Analysis
-
max time kernel
127s -
max time network
137s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
10-11-2024 11:59
Static task
static1
Behavioral task
behavioral1
Sample
deeptvpro-v1.0.73-android.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
deeptvpro-v1.0.73-android.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
deeptvpro-v1.0.73-android.apk
-
Size
26.8MB
-
MD5
ce79089f2a1e87f6c2e36bedfee6d950
-
SHA1
76835fd650dfdd3b0096ab1a9de1d4e8b5a6a860
-
SHA256
9a94eed24f15400eeef247b8eddfb584e9ab4b45e39e3922dd838dddec8f9933
-
SHA512
c35c1bdd081ddc5e9995b8969c12ee271b0a945b3d418ff47efbefeee29511f63dfe1e322738679aa27e69c79b8af0736d4898daa3c3a999185b837324276a5b
-
SSDEEP
786432:q4J10mUQNQuLpbHTeX3lPQQY+pS/MhgjB/:qoUQSuLpOHpQQY+pxgjB/
Malware Config
Signatures
-
Loads dropped Dex/Jar 1 TTPs 2 IoCs
Runs executable file dropped to the device during analysis.
Processes:
com.deeptv.proioc pid process /system_ext/framework/androidx.window.sidecar.jar 4486 com.deeptv.pro /system_ext/framework/androidx.window.sidecar.jar 4486 com.deeptv.pro -
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
Processes:
com.deeptv.prodescription ioc process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.deeptv.pro -
Legitimate hosting services abused for malware hosting/C2 1 TTPs 8 IoCs
Processes:
flow ioc 43 raw.githubusercontent.com 23 raw.githubusercontent.com 24 raw.githubusercontent.com 26 raw.githubusercontent.com 29 raw.githubusercontent.com 31 raw.githubusercontent.com 33 raw.githubusercontent.com 35 raw.githubusercontent.com -
Queries information about active data network 1 TTPs 1 IoCs
Processes:
com.deeptv.prodescription ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.deeptv.pro -
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
Processes:
com.deeptv.prodescription ioc process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone com.deeptv.pro -
Reads information about phone network operator. 1 TTPs
-
Checks CPU information 2 TTPs 1 IoCs
Processes:
com.deeptv.prodescription ioc process File opened for read /proc/cpuinfo com.deeptv.pro -
Checks memory information 2 TTPs 1 IoCs
Processes:
com.deeptv.prodescription ioc process File opened for read /proc/meminfo com.deeptv.pro
Processes
Network
MITRE ATT&CK Enterprise v15
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/com.deeptv.pro/code_cache/flutter_engine/f40e976bedff57e69e1b3d89a7c2a3c617a03dad/skia/795ed944ff5bde5916d193824589d3bacfa61a7d/705add3ecd0197f2b88943a82db10f640105cfb2.temp
Filesize940B
MD504598b97e3b7e87604904e80967a97d9
SHA155d491c1338831e5f444f752fa2e1d4be4fc325f
SHA256e09703745ccdb2d7c36ac9c8dcecbbb9bb9f99b4c521a843b4d8b3ea35e76013
SHA51269563be346034ab72ad0ee172ec136c50ad45853d17f2060c9774eb78ba3ebd82316bfda15592103971477b78cc1ccbabc9301f9c033464d1c2d336c059b8904
-
Filesize
57B
MD5022a6c5ee4dd631f36a5604321019de5
SHA1eb62b8f78868a91e3362c93bad83739d05670cf4
SHA256e9344f3175fd38732d4b9cacb98dbfe0d2faf36370133061fdb993864bd2f8f1
SHA512698872c79575e8009116df9335829cd3a8d84c69b42a97f457e2864fdd02f147c4b4b64c76b7e850e42351c508aa60cafc4004343cc49e6b97a7cf54cd7f7b2e
-
Filesize
657B
MD5794d6697c6da913249f0b2dae187e57e
SHA12d218bc24889d75a0c2057891502beac41fe3933
SHA256bcebb5f41fa71faa6fa5601d65bbb2797c2c0261acd026dc3bd012f9641223ad
SHA51284d825ad03f5c1ac35696596273f53c2c7426368f8d8608ed241377ccdefff52775df929fb8664b05ccb3c7ac88dda0e38bca73c35cc1ff12688f0767a274264
-
Filesize
793B
MD54f6b95f8fc061b48f0f7c34452770e07
SHA135240600e11ad1c6b35db3b41b09445479413bcd
SHA25621598dfe9f11c325ea8b7cca389c46dc2bf05d252483ed87ffa92978dbc2da2d
SHA512298d9ad6b204020f90251d89f23f62753b98326bbce248dcd06ffcad725ead32ee0c158d133cbf28631e4cb1d1d0e2ed924a95ec766881f4889c3d9c003636b8
-
Filesize
1KB
MD57d9c6f89cd0b06aa85106189e99ce3ff
SHA15ec62bca974168b61f8317d5082f35fb879004fe
SHA256114e0eb0cb8b56033afad66e6ee0bd445b173463d14babc3e77562f50b6b878d
SHA5126988a1ccd79f41eb6aca7e49fb965ae8b544856d1475b3239d1ec9c0c3dce952c62c0ca9f323a6701d50cc1cf6ec8b6386d66b2c1b19303b2300364ea9ce59ee
-
Filesize
2B
MD599914b932bd37a50b983c5e7c90ae93b
SHA1bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f
SHA25644136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a
SHA51227c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd
-
Filesize
8B
MD573a5700e193921253fff1262cc020962
SHA1b1fd0dca44997f2e9b7e107ed103af9a0fc3103e
SHA2565a5ca6125c53a082c49517a0f145f38fcfaa653a3b48fec0df01537cfa94add1
SHA512b7072f267f4f37bc0e5aa361063321ef6803d9f6a4004ce93c8324b602be7dfc03da8252d9021a8a35a5e203c74d205b5e67172f19a9c94d19690b45524414a6
-
Filesize
4KB
MD57e858c4054eb00fcddc653a04e5cd1c6
SHA12e056bf31a8d78df136f02a62afeeca77f4faccf
SHA2569010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad
SHA512d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb
-
Filesize
512B
MD5d02b2843c0dd010bb5429ff4f8b188d5
SHA18f2865432aaf1759b69d1b0752ff4c3aa16c1ed1
SHA2561680930bd28c1e39b644722251ab2e99cca99fc8657fc791888f264fbda6eb5c
SHA512a44f633fd00a2ecf742f23608c4ac4884de5e9fe072484234bc2b6493b315a60845d5c483031645d3ac98ebc32ac427de5ddf0dbfcee17058e84a04b1a6ed405
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
16KB
MD50c6f77850f350ac83e358da75dcfbc08
SHA11176bc89eb2b5d1499a474d7c3b9ae7e44a6954e
SHA25681a751e5d3ec0477aec737f9c129160707fc79d3df15fe5cd5a8e631d1c416de
SHA5121c93cd99820d0a03adde891dea345b2b63988515e2991a4fbd1631535b92ac68c6ed814b94238f47393f95bc7ee3cf8b237ddc1d6ada4991c694003eda3f708f
-
Filesize
108KB
MD5e76314b8e2cf2bbd3783d9f5e93cd604
SHA1819bab70c8e234699fa41267be4777a73c63fd5d
SHA2568edefcf5d6178d33619a427d15a745e2da62d0f77587a9ad7e2eb131f09253f7
SHA512983d4e8987093ae600e3ef76845cbc00a602b2c13980ebecd710e635089b189012b3e6175c273d2ef422bd03013434ae1113b59b710552dc1f825ce0553e6632
-
Filesize
939B
MD5b0b7b878414522a74d151c161360d861
SHA15f8cba33f2d886014b9eb9c7adc96419b2eea9fb
SHA256863f69114be5d4d6e283d533aaa0fb8cad3ab28b1857f5234792a8547110d9f5
SHA512726de7ccd2ab4d333dbe5e8d8396a1d9737c39235757f8bf7b5cbcf33278087d11ab02e4d5639dc44df321a53ff77cf897f73d75a13f8a1f0aa3c6d163fdc1df
-
Filesize
5KB
MD5f2c90b9530b44c791a315dfd41fea759
SHA1501626e010a25c4de1cc47d06ed18d73c8acddaa
SHA256f44e72ce40d3a10f2ec8af5520fba7bdfd19d82978dc5d138f3901ef3f52ed23
SHA512db18ac05ac9317503c49aad15d70265eba4c5fd30f1273e3d628e44ed5b3eccdfe35fc0227422b86b7ee68abbe6d705e0ddec929a8a450f070fa3bf87fd47b3e
-
/storage/emulated/0/Android/data/com.deeptv.pro/cache/UnityAdsCache/UnityAdsCache-970ff7995b1180be3246460fffd0505b163fda214363799cf3344550564932b7.jpg (deleted)
Filesize13KB
MD5857b236ad1f951448c20d86b40bcc0c6
SHA1f32ce8dc9d2909b9472802fe2f68357dbf4fb8b3
SHA2563e6d598ea39b82e6225e814fbc130562273919141716bde9d04a57b6c968bc56
SHA512aa6355b06122d9b168f729645a1db277be0f6af4ec407b17a1bcd244cc1c381c972311302cfa13142bf5847f4d79bf078df8ba1721847d9190ea8be7de9628b0
-
/storage/emulated/0/Android/data/com.deeptv.pro/cache/UnityAdsCache/UnityAdsCache-cc809aca30d33cd3e9d3fc1954e2b712a3227ee1b16e84c0a78684da9b1a4f79.mp4 (deleted)
Filesize2.2MB
MD5283a846b3303a0d026d872ba5a7329f0
SHA19f6e229ca5565d82513b6c0d4f592528c9f9d748
SHA25674451749e2d08722cc9aadb41dfbed65489ea132e0d32dd74fe5569aedf6f077
SHA512ef9eb6ce3f8b374b894b65e0dde734fffbcae25fd717c77a1d627303dd0c5acdabe35fa417863e41d5f46e75568bc1f4ea21e8ddb737b68e82db45b172f6b183
-
Filesize
4B
MD5098f6bcd4621d373cade4e832627b4f6
SHA1a94a8fe5ccb19ba61c4c0873d391e987982fbbd3
SHA2569f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08
SHA512ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff
-
Filesize
2.2MB
MD54c0d2d09fbdee3a5e3df0627dd05ca57
SHA1eba1252e3e23d0a9724f9ffb63c3c950dadf5ca3
SHA256d049875ab9a3f4fe9d7d63dcf2cf8825b173c963c7e65e0ce9eb0a17aa7979f9
SHA5127af635e2224a608fb83918ebd41d15a5a4f2b7410623ebc0499f164211e677661e3a6ba268c11f3b435139a96bd0bcd1f65d61a57219079d07fa0e730132483e
-
/storage/emulated/0/Android/data/com.deeptv.pro/cache/UnityAdsCache/UnityAdsWebViewConfiguration.json (deleted)
Filesize746B
MD57e437222cc90692640b59777e37eca8a
SHA1bfe9154bd08aa11f5c65354b1586ad7ebf6cc716
SHA2567190a7073a2b48af477dbb6816c434119edce82f36a8aaa9e475ed43387d8c39
SHA512c35e0461813386fffe576f397df39d6683e2758c3130cc90a098d31926d928019a76b4c53221fc9ad4c1f5cb835a7510dd640b58fbb4ee41c7114fb2deae8223
-
Filesize
12KB
MD5bdf3529e80318eb14e53a5bf3720c10d
SHA125c9ace4b1af6e80ebb2572345972c56505969ba
SHA256bbc8300dd1e9cd08de8f66560c1ac2c928615b72b51cef9649f88974f586d64b
SHA51248b9c2d01171bb651b9b54826baa51f4add48431a3efd8ceb5f7cc3bcd6f8f37edf47fabb24349dd15b3a02329cd450f90a8d164bf4f8dfae554bf3b35a8a55b