36159ea937ca192e21d5c2836483e314fb4753f0759d4009924fdd7ffce5cf8a

Analysis

max time kernel
124s
max time network
151s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
04/10/2024, 22:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

36159ea937ca192e21d5c2836483e314fb4753f0759d4009924fdd7ffce5cf8a.apk
Size

203KB
MD5

19aa6e4b99a011733699898d5342f84a
SHA1

fa6fccf45b1a2cc5a2ce5e4ad35e9a1fa0b16a8f
SHA256

36159ea937ca192e21d5c2836483e314fb4753f0759d4009924fdd7ffce5cf8a
SHA512

053f329f46997f971adccf50c8c1ac8c479d9a1c89971908f13b108dbcd04acbe0928daa04c4a81d75d676fd445d76aef33931ff0a7723428c5f0b465dd233d9
SSDEEP

3072:nzuQJn3wQ4XiWzJGePEXE3h9euXCWBJll5pJDT6ENYwhf9CG65wc2wcO3Qi4W:6437WzNE03+qPl/vZ0KchcsNx

Score

8^/10

evasion persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 2 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/bin/su	com.m_cpgbz
/system/xbin/su	com.m_cpgbz

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.m_cpgbz

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.m_cpgbz

com.m_cpgbz
1⤵
- Checks if the Android device is rooted.
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks memory information
PID:5110

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.m_cpgbz/databases/game_service_folderdb.db

Filesize
32KB

MD5
881aa85c6f79969e8e26a4451bf93924

SHA1
7a0bf6cb113539e15d6735c6ad0d2a92dd0bce9e

SHA256
382db2168e9d6fac47efcd467e2546375d725e3a041e65ef61d218d8bca90567

SHA512
863e32e3a44d663a2caa2554cb5278950372c22de8700f7e103857ac4a02332c98f8aa75556c17bac76e24c8827ffab00e0135e02f96b1819c1c319c3da484ec

Download Submit
/data/data/com.m_cpgbz/databases/game_service_folderdb.db-journal

Filesize
8KB

MD5
f7554282bd6097722e45d5dd31ea8b0a

SHA1
b793163411d4e86677c865ff61872a0bf5f72e24

SHA256
8c5834a52a15b1571c838fbfe8374b7cdcd6b1595efe896a04a5722d8f065fdc

SHA512
78c701ab94146aea4bd2fda2b970032f4134c38b8db2f584b276e6c399d60ab79006161398014ced8aa9fc84415a3f45c521b9264aaf186fd04f518d9d64100b

Download Submit
/data/data/com.m_cpgbz/databases/game_service_folderdb.db-journal

Filesize
512B

MD5
bb04a29cd0d50e9ed892011bb7f24104

SHA1
4410d553eda74db60baf8cac85d5a197141c5843

SHA256
7acfcc2af4744c2b7ab36d0d5bc2ae04f9aa032bbd598071325ee2e2161f54aa

SHA512
c5e7a3308c12dde08e0469a547dbecd856b21478211e21f6352a09e3dcd6799b2ff76db44643a0013b9d1680d4a958a56d94d033fccdf2cb627dd6390db453ae

Download Submit
/data/data/com.m_cpgbz/databases/game_service_folderdb.db-journal

Filesize
8KB

MD5
7dc6cf4df4e581688b94a7a9321e1734

SHA1
eca3f46ff5c5c307ab6bfcc9e180eb75a24de84f

SHA256
0b3ae67a2547f7e351db43519355faf2496319df143d7f428f8c9e26aebe47ad

SHA512
f338f51862ad8b5aa31424c4385ee6c63d727c1643309d36e9a5adfc47bfc7e2d558da0d18defbd31e499f8419f0baa5f84b414ea7b34bd7c6734c8a483dc2e0

Download Submit
/data/data/com.m_cpgbz/databases/game_service_package.db

Filesize
28KB

MD5
b08c25d7d2e41d403b6888874698f3e9

SHA1
b182a167423f94809f19024464130725a5eea8b2

SHA256
19d7b5dc90b812dc3e074722f07a83644eb91438af2e7c5326c1b193bfd78072

SHA512
92a7ceb60a7f0ba2356c30308a0bca591278d5730d965d3cb1ce2e00d845278ac531b30d32905f8b19cae71785caca20dcc337bd3bef748c301afc3fefa9bf4a

Download Submit
/data/data/com.m_cpgbz/databases/game_service_package.db-journal

Filesize
512B

MD5
d490e4109aa5ea3c68ea4003a847cf22

SHA1
12bf2dda515bebc0097b924647ba9252212c3dd1

SHA256
ffaf1c2ff9be4081acaf7f4375d16f4f151ce7d4d06fa00aa4aca379013f3dfb

SHA512
8c2183b0060041f339aba80db8e9d1be2e58fc6361611188f612edda0c826c32ee2e8c549d30f0d1f717b3cb7af3f88537a5923398c89e1c0c49301901fe0291

Download Submit
/data/data/com.m_cpgbz/databases/game_service_package.db-journal

Filesize
8KB

MD5
7e6880ec3a505c7bd780ed7105a8ff39

SHA1
99cb0ae51fec13679271de56c85f5758a4db0b98

SHA256
9dec8efa7c18a063c76ea2c935cac5acd4351ffb79f8077356af8fb906b3abfb

SHA512
3b4c657877a747dc83453a5c925cab3f823215507765a36a8ab1e461e577a96d419743e712302fe0a07bb0a4358ea81ce0cb311165c8d8f141a13ab4287df6ff

Download Submit
/data/data/com.m_cpgbz/databases/game_service_package.db-journal

Filesize
8KB

MD5
4e4cb45bc1d89788c38f9607d030cfdd

SHA1
a4e579d415aaab73de2159df0f3f0171e1132a49

SHA256
57568935ac6b3aee1b02be9664f0a6d637977fc4c4f35fcb6f49567ec41dbc2b

SHA512
aa9da86d4328719d787f5100970e8d6db38340e692030ebae7e0c6e54a152d6e61625b69e14922ab55b3c14fb372467efd8631bd19a10f5cc8f59174d51b17ca

Download Submit
/data/data/com.m_cpgbz/databases/game_service_package.db-journal

Filesize
8KB

MD5
ed6c97affd532701b5f9d9af08b0c561

SHA1
d7aaa9869cab83621ec0c24925ae9d7a3258ab3f

SHA256
63341522d92d41ef633115743297c75380e46d81ba8ba4c478491af354bf082d

SHA512
af336afef188236a033707170cbb506ebb42195db1bb5ae5018ed4ab425295ae8be87885b5aae5021b876fe3041f18e29f4235bdd2a765428ca63ccacdb87526

Download Submit
/data/data/com.m_cpgbz/databases/game_service_package.db-journal

Filesize
8KB

MD5
c5888d75f14bd0166c747edc2fd4c165

SHA1
e6745e4a0e4875a71eb33bd92d0b65f2f9f12bb1

SHA256
b302a599baf6e03a3b8d6424b58e3ff63fd35be0a408b06e6b834e82b62bf9bc

SHA512
1cfc5800bc42b8d7ca1511cadc1e89fe803c418231070881a58ac47c5afca88ebb683748da7e1a27cf69189e4eddaf3fc1703c569fb41003ac4278922ba951ee

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads