0828a8d0688593a7628447a32a5b0699f8ef9b5342c1f839d985b708e87

SHA512
9b29e82791d42cb237090a2f62d1a7b554254b03abc696b1848291716399cccede5cc1e3c70bb241459db90c8e393b97390591d78eb927cb81a03a994c1fd25d

Download Submit
/data/data/com.elite.obey/files/com.google.android.gms.maps._m_u

Filesize
4B

MD5
c9f17e0904973e18d885fceaf9d08c37

SHA1
e85b3d9d46537350c400081c45510c62d705b862

SHA256
e300f9826b86d940f2907962161c378e3862ec6b3495d3cdcf79b37ef7975be7

SHA512
d0ec89895544310c2e176550d4c5cedb611a359116580895e658870c226aea947413ac97655a34515429fc716bf83c0e456935f2b1f24c0bfc43c23e0d05f1ed

Download Submit
/data/data/com.elite.obey/files/mmf-res-2131361792

Filesize
14.9MB

MD5
efc643109a41a6b0ea8d80037e98c997

SHA1
8a61830baec02d7e7f61cf611ce8f52fe5050e6d

SHA256
deb7305a950a07fda13a4e35f40ae4d01a9fb99113a178d4a3156407f096cc34

SHA512
22e3c7d1b8538174415310f04fc3273f516c93bcb171b9d9afdb85a0a19eb0d80e4d45ae0ddd6791162e78f31f5d24523ebd59ccbfa7c344127e9277bb66e919

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_bd.m

Filesize
26KB

MD5
a369784e913434890e582c7d15bc5e0d

SHA1
f12368ca914caf3f668a3119609b9ac1dacd0635

SHA256
efb1fac228285a179cbf3c37b33f0d2189a9740922d0a98a87aa8e691f20b05c

SHA512
c228d75824c21cf75b11b274a2b9f82672c82deb3b92059b49b0ec9f46804e473de9e7bd3bb22a92c09f541d7fbd1a5a421881105cf8466b7e226cf94118b59f

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_bd.m

Filesize
26KB

MD5
717337a1cd85f0e31e88a3452a8ab830

SHA1
02cbe783a27967d67a75eac477766dc89b3bebd0

SHA256
115cbb8a1299d697abd97e03f6c98d572936a36fb7328b3601febd8e35077294

SHA512
9dc9d95d8ff746ce88f805750fec98971e5475e695fd29ca7ad6d6d6eff29602af8f366c88143af618a98d1c136bcfe60c313d43ef440d6bbf61fa992ce949df

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_its.m

Filesize
22KB

MD5
b1fa9b3732be2cd354f2d5496d335d1b

SHA1
a99ac8b02e0ce234bf9d26f8673ad02996b01a04

SHA256
7ce87adf7622d1712d23960480dd782b42b1fb0fe9a855022df7c56358f24306

SHA512
6c73eec943f4f2579ae02c952472218fc34e344fae9ec8101d744769783e87a0ddbbdfa209cae83e398e3bbf05eed612272455261a6c869b08ef689fb990f41f

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_its.m

Filesize
22KB

MD5
7188a62c9a0d3157845517c6a3a4c7c9

SHA1
5845e3dbf43b6405b7e11e1693b160d0dee29477

SHA256
1f14e1a817dfa5579fe5b5248d70622fe2b47e760059ecf2ba3e424798adcb2c

SHA512
d71d2e09f909eb0be575119e56fe28c2fe2224e930458b288a8f1b9b6120f968053b0e6686ce93a394aca244fc2aceabeb77cd9e2f13946369e96312e413474d

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_its_ter.m

Filesize
22KB

MD5
5dad6cd4cab8ef2d921879b8adad4596

SHA1
323836487fb86129d2aba455ad61296cac2e44f1

SHA256
2de1a9b0fbb4476857871d3d238cb95b208f758a40aba1aeba376fec31c64d24

SHA512
59473efc89dab4e50843011d239306d137b55b76175f005c2f4591b0c9dbfa935351e0a0beafe2525797131919c5c3987da6dd322e5506891af1afbeac93b6f1

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_its_ter.m

Filesize
22KB

MD5
98bee5de2822ed69da512a671702b0f9

SHA1
4856c2299c9b27f7c1fd391b2591759063b3b6e2

SHA256
3aa96eccf0746b31f3c09ee22915f6bb6ced171fb22cf1b7326c716a7e738186

SHA512
f32b93f15f2da1d894e913b523ea0cbe02c422f54a053c2dddb2b97bdcc7ad4e8883d7c8dc1c53014b9757a5bab1762e38ed0ca3a9003b33f6f6b17550e1dab4

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_r.m

Filesize
20KB

MD5
331e01ed6906c6fc36c7de331f174281

SHA1
db1b48a8afe9836295deecb94ae9f1fd82c20fdd

SHA256
96671507025274b9dd84be00db3f2ddd61aee0f5b642cb15901ad8fe09cd4d8e

SHA512
36daa0fbd08fe6380afb92ae409c1d1c25aeb0b80e28e22bfb6490e76866e167eb15b42eb87396ca320049d97d742f8c3a80621dc35a96f4a12ae504ee62f5eb

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_com.elite.obey_default.m

Filesize
27KB

MD5
9cd9216d64e11bf52549088b4dd58dad

SHA1
0fa0172d0c8dc03345209b6220956f5f28f1154f

SHA256
88cab9eb3f7002c3c6e2f2f76dc89c3ef45f98e1920435a94cbd2735218369f8

SHA512
2493aa72eabff1ab21fb5310a9b5e3d51b39b185c065ad28b1d03e03d78f7a0ad572522f990fa00e044e8d37db60a3dffe2114a9d519c8f8b750cbb4633f2c7e

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_com.elite.obey_default.m

Filesize
27KB

MD5
9c87b3ac462c8d0ac04efe441d84a6e7

SHA1
b6292fbda243ac55b499402f0ee641d5200cce41

SHA256
ceb14eadc2f037094700d4c9a43f8fe4ad289a314f91fcba917224caadde5f49

SHA512
42a8d5c2d10de4a2b8cf50200615648070216a01cfabb21865da4f8faf148323d4850a4a3bbf0faeb325a5e65a79cabbe09e1be1f7dc118793db7baf7afba242

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_inaka_com.elite.obey_default.m

Filesize
27KB

MD5
67a94d648230df31acfc4e51feccbc84

SHA1
3ca748a822afdd3de5506705dbb438bda6febf8e

SHA256
2f86b9331581cb210005c109acfcdc562b48902ec792344a3b8e20ef82a9e033

SHA512
43760701849639b68144c010dffb0102405cfb2170812246fbf72e615709482fb5cfb493ed61c06077991256442e290d8dedf5fbb8bce0f46c9e511f5bbb94a0

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_inaka_com.elite.obey_default.m

Filesize
27KB

MD5
16cda1392219b9ff6a9e1209032562d7

SHA1
34619b667bc1c8e9bf61fcf44961ff354d56286e

SHA256
84f72c0603cefa2d20f769d5fd95e4fd637a3247b484cecb962dc91594fd8b73

SHA512
6bbceda00b64cce36b29582c0e455b6700a88a35f95600a4fba2bccaa20d87e76698dacc1df88c5849a9c6fcf2c89d3e7a24ae6ec089693062c7c1ac31ee015c

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_labl_com.elite.obey_default.m

Filesize
27KB

MD5
efa360cc3b1bf7d9b7d741c8c1f3110f

SHA1
c6075bd4ae2b09d0fd18affdaf29c662a71b600f

SHA256
65cfd5b7041df69113f5fcb79f913ce1282cd78c3b4f41f037e8ee3f0d7504d5

SHA512
5333d2c28cdbd306a53e9194a876dc54e9e5ac71cd371234593a614db39a3f4b4534c0d220be1d90efd6bce6f85485708c7b98da6d41e7e0ef281b49561ff658

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_labl_com.elite.obey_default.m

Filesize
27KB

MD5
97b6f09b20fa337b8d5f9db0083860ac

SHA1
ea1ea7892d8ad5f1c676e13706f96e5ee04c9ba3

SHA256
84dd5d9468d979dcc1430c2520584e0a7d49fe6bcef44241e97b31bccdad18e1

SHA512
6884046aea23b8e30b6452888d691e1adbc45de906c9fd17e2f7ac248a264628f954180547017ac5e5da6e9cb9f4354c9be5d799eb6c35808fb56d8c51e80cae

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_no_pois_com.elite.obey_default.m

Filesize
27KB

MD5
e3807cb582118e305052e154acb9f84f

SHA1
62fb88994cc07ab56491b11b1735966801736411

SHA256
c4c4580e8e0846de78028575a9114596affa7a193c8db25de2238bb2a12b8f73

SHA512
3c81423c1912e43d38e51f7f52afc05f5576e687eac5cf972749b4e3f3dce4b8439fb6e32fd5e229fc3cb021ab06cf9e923c86a6adeafacbc3393ac43ebdb776

Download Submit
/storage/emulated/0/Android/data/com.elite.obey/cache/cache_vts_no_pois_com.elite.obey_default.m

Filesize
27KB

MD5
2ace51a3e01cba9929ddf39768350489

SHA1
b5559b7468491f78913b6fc3ddbe7ef4e38d40a6

SHA256
6607ffc9afb025dcb9501c68f0c78c14310e107dd3ed621d3fc8ae5703a59a33

SHA512
7d55095634a0921cbbc5790045eca3267bbc296f33472f178a4dea23db3ba9e76cdd1a4ff3fba8f064fdeca0bef4e09baa958b5ffbcb037e02508ef97b59af4a

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads