212491ce406b81c68c0c4e18e093205313d8a43491d1303933833f386e969422

Analysis

max time kernel
0s
max time network
150s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
24-11-2024 22:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

212491ce406b81c68c0c4e18e093205313d8a43491d1303933833f386e969422.apk
Size

4.7MB
MD5

9c911b5309414db759543c9b0fdf8699
SHA1

f2e32f4596aa8f2675c6283be1dd3f6397dbedc5
SHA256

212491ce406b81c68c0c4e18e093205313d8a43491d1303933833f386e969422
SHA512

99c4de7a4f8892f3f53a97ff44f7abe52befb3876f62d1bd18339661e71943b97a905684af641709244527b347773eb85f6bdbb30a60047fa0bbd4d17d420e8f
SSDEEP

98304:Y2gFU1HCjKJiCaByHYFMtVS8knFlGxQq/6kINw09N8/fGC5QXsDK9McjM5xLBtcW:Y2gFU8FqWEVS8kneDyrNCfngDjMfc1bc

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.stoodmight8/app_dex/classes.dex	5093	com.stoodmight8
/data/user/0/com.stoodmight8/app_dex/classes.dex	5093	com.stoodmight8

com.stoodmight8
1⤵
- Loads dropped Dex/Jar
PID:5093

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.stoodmight8/app_dex/classes.dex

Filesize
3KB

MD5
fae425dc7aaede6ad37c847598df21aa

SHA1
0a0a7bb0be6a4e9961d71b26ccc58b260c99efa3

SHA256
86c334c10d0e0fa9431b60c2b827973cc48d82646e9c852dba8a45fec675df0c

SHA512
e195d5c92acd2a9ac92507b50fd4c92cec93ba9458933752178455ae7dfa1aa9a1e24e455edc70d2294ff62f9b3a94a3eee7169a283344d318c60029cffc6844

Download Submit
/data/data/com.stoodmight8/cache/classes.dex

Filesize
1KB

MD5
0a178c2f4bd0d111ccc489673a274286

SHA1
7d27fc5792c304b070bdfd04debc09f9f24f3bb4

SHA256
645754fc0a1c9cd9372ae54309a0534dda552e66fc3afe355bd52e2293f95f68

SHA512
cf6338b6238bc0780fefbd0bf995b18c02e8e21e7223692a3609bcb8e7b10e3afa2685fa5990e1e8e2f216db108d474c6498560a387dd79d8bdcf9bd4744142c

Download Submit
/data/data/com.stoodmight8/cache/classes.zip

Filesize
1KB

MD5
ba79e3badcddb01637d082250a7dc74e

SHA1
d511cfaa770371591bad09bde0cc8fb6b1aa29de

SHA256
4645a761db0771e0d0d769ca75f84cfd1423431f594cece3889a4ba864cafa5a

SHA512
ab3a350f7c66ca9bf135f445e3e9deec4fc471da00a23962e519e45c0e452fec28db523f402af6a2d163dbcfd5c5fe736234bf9186b5f011303b52ecb3e55396

Download Submit