Overview

overview

10

Static

static

6

07b114daff...f9.apk

android-13-x64

7

07b114daff...f9.apk

android-9-x86

7

deper.apk

android-13-x64

10

deper.apk

android-9-x86

10

Analysis

  • max time kernel
    6s
  • max time network
    24s
  • platform
    android-13_x64
  • resource
    android-33-x64-arm64-20240910-en
  • resource tags

    arch:arm64arch:x64arch:x86image:android-33-x64-arm64-20240910-enlocale:en-usos:android-13-x64system
  • submitted
    22/03/2025, 00:13 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    07b114daff3e1edd5e7f1a2f813cd7dda6f3902cda03f1a8f4ecf230efa52ef9.apk

  • Size

    10.4MB

  • MD5

    f69bc6289179b4ce9f85e736cdc59a24

  • SHA1

    a35a253dcde3b6489a7558af9ebb57e89add7fea

  • SHA256

    07b114daff3e1edd5e7f1a2f813cd7dda6f3902cda03f1a8f4ecf230efa52ef9

  • SHA512

    05f9ec614651e85ea83d0375287efa0fcdebcdd9b8f021120391dcfe3dbb0e87b7cd6fa89370395395d27139cb1f667752f57c89ee662d36b2a379cae8680fd2

  • SSDEEP

    196608:fzwwJTKJYA18D7TqdyX3qJsupHdDFy/B+sI3tWjJ4ro6eZhn:fUWe0nNqSitFy5+sI3q2ro6eZJ

Score
7/10
evasion

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 TTPs 1 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Looks up external IP address via web service 1 IoCs

    Uses a legitimate IP lookup service to find the infected system's external IP.

Processes

  • ugoxqk.drmwah.iamvvs
    1⤵
    • Loads dropped Dex/Jar
    PID:4433

Network

  • flag-au
    DNS
    api.ipify.org
    Remote address:
    1.1.1.1:53
    Request
    api.ipify.org
    IN A
    Response
  • flag-au
    DNS
    rcs-acs-tmo-us.jibe.google.com
    Remote address:
    1.1.1.1:53
    Request
    rcs-acs-tmo-us.jibe.google.com
    IN A
    Response
  • flag-au
    DNS
    android.apis.google.com
    Remote address:
    1.1.1.1:53
    Request
    android.apis.google.com
    IN A
    Response
No results found
  • 224.0.0.251:5353
    2.5kB
     8
  • 1.1.1.1:53
    api.ipify.org
    dns
    59 B
     59 B
     1
    1

    DNS Request

    api.ipify.org

  • 1.1.1.1:53
    rcs-acs-tmo-us.jibe.google.com
    dns
    76 B
     76 B
     1
    1

    DNS Request

    rcs-acs-tmo-us.jibe.google.com

  • 1.1.1.1:53
    android.apis.google.com
    dns
    69 B
     69 B
     1
    1

    DNS Request

    android.apis.google.com

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/ugoxqk.drmwah.iamvvs/app_casual/bRYKxG.json
    Filesize

    573KB

    MD5

    e781cdc207dffcfa4af2a8fb1f03494e

    SHA1

    99b0f5b4badbbc9fe34920ad10425c14e81b0157

    SHA256

    6ed524bcba6f49c7c2d1e43b3a97dc2f249153df9f05708e135195458e3fb6bd

    SHA512

    64037687bc224835a1afa2d25edc410cdc3dd14b363820912f80a45a02967e927752b6a279358e2edee066656fa14c7b0888a2dda6c7d8a353217a0285936bdd

    Download Submit

  • /data/user/0/ugoxqk.drmwah.iamvvs/app_casual/bRYKxG.json
    Filesize

    573KB

    MD5

    eda202925347dcdb203a6eb17b2ace2b

    SHA1

    ebda38a837165a73a40e5c17860ecf9f5783c913

    SHA256

    6e0025a94858061b51696d604a9e6f473b39bb975a8132b51bac16355ac76384

    SHA512

    7d052536204863ad15cb9979628a77209cc3ed9cedb71ceea24aff87ae184b77ca6de9ab8fb29f47a695fda1528668f862b519c0d575a82e3edfc461ecc6896c

    Download Submit

  • /data/user/0/ugoxqk.drmwah.iamvvs/app_casual/bRYKxG.json
    Filesize

    1.2MB

    MD5

    fb3d2e0382e456e9074801c4c44213f0

    SHA1

    634808e48135c0b28fc2b02d4f0e946e8478352f

    SHA256

    aec20e3c6cae39a622b921221342b3675b125f11562446e5bc58737124944782

    SHA512

    32ef54a6fc1253b5a7d66bc19bb8c4df8b071cc91f06c011a8f71321b3745d21ede18b2d7e629c7923c89189bb9f502e2d6f501503e6c4a9813eaa12d852d2b3

    Download Submit

  • /data/user/0/ugoxqk.drmwah.iamvvs/app_casual/oat/x86_64/bRYKxG.vdex
    Filesize

    29KB

    MD5

    8ec15717b00e8263a5bd4b232fba24d1

    SHA1

    c002183f55ae95089be2cc5e00c56a06dbea4f22

    SHA256

    e08f19d0aeb46bfff9d91f445836c63aa4eb120a7f60a77e5cfb61f164c361ad

    SHA512

    e1c995646931f2c57915d194195c055914324c8b3229a5db0ad92bc060b81051ca375c7006175d42883ef25db739863e47a89fdeef761d6c363c6217c6517b20

    Download Submit

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.