117101d135b6c86d733d07b3c7f7acf11ab4048e6c1d9437777301f85e29bd76

Analysis

max time kernel
0s
max time network
154s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
25-11-2024 22:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

117101d135b6c86d733d07b3c7f7acf11ab4048e6c1d9437777301f85e29bd76.apk
Size

4.7MB
MD5

99968e13662d3b71e2100be41ba12e51
SHA1

d949eceb7d63169dbeccb0f50a2fdda2dfc671f9
SHA256

117101d135b6c86d733d07b3c7f7acf11ab4048e6c1d9437777301f85e29bd76
SHA512

e2ebc209e8d22cce33736877b0687764e0f2feade2c2eb8021b747b5f8670330cbba228fc14ee0c90f71bcdaaaef2ab427accf53999d3725962b330bb02f2b25
SSDEEP

98304:lQmC7E8S3X7EFZyCoeHXU51YQTm77BGTN8QRAdJEaqK0vowqYJxIkWVnyU9PnqZs:mmC7nS3X7EFb7uCE+YTN3AmNvowTJx8J

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.inoftenljby/app_dex/classes.dex	5159	com.inoftenljby
/data/user/0/com.inoftenljby/app_dex/classes.dex	5159	com.inoftenljby

com.inoftenljby
1⤵
- Loads dropped Dex/Jar
PID:5159

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.inoftenljby/app_dex/classes.dex

Filesize
3KB

MD5
097714133606e1cd6e6db1c1e4eab4b8

SHA1
9878f217f67952220fa609c03276f4cfbc21cc14

SHA256
c945a16d2b001fdd92573a377769305f2390ffa112685406ccdce23eac3d79d4

SHA512
970d1605329cedb3de6fb72a7e1751168ffe3bbce82fc299a49e3662f9e0cc340eb4f9131c5a2ddd7cce31cff528c3a8a104885c540612269b0a76cb22aaad5f

Download Submit
/data/data/com.inoftenljby/cache/classes.dex

Filesize
1KB

MD5
04d8a756d9fd61cc96043208d34c6593

SHA1
903a3b5060ee94f7d72b263733875586b2380ea9

SHA256
3ac6b1972819ec4659327bda88b5c48376cfdb8e15b11f1768f2f8f4af47dd58

SHA512
46c1d7ab6e81fe56f7e7d7edd8017b8cbacd008655e0642a0ad663150b2e445505821f010b0c74a02bd2e027e4af17c3389af3ed0c114c611d8b904750d1bf20

Download Submit
/data/data/com.inoftenljby/cache/classes.zip

Filesize
1KB

MD5
39c72b44174a40e93ae19b627d0ef90e

SHA1
40e9c2416672574cc072916636fda3ec04f33a6d

SHA256
87bb8884c2b94d726a0ae4e4ef3721d8d47685d731ae13f4fcaa263e35d35eed

SHA512
84b64b18cba0b37c341a8eb2a6a314a64bbeb3b789f6dcdae308e14fb6e089bbf57e7f5245e41c416feaac3a5a5dd5f2c97091ff0a351b49e429eaa319cfee78

Download Submit