bc109862b30e517176ef84cd5c1df65b97c3f0f30a0ee93602c59ba9651b686e

Analysis

max time kernel
4s
max time network
131s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
29/09/2024, 22:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

bc109862b30e517176ef84cd5c1df65b97c3f0f30a0ee93602c59ba9651b686e.apk
Size

858KB
MD5

6227b9ff0e5ef45fe98c700b5b922be7
SHA1

00484e43ebca2b4103d842e2f0d628490fa81b45
SHA256

bc109862b30e517176ef84cd5c1df65b97c3f0f30a0ee93602c59ba9651b686e
SHA512

cbf5ced2ac0b5b4fa51b1d1d6b0616ac80eab390bd38d890b5fea3a2f923d6b95c78e60b7ec784776cbe8530d97ad516b97ae008eb2b805f4d210bbad2514921
SSDEEP

24576:URs1odhG5hkE1pI1ohWgFe4UHdAOe0ORP:URLGXTWoDFe4idATP

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/nuu643.JJK73f/code_cache/i11111i111.zip	4435	nuu643.JJK73f
/data/user/0/nuu643.JJK73f/code_cache/i11111i111.zip!classes2.dex	4435	nuu643.JJK73f

nuu643.JJK73f
1⤵
- Loads dropped Dex/Jar
PID:4435

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/nuu643.JJK73f/code_cache/i11111i111.zip

Filesize
9KB

MD5
294c14be985937ec8f958098bd34431e

SHA1
5f2cc8e839760a513d510c61ac4b5009b408c957

SHA256
4dbae72e6eb4ac17329f8e02fd6c9924f92ec80be48d19ed4429b11713e15251

SHA512
2527907084c4deb1bfc78419cce4b0060e0a99e2fb9abb450d837d5eb79653940920b139fcaa4ea7aa8f248a81a0f8f992f436bd604b2c350e7773e47a199d1d

Download Submit
/data/user/0/nuu643.JJK73f/code_cache/i11111i111.zip

Filesize
39KB

MD5
b97e09326247bddef45e75fba272b967

SHA1
28f8b5dfd96d50b21f3513d421dc989c336b2a5a

SHA256
d7ec76bd65848fd6927074c2da4036af19b6edb59ebf19c2bf83eaa48db364d6

SHA512
79fbfbb2fb1458fd124689c79c0f05c9d230a9fff2e5f56f54ef14232368041f2b674f0f86b4eead5f9b4a05f7969a80fdc2804cbfcd51e210e3d81a2b55cf2d

Download Submit
/data/user/0/nuu643.JJK73f/code_cache/i11111i111.zip!classes2.dex

Filesize
3KB

MD5
c15804d75ad84c1de89596a48950be14

SHA1
571ed1b9dfc541b2b3929bfa5727b408cae2bb8e

SHA256
07072b1c20c4cf6785cba0ea43158365c46dc027e5fb0d43a27826fa1206e5e4

SHA512
0612cc8aa98385477592de07c9c8cb5ad602d423a469c0c9cfc6341ff46aa2d4e84be5217bc087fc82f15dbdd2ccce1d72e37e3ff88a9405f4da21538e39e689

Download Submit
/data/user/0/nuu643.JJK73f/dpt-libs/x86_64/libdpt.so

Filesize
543KB

MD5
14a36e2eea3edcb7a7b9f00668c86dde

SHA1
25b0cf4f6423d29402a533517fc6b1277f10d7b1

SHA256
8f87c1fdcdadeafa04c11bc390675c2e293cddf8df09971854f637e19651070a

SHA512
695ebeb763361f19e1f6a561d88dd3b23e1c8284513e4a01e83a4876f92365c9653039595319f493450c2d75e04e9ff75ba5eeaab50c55363958b1ed279ef8d2

Download Submit