38191a2880cea788707cd818b62d3eb5afea0e6342f66fc480fdea4bff2d8e75

General

Target

TentacleLocker2.apk
Size

48.2MB
MD5

d3b4aefa9de69678470eab2e58f7d866
SHA1

12f3b345a31b10e1029c406971198ca500c0f8d3
SHA256

38191a2880cea788707cd818b62d3eb5afea0e6342f66fc480fdea4bff2d8e75
SHA512

e3e3395ec8b8c38213eb2c6bfa136337792c89e74245c8eaf4c8c9b3a5d5eb528405b920f820ad50125eb9b2546795f7a1226c97cd5bac9e8e08ad092bee6238
SSDEEP

1572864:+jVSHSiyxuZpR7Byw/yux+Z/zsfDcIzTIT+9M:+jVSyiyxkDz+Z/zUA2ET+e

Score

8^/10

evasion persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.HotPinkandAnnue.TentacleLocker2

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.HotPinkandAnnue.TentacleLocker2

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.HotPinkandAnnue.TentacleLocker2

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.HotPinkandAnnue.TentacleLocker2

com.HotPinkandAnnue.TentacleLocker2
1⤵
- Checks if the Android device is rooted.
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4251

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

1

T1624

Broadcast Receivers

1

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

2

T1633

System Checks

2

T1633.001

Credential Access

Discovery

System Information Discovery

3

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/172620998400000.8e25d01f/c

Filesize
1B

MD5
c4ca4238a0b923820dcc509a6f75849b

SHA1
356a192b7913b04c54574d18c28d46e6395428ab

SHA256
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

SHA512
4dff4ea340f0a823f15d3f4f01ab62eae0e5da579ccb851f8db9dfe84c58b2b37b89903a740e1ee172da793a6e79d560e5f7f9bd058a12a280433ed6fa46510a

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/172620998400000.8e25d01f/e

Filesize
556B

MD5
87167dbb0bb0fda41c08d3fec8801a6d

SHA1
c4ed8f103c254cc5bcb3a961f22b5aedf7c8f220

SHA256
879c503bff2ac7ed4b88afb8b57257ce859dd4127b8ec94972f53c843e0e3137

SHA512
fad1c75947b258a8df3134e3ac4489fa14ea410d0636917aa39e5bae2f50b918cb93ec72d52c9bfec6e29527fa37c34f0cca2452a22fe5773baaca6811b06c4c

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/172620998400000.8e25d01f/g

Filesize
1B

MD5
c81e728d9d4c2f636f067f89cc14862c

SHA1
da4b9237bacccdf19c0760cab7aec4a8359010b0

SHA256
d4735e3a265e16eee03f59718b9b5d03019c07d8b6c51f90da3a666eec13ab35

SHA512
40b244112641dd78dd4f93b6c9190dd46e0099194d5a44257b7efad6ef9ff4683da1eda0244448cb343aa688f5d3efd7314dafe580ac0bcbf115aeca9e8dc114

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/172620998400000.8e25d01f/s

Filesize
434B

MD5
438fbee27dbb8fc2740a57793befaad8

SHA1
a1e2159b6faca9d250aa8e2159f0a96c491150ae

SHA256
9da948dbb009f30cb9df34f17594e21a6ac33e81077bcd420cd633d4d28b95fa

SHA512
3eea18ffb59618b226bcbb9b029cc44f1de91b9ed4e8bd6c762127f3fb97ccd3753f80620cc1382e5dbadf63a263dc8a2321074f072d79e49c76bf492eb7cbc9

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/172620998400001.8e25d01f/e

Filesize
580B

MD5
76243db07822b8e9f7511d23fb51f3f4

SHA1
1503cfea899f1bbc26135e637992310ad2b650f2

SHA256
21f21e3b66dcddeecd2cb7c07ed74bf369f48664837753ef517a5a3569ae5858

SHA512
b1f81cdfea95d1ca7a2e0e8a0fbe972e83334c7b258863a31bfd711bfe3d953c475aa85ec8d361575e83cbd694c96ad0a1fb5726395a1f7cd4cabc390d96d7fc

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/172620998400002.8e25d01f/e

Filesize
1KB

MD5
9657d155c987ce36dfcc24cca4b283d7

SHA1
de045dc0b3390b1513b76494710f6e2b567256a8

SHA256
621a8b69c25deab77fc5ef9122d4996036f97d36e12c46bfd7b339578ef3ed8e

SHA512
74a24c74171d0ccef5ef5a7f3f68683206a21230bb72dc7797cc1530534d772e3a09aab6881f0c0f73918b61ff5bb55a45dd06bc184d0dad3818113b9876315b

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/ArchivedEvents/172620998400002.8e25d01f/e

Filesize
1KB

MD5
d5e4b61cf035f579312782702cd7d6b1

SHA1
102ed81d5e7b4b3f7745789464254f8f9a13bdb8

SHA256
75cc25a6026a81546eae19232cb976bde1f82391199894ce019db500ce83876d

SHA512
6feb252f323050ae6b74f035e0e575975dbfb4c233a37b08227813fb531aa57741dcfb5dbf9c9f7d47713fd0da4e02f0cf6307df1b24bff95c7d0e610bc3df9f

Download Submit
/storage/emulated/0/Android/data/com.HotPinkandAnnue.TentacleLocker2/files/Unity/local.e23619eb2388341988c4de7e5e5e7845/Analytics/values

Filesize
135B

MD5
ed27207e52bf256cc8f9f25a1eeac8d8

SHA1
7ca173d287c1466ddeeef9bfe84ff68de793e637

SHA256
933327869caaf0ce28fc8f048668a83361c45aacfa7f164796804ac4dcfbde6d

SHA512
9c7a7bdb6baf258c29f3705d309165c93f726a69aed30214597b168dd0ddf492d0d18274bdeaf2ed56657480f7e39b13c1f88be52ad545c731bf2f9d13565b80

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads