Overview

overview

10

Static

static

6

cf37ffa890...0e.apk

android-9-x86

10

cf37ffa890...0e.apk

android-10-x64

10

cf37ffa890...0e.apk

android-11-x64

10

Analysis

  • max time kernel
    149s
  • max time network
    148s
  • platform
    android_x64
  • resource
    android-x64-20240624-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
  • submitted
    10-11-2024 22:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    cf37ffa890ab1d5d0af1796f4a94fff2adde0b7f362651d1aa05cd721700a00e.apk

  • Size

    302KB

  • MD5

    2c61604da35ef79c70779e91d0313c05

  • SHA1

    a30b8c223574b4789bba8adbf20b36d5cb4af57a

  • SHA256

    cf37ffa890ab1d5d0af1796f4a94fff2adde0b7f362651d1aa05cd721700a00e

  • SHA512

    d96a07d196693845057aca285895a369ccbccb2999114638c443dff083a0aa769317db713a018698b42a2d8b082a486f195c51562467753467f1a99693c95365

  • SSDEEP

    6144:dNp2R30Ezr4b/xhyfuZWxm8WNXFRD4eWOHPg7fDsBv+8pvQs3qelv4:Dp+EEILL4tOL4eDUsBv9dQsDlw

Score
10/10
xloader_apkbankercollectiondiscoveryevasioninfostealerpersistencestealthtrojan

Malware Config

Signatures

Processes

  • ebyy.bpzmf.ccdsu
    1⤵
    • Checks if the Android device is rooted.
    • Removes its main activity from the application launcher
    • Loads dropped Dex/Jar
    • Reads the content of the MMS message.
    • Acquires the wake lock
    • Makes use of the framework's foreground persistence service
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    PID:5054

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/ebyy.bpzmf.ccdsu/files/dex
    Filesize

    580KB

    MD5

    8c7542abcfd5e2c08e99555d8d0bc605

    SHA1

    5f40007a5343603be18a1ce3c39ce43604099be5

    SHA256

    0cd2b17aa21cd8de63842da21e3464df7bb2bd4a278fffbbfea6b294c3ca9e6d

    SHA512

    362c7dd23aa52a9c72e9d90eebb99e1d4e4cd01b68348249bbeee4bb407728aabd30874488926635bacb2e1d640ad4e95852e345afa8ad66057c80c8f768ed88

    Download Submit

  • /data/data/ebyy.bpzmf.ccdsu/files/oat/dex.cur.prof
    Filesize

    806B

    MD5

    27f46062ceebb8afd20245119849b5f5

    SHA1

    93176ce3bb8af1d9c742b17915f89be4447f8184

    SHA256

    e9513206ef90adb93a607d492ee5d0bf238cd9b8f7dfdd021afd5022f1618cb5

    SHA512

    bb4cd9c6ba7e6b5b804a45afebe21b32ee900bcf3aba8543629d6e0ff9fb67915da5ba8df5a1945fe1464b3351fb046445862895db16c22cd85fab104e665ea5

    Download Submit