Overview

overview

10

Static

static

6

d52ee13dce...f7.apk

android-9-x86

10

d52ee13dce...f7.apk

android-10-x64

10

d52ee13dce...f7.apk

android-11-x64

10

Analysis

  • max time kernel
    3s
  • max time network
    152s
  • platform
    android-9_x86
  • resource
    android-x86-arm-20240910-en
  • resource tags

    arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
  • submitted
    02/02/2025, 22:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d52ee13dce622c4a50ec560f8076c06a617299d7d1200621c59c93c03573a0f7.apk

  • Size

    3.1MB

  • MD5

    6d9a4d968e9976511075bf85cf70a27e

  • SHA1

    f5be6c82c2d2523dac22c8c9d7b9fc62b66b59f4

  • SHA256

    d52ee13dce622c4a50ec560f8076c06a617299d7d1200621c59c93c03573a0f7

  • SHA512

    04cd1e1fd839b85448555eefd1dcd30cb095daf70104571f780ce8bb7bed0e8754b3a82433230b8d2f8bd792a7f1f9e913a092c1b3c21595c84bd8ec5ca914f6

  • SSDEEP

    98304:PJigB3CtahhaNmXZEzqrMoXNR45unnzHEFqSgHWkG/WObLXQWmpIc8x:8A34mIuwknhkx

Score
10/10
chameleonbankerevasionimpactinfostealertrojan

Malware Config

Signatures

  • Chameleon

    Chameleon is an Android banking trojan first seen in 2023.

    trojaninfostealerbankerchameleon
  • Chameleon family
    chameleon
  • Chameleon payload 1 IoCs
  • Loads dropped Dex/Jar 1 TTPs 1 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
    impact

Processes

  • com.fiscal.public
    1⤵
    • Loads dropped Dex/Jar
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4246
    • sh
      2⤵
        PID:4275
        • /system/bin/sh /system/bin/pm list package -3
          3⤵
            PID:4293
            • cmd package list package -3
              4⤵
                PID:4310
          • sh
            2⤵
              PID:4331
              • cat /proc/self/cgroup
                3⤵
                  PID:4347

            Network

            MITRE ATT&CK Mobile v15

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • /data/data/com.fiscal.public/app_DynamicOptDex/Loo.json
              Filesize

              671KB

              MD5

              9f247dfc3be50aa96549da83f15f9fd7

              SHA1

              c175e8d37743fbbe59179ff12f838ebc8fd958bf

              SHA256

              6b430fb69d6893f866d114be7c712c43956b082d859d28d65f95de21a58052a1

              SHA512

              2a20a14c8479f1127c2c9a5d237d1849f09b5f53b7f0e1e47325b8149bb7627b4d2fcb9bf2eebee5c2951af99211e08e73519a68b4516db0c3cc3be4741bff7c

              Download Submit

            • /data/data/com.fiscal.public/app_DynamicOptDex/Loo.json
              Filesize

              671KB

              MD5

              5272719087ee224bdae26e97f2679c78

              SHA1

              2b3e4101b31deffd2f65b6f3378992333187a964

              SHA256

              0b60e0a3b9f800094e2a91e6bc8045dc9a544b3049c82e01256ab811902c691e

              SHA512

              947626eb9210f9c1b2113762341a80c3b053f33c6208244a8ca2b7374f780c5f1f5cdb54566018f0f75b58b8791ad53e5719459e5fb0cb09ea548bfcd2390ddd

              Download Submit

            • /data/user/0/com.fiscal.public/app_DynamicOptDex/Loo.json
              Filesize

              1.8MB

              MD5

              7f1671cbb3714b6f6f76ff8de0ce10f2

              SHA1

              d4ca630f11c53cd12cd01ffc38f8c5d0504770e7

              SHA256

              f3bedae59051132d17f69b2df3579fcd0e1ecdb67b679a83b48b55a7fef40d34

              SHA512

              fac930027a8c30c4d6fd693da3e690e04f7f62e1285ce4ded281b85d7dd84a078fd02307087997a86e22fbc1f37e45c2d3e58ea34206a9e0e2ec5edcc7cde1d3

              Download Submit