da78aa845bc87543786ba89f6fb707e0c7ea433cef161b0cb53f039ce9909565

Analysis

max time kernel
7s
max time network
132s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
28/08/2024, 12:34

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

origin.apk
Size

14.8MB
MD5

e5142d7c118a806b5a42bbc624f490fb
SHA1

5bbe9a1737062f2bee84c838bce8948addcd9641
SHA256

1b0a086993708469bd00801c6ec2669d6dcb8b2098f539759514712ceb6be230
SHA512

c0e607abda9f1e02e480cc60945077a16211c9e831176dd7d9ad0a2df995ac54b18929b78a3e8013d75089cba3ebdf529c2d91a7e248ed7c7c95ff72adb8dc06
SSDEEP

393216:GiT2xVikSMGYOpmD98dLKKtborzTN5sP5:VKxU6Op1ZEzE

Score

4^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.playrix.donow

com.playrix.donow
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4251

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.playrix.donow/files/profileInstalled

Filesize
24B

MD5
070fb32d981b86afd46480dda86a0161

SHA1
34b5f0f017b4f8fee5ea099cc187e7a9addad514

SHA256
b1a2af5a5a47a136ad5a1f7f19db42301cf20be9e58a9be7146c174a2d01ad0b

SHA512
4ebd6a6a97986b41c17c63f245c43f17740e3f1a01db944fb7b4c6778d6809076b35d0403d98c1d2261b7f94fbf4702db80f084de4faac8d9c2c92b0f5774252

Download Submit
/data/data/com.playrix.donow/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
967ee626e6d5af0744322124639d315c

SHA1
6de1ad899111f9badf4767dba62f4c5c9c5ea27e

SHA256
daa2aed0995cdeafab159e0d235ba3bc78975ee42a9deb8dfd953b833ca9278d

SHA512
4b9669f954616f8d3d3b31dd21559d1c3a4ffc92554dd4fcd96baa088b2fcbc07522448600bfd080b66685704f7fa839ad6eea01ff8d00fe785a90c8cd2f0738

Download Submit
/data/misc/profiles/cur/0/com.playrix.donow/primary.prof

Filesize
2KB

MD5
9539eefa6573c0887cce14862efe166a

SHA1
186736407ba688eb172c9baf656f6bcf2e0acadb

SHA256
71163417995c6dddfc8b6c267caf5351507ad85514e4c218d02c05adedf0d74d

SHA512
1afa128fc8d35eacdcf0b9ee24458dde82c1ea4a12e4e6999ca4fd2278dfc230e863783b92de1708eb8725b45276e15390e824a6a8b6fafc2a1275943ae8c60c

Download Submit