Overview

overview

10

Static

static

6

9e5da5bf91...94.apk

android-13-x64

7

9e5da5bf91...94.apk

android-9-x86

7

base.apk

android-13-x64

10

base.apk

android-9-x86

10

Analysis

  • max time kernel
    6s
  • max time network
    26s
  • platform
    android-9_x86
  • resource
    android-x86-arm-20240910-en
  • resource tags

    arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
  • submitted
    21/03/2025, 17:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9e5da5bf917acd4132c8b3d4b63af9b23d7bc16e71e51bffcd4a82162e598394.apk

  • Size

    12.8MB

  • MD5

    f5071e7fe4f8d85ece2e28d678a2b7e2

  • SHA1

    4a6fd8b9a7132089420de178f294466166081e7f

  • SHA256

    9e5da5bf917acd4132c8b3d4b63af9b23d7bc16e71e51bffcd4a82162e598394

  • SHA512

    0585e7d2bb7f07c8616025fc51b9d091b147572437936add16358f5b3ecf35acc91bb178dcb90f0e81ebbe99d9f533ddd3436e7623ea16f4574315f78395d584

  • SSDEEP

    393216:ZZD8O1T+BHMRrmIk08UVryK9+gtLbrNbaEetg:nIOmsRrZk08UgKg2LPNLetg

Score
7/10
evasion

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 TTPs 2 IoCs

    Runs executable file dropped to the device during analysis.

    evasion

Processes

  • com.need.six
    1⤵
    • Loads dropped Dex/Jar
    PID:4336
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.need.six/app_sweet/qnQ.json --output-vdex-fd=41 --oat-fd=42 --oat-location=/data/user/0/com.need.six/app_sweet/oat/x86/qnQ.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4362

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.need.six/app_sweet/qnQ.json
    Filesize

    2.8MB

    MD5

    fc808c477e0bf37fef4a9957521e5d5b

    SHA1

    6587a77fa8812c65c667f808e9e0893849a00c71

    SHA256

    71c0d104bb7b956597fcf3aa4f9ca6e594ce44686a008a5d491658a9b1d1c91a

    SHA512

    e3571ecda3f03e915048b095d7d1ad3961cf8afa7468bd5e98ba5c9b5544ab97cc6f41fae494b105b309765c6d1e35554b535b7adef158fa47b301f748d6671c

    Download Submit

  • /data/data/com.need.six/app_sweet/qnQ.json
    Filesize

    2.8MB

    MD5

    9fd18ab696612919775308c59f0bd7bb

    SHA1

    730c350ac2887fda8bbc7d943e161886229784ef

    SHA256

    8ad169906d2da3be73d9f5f5ca125ff396447103f43dc3ec298bb64fd679d490

    SHA512

    352c4155e887ad6aa00de5bdcebdcc25ad1c9781bfce948e0602c5af62dabe5ef2adc74d627a00dc2f373a59e4cfbc76ee2ad36f42f6b270b2ce2d11e471a249

    Download Submit

  • /data/user/0/com.need.six/app_sweet/qnQ.json
    Filesize

    7.2MB

    MD5

    8dfe0aa1b7aec6d8c3ce1c9cb2e38534

    SHA1

    70cddb9d49e8daf32fbe0f4947bd4e961b261880

    SHA256

    0a13b33ab8adfa8781b6004d8da90ead4b856689de4fc36d8ac75b5f5839941a

    SHA512

    e77474a622c7b2d5e687a5be89aa11c8596ab75a911c56251c9314db6e134969547f98169dc9ce40242c5310ddf83a4969a3b7be21cc4eb625237b1e9124c0c1

    Download Submit

  • /data/user/0/com.need.six/app_sweet/qnQ.json
    Filesize

    7.2MB

    MD5

    89c65f9f0a1e731d76f55f30f058975e

    SHA1

    49b27d53db45e2afd9265a1846558beaac8e2eda

    SHA256

    ae2f8cd9ffe9902d2464bd54df65d7a37c5b2cbf80d275a07dfbebcefb96bb42

    SHA512

    e656f0896b66de5704101c42e6c453f65bfef508105d4392916c59f2bf4038678a7cab590d02a8ab1bcb4d3ea9fe0c6cb099e9a859f016e5f2b65080a3526ee7

    Download Submit