a1647fd5225a321a2fd16e3a08cc2b4bfed6e645ccc1ab3d854d5ecd9bc3b633

Analysis

max time kernel
14s
max time network
132s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
16/08/2024, 01:18

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a1647fd5225a321a2fd16e3a08cc2b4bfed6e645ccc1ab3d854d5ecd9bc3b633.apk
Size

11.9MB
MD5

f2cc29dad8d228009d8ba0427e80d862
SHA1

67833d6b9da1dadd22e523ecd7057e52fa8dcdd0
SHA256

a1647fd5225a321a2fd16e3a08cc2b4bfed6e645ccc1ab3d854d5ecd9bc3b633
SHA512

7e6d3c37672c23cd3512fb951e3c184aebf5e6ea99eaafaf6f33731f9dafd9fa953556fd453b2abd5a5a368ba999d30e3fcd1aa952fc48670a8fd38c480c1d51
SSDEEP

196608:BV1DluXHrLs5k01rFQRRwanrEheTOFoxSMh6D/OkuJ0Dt0L+4zFzSvu4+9Coq12N:BLDoXLLs57rFUyeqFQ9eOkuJQtuh5F4C

Score

8^/10

discovery evasion

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 8 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/bin/su	com.sportsmasaladev.livenettvapp
/system/bin/failsafe/su	com.sportsmasaladev.livenettvapp
/system/sd/xbin/su	com.sportsmasaladev.livenettvapp
/system/xbin/su	com.sportsmasaladev.livenettvapp
/data/local/su	com.sportsmasaladev.livenettvapp
/data/local/bin/su	com.sportsmasaladev.livenettvapp
/data/local/xbin/su	com.sportsmasaladev.livenettvapp
/sbin/su	com.sportsmasaladev.livenettvapp

Checks known Qemu pipes. 1 TTPs 2 IoCs

Checks for known pipes used by the Android emulator to communicate with the host.

evasion

System Checks

T1633.001

ioc	Process
/dev/qemu_pipe	com.sportsmasaladev.livenettvapp
/dev/socket/qemud	com.sportsmasaladev.livenettvapp

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.sportsmasaladev.livenettvapp/[email protected]	4505	com.sportsmasaladev.livenettvapp

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.sportsmasaladev.livenettvapp

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.sportsmasaladev.livenettvapp

com.sportsmasaladev.livenettvapp
1⤵
- Checks if the Android device is rooted.
- Checks known Qemu pipes.
- Loads dropped Dex/Jar
- Queries information about active data network
- Checks CPU information
PID:4505

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.sportsmasaladev.livenettvapp/databases/StartApp-d6864f2502af7851

Filesize
16KB

MD5
72b2a55ec4c8795f11fe7be346be677c

SHA1
475414536ed894c93abd560d1dbe782adf052348

SHA256
62526d0d74d9f815107153e2f9a3df1be9b54d5b0f49b319235473a1b4bac77b

SHA512
a09584784b4baac990813d796caee570416b97a901eb48a7733d575ef2a15bae05255d8423b80a32c86b8ed79b1d0eb44a290ae06df42053327af50deff6618e

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/StartApp-d6864f2502af7851-journal

Filesize
512B

MD5
5565b72a3dc417686e5bae2891a7e5a1

SHA1
085d5b959fd0ad79d4dea1510e53c73878dd2799

SHA256
f9044a2f200a23253cd718c3850dd9e66e20c3c30d2794024dfb70c83a133fa6

SHA512
7400ea9c657249f14f4c2fe3c68030c94c32e7546d5759eb716fe073f660990487940ef0798ef738705d65142dbe4e9a491c175533c0766b4efa1ee37b7e3c87

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/StartApp-d6864f2502af7851-journal

Filesize
8KB

MD5
2f3aa0cf1e5a973b10842d99f42c5553

SHA1
b59642754f1048fd29b09213a1f2b4528a21a814

SHA256
0ebbfbdb5dc825ee398d58017a8d3fe7516d6a71f3f5df497da48b8ee5fe42fb

SHA512
6e88572db96058dc95110f626f61af437a0f30046553d51abd7e5f47d4118e040086c960b078cdc96e89f017f42e1cd8eb4e25d7a6d1ecb2937a5c89a6f9f2c7

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/StartApp-d6864f2502af7851-journal

Filesize
8KB

MD5
76c0a586f6605a72d5f99a02e682ead5

SHA1
0b1f9dcda86e64e7274c813b6523dbb53291d4f5

SHA256
afa7ce13ef0ebe5711d44c1868504ee6d82bb78609ad9cc78e821769ef95ff55

SHA512
5dda1f12a1abddd67f0b062e2f217e84c108a6756f21b00d0fe83775ad6942f478ba7a3ce863f2bd00e6d25ee8eb006ad4beff5679d3719f509f2e7dc7d07472

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/androidx.work.workdb

Filesize
4KB

MD5
7e858c4054eb00fcddc653a04e5cd1c6

SHA1
2e056bf31a8d78df136f02a62afeeca77f4faccf

SHA256
9010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad

SHA512
d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/androidx.work.workdb-journal

Filesize
512B

MD5
fbb40e684f06930fab086ee232f3d742

SHA1
81d6040df9633f83a31c6b3daf9c9ccb01a0fd59

SHA256
2bb15f22bd1b562b656e034d7bdbb9c0681b5ea0629c8a9b6d5dac8f3d6e2dab

SHA512
0245b247ef4de63feb93ec66c56af8eefd1d4f5340b22f79715fd360a4cbd2c59fd6f8e5c4074ece423fce32d07d985912a02a0420cfad078e854b594982321b

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/androidx.work.workdb-wal

Filesize
88KB

MD5
1861f590be62c20bc57842170d45de5b

SHA1
79130e905785f41162d59caf8a5ed51c75566a14

SHA256
97f2c81105acd5fb0a98b82e4717cc7cfa5ebf00bf756e74647cf3704d36ad35

SHA512
716b7b154c73ca05248fb8d441f75e83a81cc033d929bb63d25011e06cd35f295e4e9a67e37a29af84f585a9dd7dbdba45678dd14098e1cd35034f6f4149b706

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/androidx.work.workdb-wal

Filesize
16KB

MD5
b917a88714622e1b3198b8985bb9891d

SHA1
6c27a90fba92829420754c52beb52aae1d1ed696

SHA256
099efefbe5a117378f6d61b3d0dc14339e6492244dea57251ba9b4f7de49a3a3

SHA512
902a9fa177f85bb6a29bd74e3033b7c60da5dfa429f9488269cb93d2708ec5b05b047a37bef047d275772d6ca130a9a141fbea94ab49a854238380edf2d963ef

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/google_app_measurement_local.db

Filesize
16KB

MD5
138dea1a72b76471e2e7e947006d127b

SHA1
6dd3b2d17aef9a6fd2ea292553c3b7b71638da42

SHA256
d5a5dc273e29058ef64f7f8f06e73747c61f9ea7c4782a7b21cdb39c6f6fcea0

SHA512
e80a4eb9045fa5d2769a6d52733772fba6dd595308ff5fe72dc9e525870ce3f1140dabe7d6dedaca55d643f2027a906dc03be02af2d88c8df478cbe752bdaf99

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
9291829c816ebf93187cfb0174c3f600

SHA1
2f870fdf265c9bc1df3d72094c51410a5e066e4d

SHA256
93823a41156ec408ec3936e4780feb86714f97d02c9537e952e2d269cd8d5bf6

SHA512
5821d64b7ac48de9c47b10d6ac26918d501bc4b362061d3cece22eaacb39243b292b42a976252923ea03723784668f9f6db1419378257a5026d6c8f1cb58eed1

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
796a54d1d28850bbd7f1e6d453167dd7

SHA1
879bea5c8921938db86717cb6f9d2be6ed2aa550

SHA256
da7e2f9b1269660b3f3977e200b525a82d4c17616a8bc93187bb884e8256958e

SHA512
eac4b24bc1321017f4f2296b9d527ca948fec67244eba82b4ccaa37595b7f1100c3453535458e4886f110a154f48b1ab352e0427ad327bd635d38656f727fdb8

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
db96e2553e93b69df2acea2195c32f18

SHA1
906c8dedc19c187ecfe0f5110527a31a191fbe4f

SHA256
5307851e3a5a4b80111f7a13810b5df3e24f5ef3585070decd203f620564f599

SHA512
0fcde214d111697ddf04faed1625f0595931468de755ecfd440a983f0573f65d97405d4f0c6bb6532479657044f7bd008b38230447a7b77fe76fd71b7acc2428

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0001191eb1aad4b08eca32f19d928ca3

SHA1
c924be983bf5bfe9b7af72cf916169d253e7eb71

SHA256
8c2874cbb8cd58f602887ff48e746682dee05e49e9550ff76431762e6ff5b0ef

SHA512
5ad447e8e92ac5164a4bd8a86a32e0b67ebf29a9a1531c1e1e3bc56c439d6a38c18c3322890d6a6326669acb28a3ee5b20df5f8050a8d3f2e4b2447832d5c954

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
0340682ac6c76a7dc24da124de9ed4f8

SHA1
d8bd63de980123d6d66643a6c697702dbb90eed6

SHA256
bd2b68b2c4bd8283624dd2c2cb1be00eb42b4dde560e6c74ba6b8839a98ab2bc

SHA512
a9dbc84261817877f6fbe609218fb9eaca66e0249fcdc45eecdd3e98530977224594e0d41eaa53ee2fcd44443057dc1c5ef501c6f43114aac159a9d4e8c89167

Download Submit
/data/data/com.sportsmasaladev.livenettvapp/oat/x86_64/[email protected]

Filesize
548B

MD5
e726dcdeddc31b374dcde3996f69a20b

SHA1
42d7c47fda96e6049de51addd771d5630aa1ec7e

SHA256
361f5e91a03262badb60220b3ace7d9f390c6bc84d951ba264c93117c0d10119

SHA512
f403a97a1dd38ae0bc5c0ca9555df89370d372896e136c66fcb075e3588471ada9fdb6df1cc7c5a2f423cc4b59677c26a700a07b30f2bd9def4517cd3dfef694

Download Submit
/data/user/0/com.sportsmasaladev.livenettvapp/[email protected]

Filesize
3.2MB

MD5
69cf159b893eefff9a8106cc3ee37e03

SHA1
165207adfe8c6047ce9f3dd38aed50796c1660d1

SHA256
26fb1a790377e11135bf8bfa7552cc2797d351df60154ea032ceeb4463776fdf

SHA512
379960366739517c1c856834227aaa1a30a20a9bab730d4229f200192f2c643b69a3e2e114dbdd743a69577e0b7b477c0d14e71c31ee491e137ec405f79e71aa

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads