Analysis
-
max time kernel
46s -
max time network
160s -
platform
android-9_x86 -
resource
android-x86-arm-20240910-en -
resource tags
arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system -
submitted
10-11-2024 13:48
Static task
static1
Behavioral task
behavioral1
Sample
xbrowser_v5.0.1.906_coolapk-15090-o_1ica49h40hn5p5h1aqsi5c110u13-uid-442310.apk
Resource
android-x86-arm-20240910-en
Behavioral task
behavioral2
Sample
xbrowser_v5.0.1.906_coolapk-15090-o_1ica49h40hn5p5h1aqsi5c110u13-uid-442310.apk
Resource
android-x64-20240910-en
Behavioral task
behavioral3
Sample
xbrowser_v5.0.1.906_coolapk-15090-o_1ica49h40hn5p5h1aqsi5c110u13-uid-442310.apk
Resource
android-x64-arm64-20240910-en
General
-
Target
xbrowser_v5.0.1.906_coolapk-15090-o_1ica49h40hn5p5h1aqsi5c110u13-uid-442310.apk
-
Size
1.9MB
-
MD5
1b098d0d4a20ba121366a188577a643c
-
SHA1
49b82f60d70da5019d07e021b3566f6f1742043f
-
SHA256
888169a18657fab2ec5e1ef35095f1cf7d7ecb7b4b46dc063050485500a0c0b6
-
SHA512
e2d018efc3e4c17a42b7d60d81bf5892448ab7314a87b2b9fb6371dcd16ec7955ce582ae5cdefbcadb2a515b61ae8abfd8ac0fb0897bb7fecfa52a7944b9a2bd
-
SSDEEP
24576:ONdpRCfTErvADz8Ic/F+aeOewuc51qKFKWYpYKJilqluhN1qDV+PhyFz3h0ODi:OjpROY7AU4aeRw38WPsDQsFz3hY
Malware Config
Signatures
-
A potential corporate email address has been identified in the URL: [email protected]
-
Queries information about active data network 1 TTPs 1 IoCs
Processes:
com.mmbox.xbrowserdescription ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.mmbox.xbrowser -
Queries the mobile country code (MCC) 1 TTPs 1 IoCs
Processes:
com.mmbox.xbrowserdescription ioc process Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone com.mmbox.xbrowser -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
Processes:
com.mmbox.xbrowserdescription ioc process Framework service call android.app.IActivityManager.registerReceiver com.mmbox.xbrowser -
Checks CPU information 2 TTPs 1 IoCs
Processes:
com.mmbox.xbrowserdescription ioc process File opened for read /proc/cpuinfo com.mmbox.xbrowser -
Checks memory information 2 TTPs 1 IoCs
Processes:
com.mmbox.xbrowserdescription ioc process File opened for read /proc/meminfo com.mmbox.xbrowser
Processes
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
1.6MB
MD56c198e1115317a25b7f73a6e0d4a8afd
SHA1df9b42bbeafcd12d77f4af8d2c2856aef39070a8
SHA25622936271be533011b751967d25159286b96c1f29d3a1d75be4ce1d7d50304ec3
SHA512463d5f69dc874d26236fddf8e11f8ca3919073c00ffb345caf60af5f0a1167bdb489b0656ad5c17507dbaba3cde0d3e93a869ac2828da620bd15060a2274d89a
-
Filesize
1KB
MD56a021fe46ec2e549d99376931283ad94
SHA1a813b4b16676b25855f58ca7e97bfc4ea43dc23e
SHA25614a62b2de34a4018138dafa8b8f5c1400a597e420acf89b38734b7497c26021d
SHA5128570131f84c7924a20d20461400f4e09ba3246c5d18a09b2fea369cacfdc5e2bb38e7c412a9061e436b61ed448b4bce8ccdd8e4c8b0d9e1759301a82061eee06
-
Filesize
690B
MD5ea04a17ecfba418fcfb11e1aa73f3275
SHA10b0532c3644fc9a8199a27f8fb357389136394a5
SHA256db8c520967ab234d44e0942ea49357e043e15d8af905c839e59a5cf729eb88f2
SHA512b985ad307039cf97780311210dfc0abf40c1ae98451ac711c641d9d7a0dbe7e5dee3092992f69a5fd3ce519c3c7c2e1e584f26e56f5c06f16766cf1d76280ed4
-
Filesize
2KB
MD5a7dcd315eaf2d22a96c679ff3d22cd4c
SHA1670d2d3d5695c3d0c64ef41f27925dd4a0ac1764
SHA2569ca6095ddbab48feef6848742cf4713e448ae15211be080bef14232dcb8b43a3
SHA5123a835728299aa789985628eb5d26ef2df1333946bba9e6af8a34dd2526fe446d3299714ac4b202f42db28d69ff112b2f80a8f6499519e3e4ddddd9d5e378338f
-
Filesize
2B
MD5d751713988987e9331980363e24189ce
SHA197d170e1550eee4afc0af065b78cda302a97674c
SHA2564f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af
-
Filesize
601KB
MD583d285488a277e0153c3db50ae60fd8c
SHA127ebfb9cb87155db505b82eed92fc3b8b340d75a
SHA2566bd8303f1322243ad3cbd73a9fea540cf4723ceaca2ecac1c4a3927c0ee7db47
SHA5127c2de8766f8ef11f21e8731a8c13830dde305d04b3f0b262a3157cdbff5154350370fafc2944a90645377008f0e35e8c4c39eee986e67fed91dcbc661b28db53
-
Filesize
45KB
MD5e4aabb1f44380fe39e52e762431c4814
SHA12d146272c83ae8986ae0dcabc797b1e66f17c938
SHA256984962f2f589561b6d8e50788b2681e110fb3c5a4c1c6d930b89e4fefb69c839
SHA512b8408f9827383a9e01b55bc19b4c46f48bf5333db8e75eba2fe8b684caefc5ece834b429ab639ff0031b029a5c1cb29024b451628b26d1825710e59d8323be61
-
Filesize
435KB
MD523d5857b8d05bf3d0c9c8750fd235605
SHA1625eeb501e8d43f1cd7a4ff4ee4d5dab699c79e9
SHA256a30d0ae9d217a541a2fbd647cdced0df57f5cbefea6680a770dac2af5e217e02
SHA5126a3232fb1f4ebc9a2606e85e8281790b025a53a8357aa15e860655e30489544e35b3e91853b3e8b79e8e1cea8ebd4da117a1f35ff74322120c18ce3a78a0662f
-
Filesize
3KB
MD5f57fcd5733da1d564a84db85ca3403e5
SHA1b41c82789117869ad21087ce04ceba1650292a22
SHA2563b428fe821e1372b883bd3f40f97ddd0ee4d7af32bef5ab468abddbdfe10af57
SHA512923b10469fa662f28c4c7d93fdd8fe71249aaea649cb30f164683f1f6c7adb68bc343526293a567ecd4004e1353834baa3e3cd2786923df857397a133eee3293
-
Filesize
6KB
MD5b5aab4e19ed3e6ea3849aa25454da2d1
SHA1d3cc843631438c3d1809f8972f9b6026b63e4a6d
SHA25605fd8bdfb400a017f72225e4decab68e80f49ca7c3a74961381f297928553520
SHA5123c2417aeecea23036746390f9b369d741e1e0794a21fa1c6ef6bcccf3a74b4f2e54123eea5d948129d08c88263a5685ad3e4b57eaa24e8e969be718cf79aa943
-
Filesize
2KB
MD596b99a5e8f8c95035acec8980b38c81b
SHA19539ba1e23592807ea22145d16c6ea877fadb1d0
SHA256d61a44edb71d1919947139dca07a6ad8d85071fc05cdb9e9c42c82c8ea86b50e
SHA51240f607c98f42734e1c524e15f2c7eb7d8538a5124d333227b48027deaf5cfbfe20eead5e563bdcb120b9cd92a2163a7b31a15abfdad0df624f5ce2ec2e18839f
-
Filesize
164KB
MD5a05c623e036d5dbb3c4071ed3c2ceb72
SHA17dc4be5d66a891e205d75dbf4dcc5f306e0dd85d
SHA2569f3f7fd608fa069c07ccd741cdfe1584795ac9e90b46d05d45fa7ddf90644683
SHA51253cadd149fbae2d886978812d809f200fc8bd6d83592816bf467c4d877a96586d0668a44b7b5d3823c78ef2961d90ecda58c724566df6175065eaafe47301fb1
-
Filesize
512B
MD5d288e4f6f587d4f377720299581388ed
SHA178aad21fd66860037f746b4005b0e4178112676c
SHA25697c45f3c6b5fb26f65bf3dc8151d7627cf6317eb791ca43b6bb7a3edd41e0282
SHA512bf10519da267bbfe0cb16eafb8bd2c4af6accd0fb7c459bfb9f40f0740452260852cbe42c1717870627bc109113ef108c3b44f392f4a1d48eb50ab59b2d519b5
-
Filesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
Filesize
402KB
MD52c703a2eea049443224add8094d6e13a
SHA12d62a99ce0e4e9000e862b36531ba5cc2f65464d
SHA256c39d8082d76a6e53b4bb31bcf04919cc4a25d4146d508acf637f1ef4c8b1343e
SHA5128461127117ca8449db800ff1c90f83832383d34e30c41fcfdd15c12244e93460556f4cfede88645a3d4b1c03739fc11eba8fce5ad56d99a707d87f6967b48532
-
Filesize
652KB
MD51d4d26e838a9324f2ebd9e4fb80a9bef
SHA1bace4b250a931ea1f1fb1bdfab0086542e5b6ef7
SHA2568f80dfa2ee1f9e87045c3468a7c181a9686b5fc608b6e2f43f381bea79f2ef9d
SHA51283a71a820fc873f205ea4008d8dc59d4b38d6866fbb98b1985fbbb11cafb8668790e542b265bba469af15b25a33606c52aa31231f498ce99517f2aecaf42caba
-
Filesize
36KB
MD5e4d61982263497f8744ab5d46e86deca
SHA1585348d8e1923a2a026751b5ea59d7906f3da82a
SHA25623e01b943df98b3407356336bbff29ef546f6fc689e124b6f4b0615649096d03
SHA5127a9e723572d1660046a1e480ff9ee7a0c5b5935891d5769321c853df4a319e8c8f6eb327cd0e5ee4b22e2268509ce5dd607b44b58aa1d54753fd50ea8f9665a5
-
Filesize
296KB
MD598f85d8cdaad28abb60998c1c889933b
SHA19b8e063c79fc256edce500133378915cfc811bcb
SHA2560606a34c939fd7b31cd04c6eaaa475124efe26f38e528ef8008a29239de31473
SHA5125fdc85768d914a78ea505f95d6f2c74c574c0d6881c062fa32356d396fb8fe2dab1d2ac21c0729ab9f732bdc811962d3aceb2068138d3de0013bebf1ea00c853
-
Filesize
1.3MB
MD56b346018026fc5dc2ad34d52c824fa38
SHA19e5a1009f4e584357e38d291ed26e0d04f5c6c0d
SHA2560fbe5835f447ce978d624183576f75de2c2ba1a9d92e7bcac1804805a32b6786
SHA512ad14f718b391c2f03bfc690c89c354ffbf11d1260ad6d8eb81635c5af73830a90e0d3edb8297a18732004dc7addf8b9721458f6fd5c0e27568113365343d62f4