9e5da5bf917acd4132c8b3d4b63af9b23d7bc16e71e51bffcd4a82162e598394

Analysis

max time kernel
6s
max time network
151s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
21/03/2025, 17:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

9e5da5bf917acd4132c8b3d4b63af9b23d7bc16e71e51bffcd4a82162e598394.apk
Size

12.8MB
MD5

f5071e7fe4f8d85ece2e28d678a2b7e2
SHA1

4a6fd8b9a7132089420de178f294466166081e7f
SHA256

9e5da5bf917acd4132c8b3d4b63af9b23d7bc16e71e51bffcd4a82162e598394
SHA512

0585e7d2bb7f07c8616025fc51b9d091b147572437936add16358f5b3ecf35acc91bb178dcb90f0e81ebbe99d9f533ddd3436e7623ea16f4574315f78395d584
SSDEEP

393216:ZZD8O1T+BHMRrmIk08UVryK9+gtLbrNbaEetg:nIOmsRrZk08UgKg2LPNLetg

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.need.six/app_sweet/qnQ.json	4573	com.need.six

com.need.six
1⤵
- Loads dropped Dex/Jar
PID:4573

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.need.six/app_sweet/qnQ.json

Filesize
2.8MB

MD5
fc808c477e0bf37fef4a9957521e5d5b

SHA1
6587a77fa8812c65c667f808e9e0893849a00c71

SHA256
71c0d104bb7b956597fcf3aa4f9ca6e594ce44686a008a5d491658a9b1d1c91a

SHA512
e3571ecda3f03e915048b095d7d1ad3961cf8afa7468bd5e98ba5c9b5544ab97cc6f41fae494b105b309765c6d1e35554b535b7adef158fa47b301f748d6671c

Download Submit
/data/data/com.need.six/app_sweet/qnQ.json

Filesize
2.8MB

MD5
9fd18ab696612919775308c59f0bd7bb

SHA1
730c350ac2887fda8bbc7d943e161886229784ef

SHA256
8ad169906d2da3be73d9f5f5ca125ff396447103f43dc3ec298bb64fd679d490

SHA512
352c4155e887ad6aa00de5bdcebdcc25ad1c9781bfce948e0602c5af62dabe5ef2adc74d627a00dc2f373a59e4cfbc76ee2ad36f42f6b270b2ce2d11e471a249

Download Submit
/data/user/0/com.need.six/app_sweet/qnQ.json

Filesize
7.2MB

MD5
89c65f9f0a1e731d76f55f30f058975e

SHA1
49b27d53db45e2afd9265a1846558beaac8e2eda

SHA256
ae2f8cd9ffe9902d2464bd54df65d7a37c5b2cbf80d275a07dfbebcefb96bb42

SHA512
e656f0896b66de5704101c42e6c453f65bfef508105d4392916c59f2bf4038678a7cab590d02a8ab1bcb4d3ea9fe0c6cb099e9a859f016e5f2b65080a3526ee7

Download Submit