Overview

overview

10

Static

static

6

10c7bacd6e...53.apk

android-9-x86

10

10c7bacd6e...53.apk

android-10-x64

10

10c7bacd6e...53.apk

android-11-x64

10

Analysis

  • max time kernel
    3s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20240624-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
  • submitted
    21/01/2025, 22:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    10c7bacd6e5f1fef74285335d2ae999082737335f6daecc0df0cbd497dd74453.apk

  • Size

    3.7MB

  • MD5

    3f7856556b493e826f33e144b2a89a4e

  • SHA1

    33df6eacecdfb0396c5e3c7a797fb0dc55e604dd

  • SHA256

    10c7bacd6e5f1fef74285335d2ae999082737335f6daecc0df0cbd497dd74453

  • SHA512

    6962ca686a629bf4c41677237dcfc6e8684ac2d36a7f8e1b66e68396e11bb534ed6dfef465fb59c016a5e0bf24c142ddfc4a01105d76abc6ed58936963a99f65

  • SSDEEP

    98304:fw02VWIbXWPAZx1ZWMNJbb1G1yxuZdMiltqaF/9aYmg5P6:Y02VFx/LH5bg1yxkMilD6

Score
10/10
chameleonbankerevasionimpactinfostealertrojan

Malware Config

Signatures

  • Chameleon

    Chameleon is an Android banking trojan first seen in 2023.

    trojaninfostealerbankerchameleon
  • Chameleon family
    chameleon
  • Chameleon payload 1 IoCs
  • Loads dropped Dex/Jar 1 TTPs 1 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
    impact

Processes

  • com.sting.enrich
    1⤵
    • Loads dropped Dex/Jar
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4340

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.sting.enrich/app_ACRA-unapproved/.stacktrace
    Filesize

    2B

    MD5

    99914b932bd37a50b983c5e7c90ae93b

    SHA1

    bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

    SHA256

    44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

    SHA512

    27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

    Download Submit

  • /data/data/com.sting.enrich/app_DynamicOptDex/Lwye.json
    Filesize

    814KB

    MD5

    b20d606657ae78458e149e2aa43536a6

    SHA1

    f200641df62298b6b315e8204a715b515d8a2cfe

    SHA256

    9dc4370b65b2e10b9405cf75e27a224e42c0132fcb9c8b4bc73362a0648fe07a

    SHA512

    33898ef9f4bfb7c913cc1938b3a12978e0eedfc25eb2d52549e6fb4f7bad96f60071bcec6caafc7e255416cb08f8996b78d950951ca08629ebc1e3679b06c029

    Download Submit

  • /data/data/com.sting.enrich/app_DynamicOptDex/Lwye.json
    Filesize

    814KB

    MD5

    99d39f17bca1391994e6167839130f0a

    SHA1

    07f980803b726a95317fd8e2406633c8f5ed7040

    SHA256

    717b10e71b51d075aa60dd9f243bb17840bb00b2fd24d668beb7af268b6fa3e1

    SHA512

    2f200e7b7ddc1447efc5e415d044f6433fa17037a1459d24ccc9dc0ea03e902b4b9d5776823d3b5598b7e79f5a9ddbcbda1d9c6fef42a4228434a077176ea506

    Download Submit

  • /data/user/0/com.sting.enrich/app_DynamicOptDex/Lwye.json
    Filesize

    2.2MB

    MD5

    6d33be2df929194f0718f34b5dec9725

    SHA1

    40332acc0f071044196d03735d5b0a9b2681dbba

    SHA256

    8e534781589615c4a058d4821104bf4e56c8646ed9531dbe6e3da8f4a7c69139

    SHA512

    1760369f54b64941689f85701e7b5e94f87b799bf57bb114de9a57372b426b33fd4fb9c777fa102ef632460322a271a4e40a894d06549974b42af890b7dbbaf8

    Download Submit