Analysis
-
max time kernel
13s -
max time network
16s -
platform
android-10_x64 -
resource
android-x64-20240910-en -
resource tags
-
submitted
23/03/2025, 15:51
General
-
Target
adcc3a2f7cef4a20d5985f7d6c2290a0.apk
-
Size
6.7MB
-
MD5
adcc3a2f7cef4a20d5985f7d6c2290a0
-
SHA1
49cc48340ee2397c09f0484805e49e223e92b3e4
-
SHA256
3d1e6b84b50e9dbcfdc6b609aa57d28fa06f78e1f3cd9285e07ba8e39f419bfb
-
SHA512
52720c88b187718e7b3a4e557782a4794f2e98cbd15a14de04d80921ff8d3c9eb0cd5b8bc0c4705c867f81347f941e8fff9d14b1b850e432307e9da4c81369a7
-
SSDEEP
98304:1TOGZpDDsRB06CE3BFEi0c0Sll0pkQt8w1PGDdfnVBwvnBFWGm6pMn5fm+PSpKJ:1TvDDsRB0TE3BD70Cw1ODdWRcxqKJ
Malware Config
Signatures
-
Checks if the Android device is rooted. 1 TTPs 8 IoCs
-
Checks known Qemu pipes. 1 TTPs 2 IoCs
Checks for known pipes used by the Android emulator to communicate with the host.
-
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Acquires the wake lock 1 IoCs
-
Queries information about active data network 1 TTPs 1 IoCs
-
Reads information about phone network operator. 1 TTPs
-
Requests cell location 1 TTPs 1 IoCs
Uses Android APIs to to get current cell information.
-
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
-
Checks CPU information 2 TTPs 1 IoCs
Processes
-
amoungus.among.us.free.online.game1⤵
- Checks if the Android device is rooted.
- Checks known Qemu pipes.
- Queries information about running processes on the device
- Acquires the wake lock
- Queries information about active data network
- Requests cell location
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
Network
MITRE ATT&CK Mobile v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
16KB
MD52cd81a45ec6d898d4a231163ce3461f3
SHA12736eff81e9dd1e8b477b3d4f2dc0fdf44d84143
SHA2561c741f02264df9d713f02adbc48307685b8740b9a4d76efe631789dc3f327195
SHA512caaed4ab9a180187ed17002429ad2275e7cf0e2745d752184d1048de9ab4247e441b3e003a5570a3f91064b7a10bb5f3f21721eb4591b8612a90a1509d15b1ed
-
Filesize
16KB
MD50eeeb648b88ca2be829093e248fb7fdb
SHA13f3545b373f6ec9613f94b3dbbe52a2bbae910b9
SHA25624e17654e90767b89767f9a11395608b40c682441d2076b35e73d43ce5bbd8f0
SHA512ec9edbc2007dff0bee73b365648f6d4a4389219e63e27ad8581902d2201525a507c796d4048dcd6609d7ef4bc711618219238adf2950a6b487926786db9a72d6
-
Filesize
16KB
MD552650745654b8aef0bebe186d6a14d1b
SHA1dcf85f949d735394323a83c0fca5e4665ed6c6b1
SHA2561ac116b814902bb07936cb66c6c38063283a2a98b17379be2c82d93c2ccb9a0e
SHA5127f4786bf66e55347185425d9fe6ea28112a1c7ec079e74f84274cd26a0a5a1bff9509128ce6a5fe20205b8845454b6733f0c12d207729ba3cc224913ef9cc197
-
Filesize
16KB
MD5f4cd01d9ed561e2e6889d7ed93f2ba70
SHA1db8f324079598d07a09730a744a06d1400e45df1
SHA256d7b5f36abf043b0e470d1463fb3f6805c0c73f833858d3c010f069a7b78ed905
SHA5129ca874835e6ea315f720311ad417f3b3a1d680e4d4cd1227871befde655a6ce6620144ecb74f7c15f15d701b8a228834c60f75b62cac66f2f3522ab0c1f53551
-
Filesize
16KB
MD59d650147be125aee7bba59f690c49977
SHA1d8d943d1495726f78b0d6a886eca4fb38ea286ef
SHA25688f91c35794824dbd09669270e28a3804064f05cbbe50927ae4ed379a23d2ae5
SHA512c7993e20fb2ad8003f542582083ca3adaf11cc7e024b200a3be90da54ed91058a871f1e571c36e655cbb5702df59272c26fd7c5ac40477b1e748c6b1bce2c94d
-
Filesize
16KB
MD5eb52a90bb70b76e946b62f50b6f7fb85
SHA142d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0
SHA25648472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4
SHA512b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c
-
Filesize
8KB
MD581be80ca96fbbea5c2e09adf09eea3df
SHA108f9d16c0d7f2bff2213d86721deba86eb0be495
SHA256ef357f7bbed8f6428f4af577faa4c08c8eda0c0fe9e21be8dfe4aed8be9444c0
SHA51297a36e2b31db70f9510ee65f5d05f887462485850a7afeb6cc858dff8b5fc028fc8eb6794a08ca21a1d652ee1f59379d9c843e0bf67fc366f2b8a43d209546d1
-
Filesize
512B
MD52818790f70ffccfebde49dda8971af59
SHA1e93f24627c409669cba2e3496c6e13d2edc3bf35
SHA256c7117ddb5f22761c4490355271a20ba03a14f4034578b403f6801b3f1cbf137b
SHA51287088ac35ca9f9cfd61a45a543fc0d73dcb81b2c225fa45cbd4ef45a2c63bc2d054f806c303c3ad4781bf78732724572e6c3cc68d1fb0b756a8f607ca8b3aab9
-
Filesize
8KB
MD5d3b41438d7db426885f68bf6a277d548
SHA1be90e8e7e0b02ef6f50f4c83cce1b870d6d58d63
SHA25695686dfb82e2fac296719a7c13bbde42b9a492e831e2fd976bb3f2f8289ab1e0
SHA51219d00f3be887cad8822b9bc42be3462f1fcc04b9d7a6485181ca93aa4e2343c0895f0e7e2237cd1994a9fd0fdf4637b01fdae1c5f3d1d4d2d1fdd5a3258fc8cd
-
Filesize
4KB
MD54add8b2a00fbaa92838c38680665288d
SHA1ba022bea667f49ebd4c61a76bfba1b2312a48185
SHA256d4ddaf18beef2de79ad2a6f80d57a8f1300c1980b8d73d36158c2a9f49291eed
SHA512df6b407eb7fd7268f7a18052e52f5d1bc4e589660bf342a3dc3bf35fdfd36977015f5b200ad575ef64aa9bd4f50510b18a3be9a6dd57c9c04efc7ce18c388983
-
Filesize
8KB
MD55d7050e1e2eb6e68efd461e05599ef0c
SHA1e3992faff1f74b76d96894104f8a79d8de4e64a4
SHA2561e9a0941aae6cfa09cc299d9cb0cf33ba7057218f201100f6f9995e0af76c680
SHA512421fd736767ac635e97b03bcf414ab43011a3b4cf52580c42c8903ebcee43633b9067c2c9761cc17635b9320186e550d6b9f0764ecf6ac745c3f521ce7b1f4f8
-
Filesize
8KB
MD58ae4c668ac8757592e8e727dbda39de6
SHA1c8816994623973fd49641f8b719e55b3a198b1c2
SHA2568f465aa75fe79e93ce21d801c9afb3a31e32fe9be430012612cd03b1110080c4
SHA51274096d6e3fc329e98969b40d60a8808ddf3ce7c0d43c7508e2f233ef85590cb9d2927aadd58ed7d3389260e9307e14f0ce60af382267167ce477fffc0173a3ba
-
Filesize
153B
MD565026ee778e1372d9f4aed742772e893
SHA15a5f1c821d7639424f3c75a44468ab5f7dd4e8cc
SHA25615070f52136d5a8332f8d70f790bd7bb04cd6a99b386d40e0abedc40c42caa3c
SHA512589c4a12c6b6ec1a1cca957da758aaa900e68a23b4bc2f42524b0e8dd34f6c5378541d9293eae1ae8d478bf5b5229ce4218c058fc3b399eb5756afeb05c68616
-
Filesize
63B
MD5b4d2f3fbabb56cd083152b6fe3519b89
SHA1f7c1898082ab92e4afd56ba54b43bf62d4f51ecf
SHA25628a699cf7a41e40249ded2b012aa8c5dc0ba3d9e26aed782f1cdb8d4cd4e25e2
SHA512030807fc241fdaa9c5db167afd550a03fb77e88450bfd385d12c9784b18686d73f6ee841681a6c9c7c1b8058f8b6137b9c42e466434c30b3f47c671511bc66fd