7db297569faa599ff5a5163deb7b1c10cd3784cb1a4a9b5f7b99b49a0c1f1163

Resubmissions

09-02-2025 12:38

250209-pt6j6a1mgw 7

09-02-2025 12:22

250209-pjv1ns1jdw 6

Analysis

max time kernel
30s
max time network
139s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
09-02-2025 12:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Balatro_0.2_noPairip.apk
Size

98.8MB
MD5

d325729cb9b678e2339289f1a6487321
SHA1

67472cce2e5e40433856e2faace5fd8d8b1b5e79
SHA256

7db297569faa599ff5a5163deb7b1c10cd3784cb1a4a9b5f7b99b49a0c1f1163
SHA512

84c575a2a2e2e8383afec402eab98958f39fc12bd033314a3bc62f08aac528a3b2d13308fde27386ee41f2cafba4f0fbc7a536d948cd9c6bc610511f39598a72
SSDEEP

1572864:6bZbPrp3CIF9SN2lrjId8QxqiaVN7GWgxzztFtLOmrqWVzGM7ndefdHczKfWe8u:6bPFU5d9RaTq9ZBDGMpe0DE

Score

7^/10

collection credential_access defense_evasion discovery impact

Malware Config

Signatures

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.playstack.balatro.android

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.playstack.balatro.android

Listens for changes in the sensor environment (might be used to detect emulation) 1 TTPs 1 IoCs

defense_evasion

User Evasion

T1628.002

description	ioc	Process
Framework API call	android.hardware.SensorManager.registerListener	com.playstack.balatro.android

com.playstack.balatro.android
1⤵
- Obtains sensitive information copied to the device clipboard
- Queries information about active data network
- Listens for changes in the sensor environment (might be used to detect emulation)
PID:4488

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

T1628

User Evasion

T1628.002

Credential Access

Clipboard Data

T1414

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.playstack.balatro.android/databases/singular-1.db

Filesize
16KB

MD5
909b3200ce1706d85ca5a6b48c96902b

SHA1
2002b8cd4980d328df10f497c3380bcc0f82250d

SHA256
8114368fde14a417f0a6f1249921eea30af92842d9ea124c3e6825e7e7bf204d

SHA512
88d94f76adabcd2b0418a5d262d2caa5feeab2df8e24ca398263c9c38d9f475aef15d997cc62df4e6e1155ee3677bae388a01e0c60b369c04eb2597be3bd2283

Download Submit
/data/data/com.playstack.balatro.android/databases/singular-1.db

Filesize
20KB

MD5
479c39c94396e5b421fc6c4eb4731ec1

SHA1
78f00ee9c886641df9821a8429917316181e9383

SHA256
62560073901cddd7783b80ff544adc386519c2f6ff4af6aa0f90caf8837c9cb0

SHA512
002d70d908eab44924827a2e71a15e858a84309d988131c672227b4361cbf6ac5aebda280a551a1fc532c1d3e76708242a698a33d250397a06d711ad7fc15768

Download Submit
/data/data/com.playstack.balatro.android/databases/singular-1.db-journal

Filesize
8KB

MD5
5cf7995d1d80f1367c2942bd0fdc7948

SHA1
bcd71f51ba806964f77fe5cfad3a73304eec9c5a

SHA256
2c1da5d870ca989c1a40a0d139c880e448dc44ff29cac383a2e84872a93b9122

SHA512
a6f0e5efaaeb3c9145357eec9d1b446e83c6e92156eff37c0cee9e8813ca64f10865570280c4c1aeae45d3cfc54c03642644d16515f988ca8ef81e321f958658

Download Submit
/data/data/com.playstack.balatro.android/databases/singular-1.db-journal

Filesize
512B

MD5
78e911d367e4a1deb9867790c9e77eab

SHA1
e5a2865e8b40f1cb0c4bdc655f089b1832232d3c

SHA256
bf3a1256e2aae6f847b079d8cde6bccb96f192d19aa9e8abfa0885dad2549c99

SHA512
4964c5c9dc20a631218e7f2380311d3c19889ab77e29ce096ebd7ce4463e9bb288c75708228da12955581a020fdb819872bee8e1d3d1fb3e1f8b17304df77075

Download Submit
/data/data/com.playstack.balatro.android/databases/singular-1.db-journal

Filesize
8KB

MD5
38fd1c9a6230d1607b833824e0ed9c56

SHA1
fd704008e8928326cc5bc93998749aaf5b929640

SHA256
8742960573eaf40e12a6738415953fce30caca8ae9c2e783cdcc894a0fa02789

SHA512
97de6b6312b7db90e78199c5f9c6f5982998cd78e0a4ae320c78f0cde09c0ab85eab005b279a77d2b1266c6f02995e7e59c304d06f3fb2f9e613425f04fbb6ca

Download Submit
/data/data/com.playstack.balatro.android/databases/singular-1.db-journal

Filesize
8KB

MD5
ae54bd6aa79e08093aa131ff46655967

SHA1
d806ccae25579feb40d6469b57fd1ef79d88416b

SHA256
3ddc94abfaa6a3e40316408807c88f646de99c81daff9166b1a75c658948ae42

SHA512
2e29e321d24573840b26e3eea8a7784cde8c4a2a1996dc0dd85bc34d7ee85c783c1ecd118178360783ebe860dd9526ceab801cf1de56b5b8097071e8c38ff656

Download Submit
/data/data/com.playstack.balatro.android/databases/singular-1.db-journal

Filesize
12KB

MD5
8e8cf870fbb6ea71499ae54727c3308c

SHA1
a536b8c674f5882b5f333c6876b8d395ed1735cd

SHA256
22734047a0028d33947b3d1e3e997400e0fc57c5879f2b674bdb9cd229581670

SHA512
9e77418c9499af8d4f1a0f7e0e909c3ad372431460f04ab4ae89cccd4c1a04d7dfd29d8ef840aa9e3136a1b0cf4bd7175272f2466e432e66c8e7775ecc0f71c2

Download Submit
/data/data/com.playstack.balatro.android/databases/singular-batch-managerx-1.db

Filesize
20KB

MD5
399dbdafd86fa17a78ccbb8b72f02eec

SHA1
0a2f5bb54c8e6ce1d5533f30128f6c45c46c87c4

SHA256
93fa10630257fee072bf28348c12c08462284909c2255c0489721320348b0692

SHA512
a22cbd5bc2ea2c3036967378810f9457b6d35903b8335446744c74fce023dcbffd912ae4e542b23d6f60149c9efc85a88864ca604c72d42f08676d0003ae7b8e

Download Submit
/data/data/com.playstack.balatro.android/databases/singular-batch-managerx-1.db-journal

Filesize
512B

MD5
e4e9c866f09b8ce06ec1a2d1415f54c6

SHA1
58b6dc16158d783071b8d51f8c2925f0e5cb0578

SHA256
c26565878cccedf92ec40051960491ec600919488c000662dd4cd0a9a18d8b90

SHA512
9aea2532c3ae54dfa294146ac977534f0cd542f33ab8b3546ac3fd57b8b5b6082c1c056225abbd1979039323c15e147eb102f312903f6ed46417c8315a9e35bd

Download Submit
/data/data/com.playstack.balatro.android/databases/singular-batch-managerx-1.db-journal

Filesize
8KB

MD5
0fd992deea1a3e8fb693711d2274d6d3

SHA1
6e8b37bfd04c21c87dac5e6b245df05362f4586b

SHA256
b4fc8298834115e687a356cb45e06789c962b2417cdb795878ae1d5a71412d25

SHA512
e1db3e7bbd2acdbe16abf17db9ec00d23dbdeda20da7a963bacd3ccc4c085cb67c509792d800e6395264443145c79823c3b108fad259e66add8dd0c613bc9423

Download Submit
/data/data/com.playstack.balatro.android/databases/singular-batch-managerx-1.db-journal

Filesize
8KB

MD5
211a5322099085750d6c5744aa4d5111

SHA1
f473d2b74289e80dc77ff88b15897e43bc445104

SHA256
050bbeda56c80b7f924b6f9752447aef205af088ca0a0a83d65937a798c07786

SHA512
728721c1b9e5601695bc169edd9b67299e502abb9924aff052c9b6bf7de0d792e56907a2124cd8d0d5cba64f012f7bb2790a3e07031cb3b43d5dca04b0097265

Download Submit
/data/data/com.playstack.balatro.android/files/1-meta.jkr

Filesize
983B

MD5
4de9bfd2693a48edb1c60876b1eae172

SHA1
62a8db5b78090304fec84d191d9b1bfd135a0ce9

SHA256
93d4925d386cf76a97207502cad90ed759d8e97112208786415b08b679f993bf

SHA512
b28b67e7bc76d5a8ef444afbd026ed7b722a1ca7ad6adc95e11f9b0979686cac13544b9c56094a18bedad0f12512724800abe315f05265f958b7c23071e470c0

Download Submit
/data/data/com.playstack.balatro.android/files/1-profile.jkr

Filesize
552B

MD5
93b83e6a2ace4a179a059aedaf587d0e

SHA1
3bd42e0bc23f54d835162c6ab76c600d51ebf3df

SHA256
86b03c6d48e6ab2c03649bd4e26374826bcf5f5a3910c2a9bd1e3c3b1f7b9976

SHA512
5cd535437983353638d2fed71686e79d479e0cfa529e353e06c7865164e128213c7b43dd0b23b3fca9646d1fdaf73b80c52233bd7bdb605aa17556b49487c32a

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads