hxxps://drive[.]google[.]com/file/d/1rWahLlMtITcdoXHA8-e2mlDj2OIroSi9/view?usp=sharing

Analysis

max time kernel
30s
max time network
34s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
18-08-2024 20:40

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://drive.google.com/file/d/1rWahLlMtITcdoXHA8-e2mlDj2OIroSi9/view?usp=sharing

Score

6^/10

Malware Config

Signatures

Legitimate hosting services abused for malware hosting/C2 1 TTPs 4 IoCs

Web Service

T1102

flow	ioc
3	drive.google.com
4	drive.google.com
5	drive.google.com
2	drive.google.com

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.android.chrome

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.android.chrome

com.android.chrome
1⤵
- Checks CPU information
- Checks memory information
PID:4227

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Web Service

T1102

Exfiltration

Impact

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/Download/.com.google.Chrome.sqNHzl

Filesize
512KB

MD5
ee28641b202cbe76b86610a89ab1bbcf

SHA1
37fe3d62e7ff5787a2dcc4a093a863f6185e8a4f

SHA256
44ad75c7d564f204e18dbf594773efa59a1b5f1a32a1229fbcda8d668bc90b94

SHA512
82777ca812751b853fa90e40ee6e88e5d2ed58a892e3dfcd494fa0dfad3aaa30c7a7fbd81319c665fa025644d7db20b2678d33e4d8fe599cc7065416359b03ef

Download Submit
/storage/emulated/0/Download/1-46-3-Last Modified.ipa.crdownload

Filesize
42.7MB

MD5
bb26055dce5ceebdbfb709ec4ae4b53d

SHA1
84639a7be89f1cc5d4c2457da00e977723687a22

SHA256
4b9c58e69f294e5e6c5ed6bc9cc279a07643699161a1e0150dd08cf6c5068d09

SHA512
6ca2342e361ccfb768c0047c8a186a64077adc094a6d9467f6498b032ca392050f6c5cdf8ffd4102d67a1efb2a4a6e395cc85e7c147573ef3e3b57dbae3e237c

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads