Analysis
-
max time kernel
120s -
max time network
133s -
platform
android_x64 -
resource
android-x64-arm64-20240624-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system -
submitted
10-11-2024 12:26
Static task
static1
Behavioral task
behavioral1
Sample
jesus.apk
Resource
android-x86-arm-20240624-en
Behavioral task
behavioral2
Sample
jesus.apk
Resource
android-x64-20240624-en
Behavioral task
behavioral3
Sample
jesus.apk
Resource
android-x64-arm64-20240624-en
General
-
Target
jesus.apk
-
Size
11.2MB
-
MD5
618a982fef3bae88dc0bc2a26c0d08a7
-
SHA1
f3099044c3d556c0de37e4811c8744cd87e3ece4
-
SHA256
3487f0c0a5d23c60a49a7a3d3e495fd4bb55d22bb59e4db020988194ae2593c2
-
SHA512
09ee730e1e2c158342e4b64b2e3deb395a4ab9584d226f7106b2142330662daa04e8332d582950a4a7b2efee6e14386b83537f8fed0337541bf14823866e6c2a
-
SSDEEP
196608:wMwfDTelxZN7Hw1wRibvaA+kfhjBstJAtGvGdJFwvfOzCLuRtI2FWSNly:of3kxZ5HVif35jBstJJedHzCLItZFnW
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: Robotowght@500
-
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
Processes:
com.jesus.tvx.europdescription ioc process Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.jesus.tvx.europ -
Checks the presence of a debugger
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
Processes:
com.jesus.tvx.europdescription ioc process Framework API call javax.crypto.Cipher.doFinal com.jesus.tvx.europ -
Checks CPU information 2 TTPs 1 IoCs
Processes:
com.jesus.tvx.europdescription ioc process File opened for read /proc/cpuinfo com.jesus.tvx.europ -
Checks memory information 2 TTPs 1 IoCs
Processes:
com.jesus.tvx.europdescription ioc process File opened for read /proc/meminfo com.jesus.tvx.europ
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
4KB
MD57e858c4054eb00fcddc653a04e5cd1c6
SHA12e056bf31a8d78df136f02a62afeeca77f4faccf
SHA2569010186c5c083155a45673017d1e31c2a178e63cc15a57bbffde4d1956a23dad
SHA512d0c7a120940c8e637d5566ef179d01eff88a2c2650afda69ad2a46aad76533eaace192028bba3d60407b4e34a950e7560f95d9f9b8eebe361ef62897d88b30cb
-
Filesize
512B
MD5d43120a4c1394edaf15440ca2ad96f6f
SHA1f5b58568c031f6fdad10b3484897f26005ed8313
SHA2560b5d99c0ed55859be358ce61daeda8c29b27a71ea1cc1ba07ca227a2766f17b1
SHA5123ac5f24c9c75531131ae306e48b504c10c103dd496bbbb7b2d0cea37fc4c2378fb2a101c80ead84ead94c336ffbe8b2a687004984fd664bd402833a16e8f7fdb
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
16KB
MD595bd2c69459e130cb29fff81ec85bc55
SHA13aaccc1e28edeed5cbc746caebc45233aee56775
SHA25605f29da9aff609a4d5f4cfbcb39b5588437211efcec497a84654af3dde46fd5a
SHA512c998c68702c533256302390e8f771ef3a217c711f1fbb387fe10a5a751ed08988d636809ac50396407ef6c534bbb97abacfe563fd7b5ed4b3cc281e0f998285a
-
Filesize
108KB
MD5bde5e4352ca2721a2745b40f86c94d39
SHA17b7897dbe3830a546106451e2fd6c7bd1088d1ce
SHA2563baf70d62cf50873081ed74af7827073056947771a55878e2a4a5f868b883822
SHA5127fd2d9d2349e8e0afaf8a1558da9a0f9fa0fdf29531e17294d5ee2cef403ba3f0c0a36472d2c49eef6e2ec00e282a272c18bd535a476235db3eab9adf40e4e88
-
Filesize
62KB
MD5d971dab27f9216143713d2d8736767f6
SHA11f7c7950fc65ca69c412411a3761e7f537626ab3
SHA2566d384ddd84c9ea6035467a2b9d2637ede7698d358dd1e7656aaf758999bdb106
SHA51210011efc32f99d56e27ceb0b9f0942cc2653a3219e2ab0dd3b99e5ae5cabaa705e0d8eb35255d7d96e93e026b4673ace02cf2385ed61df3b4b07d6231f583ff0
-
Filesize
83KB
MD5506eb0dabe2cddb6d30b2ad9205492df
SHA1b1044ff16672db56ab563e9f29e672384c6ec90c
SHA2560e3ddc8a505cf85835266d2cd0930260ce82792b5f3397a80286b005c35cb004
SHA51202728544ca1f19c12dcee323589b94bf5c93899c47be535c0dc412001b29ee8885fd526992455f7e2caac5e23b38fd19e8e8bee91a8090176c6d601546edd4ec
-
Filesize
8KB
MD5628068a0fff99ed4d432b0050a0e7181
SHA1b9be831cebf42827c8161083ee43e88f496ea0df
SHA256bbf4c726f0b374456bf367e3e051fba3cc396c7987ab64f0e92da56d84e057aa
SHA51268a8a16e8625af35f5ef27a80005f147d996ea63bbf9792d3ddeabd6f2f9e2efa02caa78584d9181a8ddd00dbf34ced8fc84b57b456dd23a878b9228d613cbd0
-
Filesize
11KB
MD5c676cb3e8e643bc437a855606c4b8d3b
SHA183803dc42775949efd0bf9d73ae3729d3aa774b3
SHA2566eda5f63d9b687243c296bcdecab71829bd4b92fbdba85e4eb15b646cdaf72b3
SHA5129ae937ed13719fb5519d299ceaa095fa9f014eb78ab378a5ac7da529c443820f9fc5b81942c748fa8683e2ec841554509a5a1e28fec3b5ce38c1d9a3d2ec651e
-
Filesize
21KB
MD5dfe56e312cf543c11bd262b89ad6cd4b
SHA1dc029450b2ca1be88819ec066451d1586580168d
SHA256c573aee4767c8a052c4aa86aa31fc1f55a9d06b1aae0d4a67c9cb2127e2dfdd1
SHA512a2b11260cb4426994deb021b128c0c6605604bf908448e2d22c3f70b0f6917d2a625c8a2430c2c38f8081292dbf54d70752b8ab28bbeeea953143b895368c4c2
-
Filesize
183KB
MD588b4d9013dc9e3a220978e269a3be2d5
SHA1d664956d8ae274c4e6894e29669487327b9b6273
SHA256e79cce84871c6e2a0a1427ceefb18777eff1d98577b91aec21b10abe930315bf
SHA512d3e7e7905d9a057d271a1e763532199507c46478aa3c6df4f4fce4ed15fdf91ec400fe2ce75e7ea0953e4560e66af8c47a08a31056f5a0c232e9fde825e1bc18
-
Filesize
3KB
MD5509e2873ee5a87edb6fee1ac82ee7b8e
SHA16ae354618c65196066dc940d4913f8a491581dcb
SHA25648764b69a9c835bcea07aaef10d694f59f6c46007392f1d81f1143f8f7b40050
SHA5126f6d974ac9553073faa3a4d513a75ab81e51a6dbb1ae0f5bd3995d625d54944659e2400b5598d9f65b243ec043de81d832ae7b8701711b00004624f0bcbb5401
-
Filesize
2KB
MD5218409d824e57bfeb527232131b707eb
SHA1763885d6941bfb4b3ab9769da0dcb439d9f3a500
SHA256e82a253876825b61615f1a46d57bb5e1b8d24af8c27f7d5888c39312ccbd8c83
SHA5121f820a4aac96359668ee12c1bc937b9b6334572f15554998cde2a9cb0f2f378365bc444fea943a6a35685ddcfb286fbbce0f5ef73d59ca55fae0028095b75632
-
Filesize
4KB
MD547fa835f002152f3c958bfa9668e0e4c
SHA1f3fecfa4c30d18818d3f28ac843345409ceb4aae
SHA2568837ad97a7e730698e954cff61139a2d0d6a6e08d8de5f9080eafb4ce6d4aaa1
SHA512bd737c023463bd2bfc32478225f16b05a83c59257f885f1c5fd2b1ed04ac53c1e168ebb9719e0caabb1b12d51319bb95d26de5e4c9d4ef58150f5356a393ef90
-
Filesize
5KB
MD56beb6a0c2c22cbf153d1d9dc146e9f41
SHA1d479f29db556d3aa0162ffce67347de17ddf18a1
SHA2568279236b24eaaeb8af9f200236b98a824c5d2a652c41961e895f397dc9d3c047
SHA51211137e0a126e305c808f8dd7c589af6777359481bd8e6829f12c02f75d44cd8f873f23d0d7c3b9ea806dc2b9d6515b1b7967953773ed72a858554b5df3b05947
-
Filesize
3KB
MD57b34d27ffb1121b06ddb833e6705af30
SHA1bb9926b564225f3e99f4fd430c149c0945033ea4
SHA2567fbe302670f9b0e5efc93ad93f6800f7084a14da9afc46804c7e8486185ab8e6
SHA512c9cdfb8ae73f4d00755d898be7828aea332a41585e0bd64b7319d20066b4d6326ddb194fbac6d51081974924a47300e4795266d95aa324eff03cee9e8d4a3b7c
-
Filesize
4KB
MD57268482a2322c2ec87f8b00e8ae14117
SHA1dea8550a618f4e12f4a32f45df0f87fec5a96c41
SHA25688dbe83df34020bdf844007f69c23bc5c5f1f520068f532187961bfc80252a71
SHA51211dc619212c4a4b9293bd89abc493ddc4e773ed00d932ed41139dfc2c02777db845e4f3bdf0a3b01ae3bfb869e6dc5f0de8c88aac736fbfe6dd3e0f2ee96c7ae
-
Filesize
6KB
MD5828cd91a6cc431ba85890afa32a558c4
SHA1748e6ddef8f85a27c264d05869c29dfe8bc2a11d
SHA2560bf1a96abe941dc24f524417a746f9659d72351f5edef7274737ac56a3adcaaf
SHA5122466822636959f77a368ed297d84e8259538c0d206b0b9aadbf20932010cfb164c64a3c271773d292dc12b38f65fd8bd96767f77ba1144dcba7e8974cc3824ce
-
Filesize
8KB
MD526f87ef1465ac80e4a90e57b8f6bcd5b
SHA1ae9723040bdb7ebcc7730234dcab6fbe642fc646
SHA2567d6d90e47b487cd26e4bf58c077526188d886de050ae6008d83c72879551614d
SHA512b7cc8a3fb3b67ddf1f48797edb2d3ab4a6e009f70e326ce05a89ec760f7e72565664652b8efec1bc661608d3168a90e97d533cd1fdd6f1cb3cb8f1d6c072d5e2
-
Filesize
4KB
MD58f8bbead3d002beb513deca073f2d796
SHA1af5a89bb8d156bb82129f042540a2682e7c80e2e
SHA2569468821af0be226a0fd39aaa2dcc9ec2bc70b24960cf898a739301fbc7b7d2c1
SHA5123828654472aae41cd7c39841c1b8f780d8f0bef4ac9dc75f6f11c62d34175fd3ccb7ca5461eca3242b50d32c8a8ee49a2f4871fc9a41cfa416faf56cfc245a25
-
Filesize
5KB
MD595821055a8af0991e02330f0e18c345b
SHA115d7e41d00d3812fb4245ba3865cd7dc3a6cf350
SHA256db4cba9739eb7a08f82c50bba877a84823859bf65b62a400a24e7d382192d9ea
SHA512d5ffb388e3d8719fa5d8597ad952f528b5a5420294b9c58004a08b3772e0dbb07aa757a130b27474d7b32c0ebcbb1edd0ae04bed3150306e4e0291af1f141f99
-
Filesize
709KB
MD5b5e09e9cd7f475ef4a57a02758115aa7
SHA16a1eb5fed40ee794e00c3cc77c993f8795f39179
SHA256a0c3b24f1e60163772b812b1d04a521486ed021fc6131575b592209ad2cd87d9
SHA512b9b18858b6274d5c7a40ffba70b9cb1baa18074e86f5dc1a2458613a51fdc807a67926408be2b0bd909a9aea3568d9b997c37352472e496290d17e3a80f61b0c
-
Filesize
923KB
MD54550f47bede967714a9be088d89ce269
SHA157fffab360d3587eb1caf0910e784202050e1274
SHA25644a67e2b32276e481e091a29d7bc3b0d47ed6b4b4b4e3534728c9dd2aa900f11
SHA512b07816d170e433af7d4c6f332bc3366d6fc30243d1d31e0940fd478f05c6934b7d390b3bc0b0c5ab8ea2ac3e729e596f8f7aea7a79c0c9b002d796692b10e3e1
-
Filesize
114KB
MD5f5037a056dd4db98c00cfc17681b784a
SHA179bcb694575d538aa512d8c3d68b7f4e7e78815f
SHA2565faeb6aa812d7b319287e71e25cd3c1aa1c7eb355e76cf4a143ddb293456e4cb
SHA51233e38e3a905aa5351dae38c6692a0a78947d219c4e7c32c624defa6b61083e2bd7600b738b9983eccc63d6639b313c4d729f78429dcc6ca8911f91356b59fe4e
-
Filesize
86KB
MD52f772fed444d5489079f275bd01e26cc
SHA1a8927ac2830b2fdd4a729eb0eb7f80923539ceb9
SHA2562b381363dda049f2d49a59037b228bc865d51ffb977c8f5c3547d5c28de48e3a
SHA51281f3b4d35aaa98af19a4d31ee5399d49e0f70ce52aadefffbf42c6c4489d9d50a49450eec8e9139a009da82b57bf677665a926d5ae913dfc4c74baeec186c422