73034428f1936ea92f8cf6e5037048e9a9d5c7f834dfc5bb71027e36b71a34d1

Analysis

max time kernel
1s
max time network
163s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
29/09/2024, 22:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

73034428f1936ea92f8cf6e5037048e9a9d5c7f834dfc5bb71027e36b71a34d1.apk
Size

1.4MB
MD5

f23eeb7299743768ad46d7e6a626fd4b
SHA1

ce3baefde5411297d2b33cf04382f814f73098b1
SHA256

73034428f1936ea92f8cf6e5037048e9a9d5c7f834dfc5bb71027e36b71a34d1
SHA512

c8dbc56ffca765e1ec1ac0c270a7bb56b9a4ee617439b0b6c25ba54244f9a6e3a2c41d78db649ec1816c1a26501ff0ba424ad28aabf9e82d10ca556e61cad59f
SSDEEP

24576:dWO3xptVJSws1odhG0hkE1pI1vhWgFe4RHdAOe0ORAFOp47u:dWyPtv1LGeTWvDFe4xdATn1

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/org.coolcode.ringtones/code_cache/i11111i111.zip	4831	org.coolcode.ringtones
/data/user/0/org.coolcode.ringtones/code_cache/i11111i111.zip!classes2.dex	4831	org.coolcode.ringtones

org.coolcode.ringtones
1⤵
- Loads dropped Dex/Jar
PID:4831

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/org.coolcode.ringtones/code_cache/i11111i111.zip

Filesize
127KB

MD5
1407bf9c59dc7346bc97d031d5a261de

SHA1
308ae47c1873125a13213d2a7acf06a2e5ede571

SHA256
9e622619cb5096d095be1659939e174f0fb25cd8a2cc12dc0934440e5cbf4a55

SHA512
17730a529f9a2eb5c1d162f4f33199c5dcad4ca4140df290973a69c8f4ac2cbf9ed2ebcc234fce10d54c9a4ede2d17403118568fcbd2e027856a873aaead9870

Download Submit
/data/user/0/org.coolcode.ringtones/code_cache/i11111i111.zip

Filesize
483KB

MD5
e91e3d8a8bcf5b9bef262518d016cf39

SHA1
bca08d4d048a7c7b703eb3d166c98f09c13b775b

SHA256
e1fb14190937ae7a4e68f23211b5ba3e5c9f419255fef9624cc53aa64a6f30f4

SHA512
4cee6c3eef16b15786d677b5d288b53f3915a00fe310a6c111ab43f5d633fae13bec8c2b945887aadd39586551816ebd92c1837960e00a895ea3ecd0f15d93db

Download Submit
/data/user/0/org.coolcode.ringtones/code_cache/i11111i111.zip!classes2.dex

Filesize
3KB

MD5
c15804d75ad84c1de89596a48950be14

SHA1
571ed1b9dfc541b2b3929bfa5727b408cae2bb8e

SHA256
07072b1c20c4cf6785cba0ea43158365c46dc027e5fb0d43a27826fa1206e5e4

SHA512
0612cc8aa98385477592de07c9c8cb5ad602d423a469c0c9cfc6341ff46aa2d4e84be5217bc087fc82f15dbdd2ccce1d72e37e3ff88a9405f4da21538e39e689

Download Submit
/data/user/0/org.coolcode.ringtones/dpt-libs/x86_64/libdpt.so

Filesize
543KB

MD5
14a36e2eea3edcb7a7b9f00668c86dde

SHA1
25b0cf4f6423d29402a533517fc6b1277f10d7b1

SHA256
8f87c1fdcdadeafa04c11bc390675c2e293cddf8df09971854f637e19651070a

SHA512
695ebeb763361f19e1f6a561d88dd3b23e1c8284513e4a01e83a4876f92365c9653039595319f493450c2d75e04e9ff75ba5eeaab50c55363958b1ed279ef8d2

Download Submit