67c922e0e6634f37c4c95fe9deb940ab3315a959c7f044cef695e33b2afea63e

Analysis

max time kernel
47s
max time network
155s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
21/11/2024, 09:28

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

AEAT.apk
Size

9.2MB
MD5

99ee6e7ff8135d04ec6c5f4ee3b500ca
SHA1

69eb696feec714994c436dd5113f192e95026bc5
SHA256

67c922e0e6634f37c4c95fe9deb940ab3315a959c7f044cef695e33b2afea63e
SHA512

ad4d14945aaa025e6d5cbcf3add04e0cb630fbf9face865c2b808b0be8265cb24d709a439d46bf3e32257401cff0204c4d14ae63755f70417a8558674f8baf02
SSDEEP

196608:beWRlupcIgMaO3bO+6kJ6i7zXw/2kEPEXOn4aUNzp2gbPU4Yd:iOopc1MqyJ6iw+PqI4aUVpdbs4y

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.qutyCcmR.VUidqjA/files/install.dex	4936	com.qutyCcmR.VUidqjA
/data/user/0/com.qutyCcmR.VUidqjA/files/install.dex	4936	com.qutyCcmR.VUidqjA

com.qutyCcmR.VUidqjA
1⤵
- Loads dropped Dex/Jar
PID:4936

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.qutyCcmR.VUidqjA/files/install.dex

Filesize
3.7MB

MD5
a8fa71c2e2aa6111f8ce5cf88a60bdb1

SHA1
fa489a157dd4ebf2aa77637de96aeed9c68244fc

SHA256
8485f0008047627d367cc61fd8c918feb2e77592585d02c0814bd15c0398527e

SHA512
677823f05cb5b0411e8696fe33de4cedbb197ed9d82dc1dbd2bebe8537acaaf2a693ff1ce891e87a599c081267304deb4de24aa187b0649ba10e7a0df4fac219

Download Submit