1b0a086993708469bd00801c6ec2669d6dcb8b2098f539759514712ceb6be230

Analysis

max time kernel
8s
max time network
131s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
28/08/2024, 12:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e5142d7c118a806b5a42bbc624f490fb.apk
Size

14.8MB
MD5

e5142d7c118a806b5a42bbc624f490fb
SHA1

5bbe9a1737062f2bee84c838bce8948addcd9641
SHA256

1b0a086993708469bd00801c6ec2669d6dcb8b2098f539759514712ceb6be230
SHA512

c0e607abda9f1e02e480cc60945077a16211c9e831176dd7d9ad0a2df995ac54b18929b78a3e8013d75089cba3ebdf529c2d91a7e248ed7c7c95ff72adb8dc06
SSDEEP

393216:GiT2xVikSMGYOpmD98dLKKtborzTN5sP5:VKxU6Op1ZEzE

Score

4^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.playrix.donow

com.playrix.donow
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4310

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.playrix.donow/files/profileInstalled

Filesize
24B

MD5
1f755d9129962884a7e143fe539f6b43

SHA1
7b8d080361894243674ad0a863a32f2b22220713

SHA256
85113c27f669541018f458966b89f5c277a225066fedc6b928701b053bcd9bd4

SHA512
89985c5babc6e588ff6e11488629b1887b850aaa906f076849a10f3cba36e72bdce2e113fb1fa5efb3f5321e771bbb1a467f94ac221fb98c1afe63debab606d0

Download Submit
/data/data/com.playrix.donow/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
9ee3aad3a9e25bf858573a78cd3cb90d

SHA1
e11234bc03a7a97a651ba887c2a7315f4dd557c6

SHA256
692f220004bea7fa51f921dc2c0f87e89ba6da87654bd3ac2853bac583e1e9f0

SHA512
88ba854961bebd4127b9fddd49070a1c6b9cd8933282d272aea57c8c0ae2f94444aeda4b436de21bc74735dc8c05a5d6dd4b0d6acce85d32f5f1f7d5e7f98059

Download Submit
/data/misc/profiles/cur/0/com.playrix.donow/primary.prof

Filesize
2KB

MD5
9539eefa6573c0887cce14862efe166a

SHA1
186736407ba688eb172c9baf656f6bcf2e0acadb

SHA256
71163417995c6dddfc8b6c267caf5351507ad85514e4c218d02c05adedf0d74d

SHA512
1afa128fc8d35eacdcf0b9ee24458dde82c1ea4a12e4e6999ca4fd2278dfc230e863783b92de1708eb8725b45276e15390e824a6a8b6fafc2a1275943ae8c60c

Download Submit