Analysis
-
max time kernel
200s -
max time network
206s -
platform
android-13_x64 -
resource
android-33-x64-arm64-20240910-en -
resource tags
-
submitted
05/03/2025, 10:18
General
-
Target
https://greenpoint.apk.cafe
Malware Config
Signatures
-
Android Xamalicious payload 1 IoCs
-
Xamalicious
Xamalicious is an Android backdoor malware implemented with Xamarin framework first seen in December 2023.
-
Xamalicious family
-
Checks CPU information 2 TTPs 2 IoCs
-
Checks memory information 2 TTPs 2 IoCs
Processes
-
com.android.chrome1⤵
- Checks CPU information
- Checks memory information
-
com.android.chrome1⤵
- Checks CPU information
- Checks memory information
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
872KB
MD59c79e6db35cf7b624d24baa8bb566ec8
SHA141386bc35846b7eb5d7518eb95d54cd69a03aa6f
SHA2567b99dede2a53b3b5e233f602ab35328053beaa79626ec8759ac44a667956a0ff
SHA5121e995a81eb1f73dc4ea5d2f3cfecafe849c407d62bfa8ba211a55f23ab5c99a35c5732728b77c456133dae9f177d585356348f10e0c4c9a109549b15d88425bb
-
Filesize
25.7MB
MD577699844019d0a9722ab89321b08d08b
SHA1e3f8e963f4c5ace94ed7f2619da940ec3c83f88b
SHA2563e3408b2d418c5ccd962c68dd25dc8273a23365a7351bf29962a0d4b1d50e261
SHA5128daf6586b745f9fa142e7757d7ca635bd65e94c5a212c9519473adbde3a862823dbcb4817fecd37cb30ac81cc1ddb40bb604dedd77f7db806ecdb0a3fcf229aa
-
Filesize
600KB
MD52cd29975ad69b6a6733dc99c71e18d5c
SHA1d646173de659c54efb9ceca56f8169fd6b14ef88
SHA256f604a36ba08ac0f9f8a5a50465a5854746c0085e37488402551203284ac488b8
SHA5124bbdc4f2a9b26edb868ea2a8925c4b32142b7dece3a38946df71906d66679c04cd14914993a5adf41050ec0932c36e64a42557814482d8c65679f022d0d8fa40