03afc303699c9c40ad82e9638fc49ee2f5d717203f6c1f905bbcf7f40e4188fd

Analysis

max time kernel
4s
max time network
134s
platform
android_x64
resource
android-33-x64-arm64-20240624-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240624-enlocale:en-usos:android-13-x64system
submitted
11-09-2024 22:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

03afc303699c9c40ad82e9638fc49ee2f5d717203f6c1f905bbcf7f40e4188fd.apk
Size

3.2MB
MD5

ec10321a0aeda27475abd1057e54e1ec
SHA1

67cab7d1e8ab84a57a3c380737249e30d10c4d28
SHA256

03afc303699c9c40ad82e9638fc49ee2f5d717203f6c1f905bbcf7f40e4188fd
SHA512

72664418f678ecd0a3fa1c199f0beac061b9c1c1e84a3c44566e6b7046c917ceb1e5709da5fa70435a8372d028be2524b0caef3eefa0d69bb6fde150e7a043c9
SSDEEP

98304:5vE9N5HJ3twHx9IbpSvn77HIbQVN0e8ikYp:Q3tOGennIbQF9k+

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 6 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/million.bail.half/[email protected]	4345	million.bail.half
/data/user/0/million.bail.half/[email protected]!classes2.dex	4345	million.bail.half
/data/user/0/million.bail.half/[email protected]!classes3.dex	4345	million.bail.half
/data/user/0/million.bail.half/[email protected]	4345	million.bail.half
/data/user/0/million.bail.half/[email protected]	4345	million.bail.half
/data/user/0/million.bail.half/[email protected]	4345	million.bail.half

million.bail.half
1⤵
- Loads dropped Dex/Jar
PID:4345

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/million.bail.half/.jiagu/libjiaguv2.so

Filesize
277KB

MD5
94884d288d94d53381f179b97d91b160

SHA1
1c274cdb2388e27af3f1281d29234872d13e7414

SHA256
a84e99701323e03c0f7f902c3470c3ca449bf21b5dd3511bafdc475d8aac45a8

SHA512
43ba85965ca30448515a0326fe55b4d76ae9f46d66d14308386003ebf275dd8683c1456c221b31f0ad0aebab3ada5cfa8e9455ec4073973d43483a38256c122a

Download Submit
/data/user/0/million.bail.half/[email protected]

Filesize
721KB

MD5
7febc391b6efaedbb1843e71460e1118

SHA1
3a4d53c6e58a9f62cb097dfe5ccd44ea25aebedd

SHA256
507844593112c8b2038394266ae3516b96da068d24aa3c26231d1d8ba69de690

SHA512
2fb88879a5485b63d126d81bfc51311765870be099a49735216b67efff1cc2ee00155edcd92439bad497ee887c613af2a6d755170ada899485321f93059506ec

Download Submit
/data/user/0/million.bail.half/[email protected]!classes2.dex

Filesize
737KB

MD5
7613c7f08ce8159978af917f5b3aa384

SHA1
37c9b028a635c0b8b0ad35bf92260503bbdebb4b

SHA256
3cbeaa413f4adb675b7eb7dfc3a65fd854b6521e9cb6a20f100d7b40bfdb2c5b

SHA512
157f516bf6eb558f3a5adc95c44837c9160d0261e2c23b6f1eb1229a98d00a7e0a224614fdef3b6910a37881b1c086f50e2161a2558808852e93ba7e4edeb3c7

Download Submit
/data/user/0/million.bail.half/[email protected]!classes3.dex

Filesize
692KB

MD5
e6196dc97ad2b656ac38169ed55c48ff

SHA1
d488e78632b82e107704c4d30dfd06a7168a6051

SHA256
10ceb2fa7c2b9acfdf56e79c3ba98b2e70725dd07465ed07fbc87ed18b826eb6

SHA512
e421654c02f4fc5ee1e9501145066cde2ce6b2a2bf2e94b18e8afd02540a2feff5d5e4a417c074cbeca4dd169b95fed52a1c22b56821b1c0c2317a2c9806a9f1

Download Submit
/data/user/0/million.bail.half/oat/x86_64/[email protected]

Filesize
45KB

MD5
928fc35d3e627394830732e4ddf7a4d6

SHA1
b27e229fb97e31f834bdcf7d6f3ca90f78ac22b8

SHA256
8c7e537dcd851401a0cd6dfcb2694a67d8196eb044ccca738670e7e66d7ebb80

SHA512
b18d35fbad59baa5b5223648e7256284428b548af9f84e88804ad0687bfab689c11014f8b792a249c9adbfa4b442892def1e0e559c9a3ed7e027e80c369d908a

Download Submit