85c715875ff599792ac3d78d745bc20e5cc16950db426df901b5e8c381344a69 | Triage

Analysis

max time kernel
3s
max time network
68s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
01/01/2025, 13:46

Sharing

Report Analysis Logs

General

Target

Virgo%20Music_71.0_apkcombo.app.apk
Size

75.7MB
MD5

b68ac3da2a19ade8124adf31eb1a9241
SHA1

ecd87796cc73b1a9c2f2f125f21d58147b80cc37
SHA256

85c715875ff599792ac3d78d745bc20e5cc16950db426df901b5e8c381344a69
SHA512

3ca30d9e06ac78c626645614a752d6ce5fa664664860516c3a9a3eb2a00d0a0a2714b45c7bdea8d6eff78c129337d9fb17cecb14e9fdab899f60ef9a46ba3073
SSDEEP

1572864:8JH6kN9qGk9vRHQDpmrRObmLMgv1m8I5HpjgMY64:8l6kWGk9+DpmrRPrk8IpgR64

Score

4^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

Broadcast Receivers

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.virgomusicapp.com

Checks CPU information 2 TTPs 1 IoCs

System Checks

System Information Discovery

description	ioc	Process
File opened for read	/proc/cpuinfo	com.virgomusicapp.com

com.virgomusicapp.com
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
PID:4269

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

Broadcast Receivers

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

System Checks

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads