9cec9614996915ee6689a753ce98a6da7625c1cc59b5ad36f7ba6ab80564b30f

Resubmissions

05-11-2024 05:22

241105-f2h96avhjh 10

05-11-2024 05:11

241105-fvaz7sxphp 10

Analysis

max time kernel
149s
max time network
161s
platform
android-13_x64
resource
android-33-x64-arm64-20240910-en
resource tags

arch:arm64arch:x64arch:x86image:android-33-x64-arm64-20240910-enlocale:en-usos:android-13-x64system
submitted
05-11-2024 05:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Stardew-Valley-v1-6-9-49-patched.apk
Size

414.8MB
MD5

b9d95baebef6df8d80e8a409e334dd77
SHA1

e68d00d389eaa237e641c659bf93da54a5d95f8f
SHA256

9cec9614996915ee6689a753ce98a6da7625c1cc59b5ad36f7ba6ab80564b30f
SHA512

e6c7e88018cd918a0ab980ed021919e1bcc1e35bfe164865a2732e330617bc6f56278eddb263dc6c4a3a53a2120c710dc732e82dcfa0662ed907e84b88ec4fc9
SSDEEP

3145728:IWNv93KuTPYNF13hIrcVDe9Oao6sVursC:BNVKC6XqkadZX

Score

7^/10

evasion impact

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

Processes:

com.chucklefish.stardewvalley

ioc	pid	Process
/data/user/0/com.chucklefish.stardewvalley/files/PDALIFE.conf	4456	com.chucklefish.stardewvalley

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

Processes:

com.chucklefish.stardewvalley

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.chucklefish.stardewvalley

com.chucklefish.stardewvalley
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4456

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.chucklefish.stardewvalley/files/oat/x86_64/PDALIFE.vdex

Filesize
408B

MD5
1bc2e3ec44444cd1c677264daff224d2

SHA1
c8ec6890014ce1164999af350aa977e056326c9c

SHA256
a632f09f0e1c794d1a0925f3afd5c7b78bd3fab1a4e3c5bb3f693cb28cff81fe

SHA512
18733d7f69a44f70c30b3f30e449523e5b51bb442a21386a1ca9e44afc23904b495e63bf1dc62f6e4cc1f36078b08a2ac5140abfc846eb4f75527baa78a684a4

Download Submit
/data/user/0/com.chucklefish.stardewvalley/files/PDALIFE.conf

Filesize
101KB

MD5
b23012fb828cc7dae1a986c85b4a5268

SHA1
f2c4e9c0df1d0bb678e3b720e7d2bac4bc1f50d0

SHA256
a240d2d7d7b76e122645e188209c00bb52b89d658f98fb0bc333b7c3c936e306

SHA512
6b3407df0c6298bec3711e37bd649d821c528406f2a61e23b7272c69957a42e80d0d5e3be4caf19369fe1ace88ba14cbe92f884e8042c81ef43d55169a67067d

Download Submit