453c506378fa71efc871a8f4442b49b6d59a513def153bfec9813856d6d93a1b

Analysis

max time kernel
19s
max time network
22s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
23/03/2025, 15:51

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

adcc3a2f7cef4a20d5985f7d6c2290a0.apk
Size

6.7MB
MD5

adcc3a2f7cef4a20d5985f7d6c2290a0
SHA1

49cc48340ee2397c09f0484805e49e223e92b3e4
SHA256

3d1e6b84b50e9dbcfdc6b609aa57d28fa06f78e1f3cd9285e07ba8e39f419bfb
SHA512

52720c88b187718e7b3a4e557782a4794f2e98cbd15a14de04d80921ff8d3c9eb0cd5b8bc0c4705c867f81347f941e8fff9d14b1b850e432307e9da4c81369a7
SSDEEP

98304:1TOGZpDDsRB06CE3BFEi0c0Sll0pkQt8w1PGDdfnVBwvnBFWGm6pMn5fm+PSpKJ:1TvDDsRB0TE3BD70Cw1ODdWRcxqKJ

Score

8^/10

collection credential_access defense_evasion discovery execution impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 8 IoCs

defense_evasion

System Information Discovery

T1426

ioc	Process
/system/xbin/su	amoungus.among.us.free.online.game
/data/local/su	amoungus.among.us.free.online.game
/data/local/bin/su	amoungus.among.us.free.online.game
/data/local/xbin/su	amoungus.among.us.free.online.game
/sbin/su	amoungus.among.us.free.online.game
/system/bin/su	amoungus.among.us.free.online.game
/system/bin/failsafe/su	amoungus.among.us.free.online.game
/system/sd/xbin/su	amoungus.among.us.free.online.game

Checks known Qemu pipes. 1 TTPs 2 IoCs

Checks for known pipes used by the Android emulator to communicate with the host.

defense_evasion

System Checks

T1633.001

ioc	Process
/dev/qemu_pipe	amoungus.among.us.free.online.game
/dev/socket/qemud	amoungus.among.us.free.online.game

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	amoungus.among.us.free.online.game

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	amoungus.among.us.free.online.game

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	amoungus.among.us.free.online.game

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	amoungus.among.us.free.online.game

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Requests cell location 1 TTPs 1 IoCs

Uses Android APIs to to get current cell information.

collection discovery

Location Tracking

T1430

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getAllCellInfo	amoungus.among.us.free.online.game

Schedules tasks to execute at a specified time 1 TTPs 1 IoCs

Application may abuse the framework's APIs to perform task scheduling for initial or recurring execution of malicious code.

execution persistence

Scheduled Task/Job

T1603

description	ioc	Process
Framework service call	android.app.job.IJobScheduler.schedule	amoungus.among.us.free.online.game

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	amoungus.among.us.free.online.game

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	amoungus.among.us.free.online.game

amoungus.among.us.free.online.game
1⤵
- Checks if the Android device is rooted.
- Checks known Qemu pipes.
- Obtains sensitive information copied to the device clipboard
- Queries information about running processes on the device
- Acquires the wake lock
- Queries information about active data network
- Requests cell location
- Schedules tasks to execute at a specified time
- Checks CPU information
- Checks memory information
PID:4774

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Scheduled Task/Job

T1603

Persistence

Scheduled Task/Job

T1603

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

Location Tracking

T1430

Process Discovery

T1424

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Location Tracking

T1430

Command and Control

Exfiltration

Impact

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb187b22f9f964f8833746dfa448139c

SHA1
3674db7517f8d901904af6b44577d5371ddc099a

SHA256
6e13257abfb6afecb5b6057aaf09b77816e6cf903813b6ab5a832938e352e9c7

SHA512
faa63bd5a952d257e69e3f1645a685d476ef5bd9d8fde920089c310b00998a4d323ea8fa0e2ff3a7fdd80a04e813863c3ab78bf17679d5f9bb153c9cac7bc785

Download Submit
/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db

Filesize
16KB

MD5
a0b17eeebbb9cabf5a0f09bbd2be20f4

SHA1
7ac752230c5ca6b2db9a8215864b799f3089555f

SHA256
61e7f3f57f5c5cc15575a44e895d2b4079d53a1166cce6f3ce4612feaeca0ca9

SHA512
45e25ad98c7d4d917fc3db688ef25dfae0dba07e5b6feba03bd48e6caa01c4c4b336112445c649cd0beb3daa800b1e7937976366646e7acdb2357a8e07a701a8

Download Submit
/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c6d1f7505deca7cbe3a2fc317df90378

SHA1
8a6b49ce9dff21c0b39bca224bb67bc73e4bfe1b

SHA256
2db268de56bab664cf5928cca68961c24bcfc9a1960ccc8835ebd648a34a4fc7

SHA512
830bffc7cf5fe98571501f033b3c8d8b17aa4ae1eb8440496007902c9f00cf1a0dbddd8f164c77dcd8a7143510e75f671209f6abd10fd7343a2959509fad250f

Download Submit
/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db

Filesize
16KB

MD5
58504ab3afe0b314875bc4fc5c86fc81

SHA1
cd95fb474f8f2fffcb2ccf2e0567a32962449403

SHA256
db6a1b6750b02f6acfd30d4e3bd383e5a19608f19bb7a0a40308144b22a27089

SHA512
112bc6b1573dacbe947cbdde1d373e9ae40f02e2eb99f02bfb0c9a652f95ffdd70387dadacdcb369fde4e05f7bb3279156a3d1e1dd26b2a5a799b6ca53ae8db5

Download Submit
/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db

Filesize
16KB

MD5
9df050257cbca15ac4bb386181fbf897

SHA1
ba25c3283a00cda201c4a9f99ba4140f1281ba99

SHA256
6486864c129d6dd0a81e4f282288c0f5bc06e08ac3eb5e95aa10c351ea794689

SHA512
fe8f34a04f129406a3f3ac5a38eef23f0e182ed57fbdf2fa667e64b15f8fe4d295d21688e7690ce61fb4cf3af71d638f63874f9ee71530a90dcb078bac8173d5

Download Submit
/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db

Filesize
16KB

MD5
d9cf75fdd1c2292d986f6c3d5d60f2c8

SHA1
07ecb1d3a26d952ae5fecf54f36699ab498510b1

SHA256
2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

SHA512
442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

Download Submit
/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
ca941450e42f0dcec32ab3a3966e8999

SHA1
ed87ab25bac2b6c882b6776faad9c705e6683dc5

SHA256
669858187df303682194becab0870b10d0e862ec8039d1778e4c0ddd2e6ba463

SHA512
3ae3d29599e7afdfd239145aad0b557777120df82df2d65b7b2393cf7ebc96a025075e9732f3b6f4e797ac335fade9159c0affb26a7e039f1f5a54d8412ec87b

Download Submit
/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
90acc2d4509b4497e709f89fa19dc686

SHA1
70634724432b35c06d8ee87f9234cade6dc26c72

SHA256
75e4d0c60ad3069541b1c99bfb8fd57699b3249d00f200780023c32281ee65b8

SHA512
15c896430df8b1e73ac9c2ebe84bc6104001ee36da5a99ea6dd68fb53bd292c2064f49140e88afb8b79ff257cfcc6580a5a4a072295ceb5ec359ad891bf5b1d1

Download Submit
/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
d8877c771d1f55a721a331acdfb61210

SHA1
ff94038c1eba6820cb8295cb15410e6727980c31

SHA256
cd16cdcd71e990f2e2c29041870480e5a600bc4dbb65f8f248d61fd1e3b62e61

SHA512
e6eb7cf15159ba11cf5ceaf64fe23c6ba242960f08466c8c340d20ae9dca7ec105b478d63c545bb174e3760584007216ab12b142699bcf6ec3f4296ca819f804

Download Submit
/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
38ea03b161c18094effb490ff44252fc

SHA1
3ca491979575945739eaa6142df9801f55685b62

SHA256
b945ae52b9176e8fc48a12cf820d531dfb09b6a0135378b253d09bbb6dc5a0de

SHA512
91a591da90a7f6d6d151390e02d1bff232081e42c464c3e39c4a819f664c32bfaa33d71ed882b5b5f5ec664d8e4864406b62f91c252aea9890148e75cfc75b4a

Download Submit
/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
6457b030bc3087fae159207a308daa82

SHA1
a9d9709109f26f920d1ca649278a2c927eb576de

SHA256
88e5ee288cd9c38ec2ee76183da97c02c8152efd35b4ac0f0ab03e79650c6e65

SHA512
8737151b87c92fa3f42614f4cae5558927e26842b4776fbc5e9b22f7dd904dc7f78d6b293c0773b4cc822fc686a437fc31ef1f9df21d1ca54b74da82ad8ba0e4

Download Submit
/data/data/amoungus.among.us.free.online.game/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
045e11ae5b24db2a8f50af83a19d72c5

SHA1
1803a4ae3d9a450a248e02f08baed9d5c5e9914c

SHA256
f4159c51155cd38aa2880647928e184f52976901eb17335938bc962a99bbb70f

SHA512
60cee6753f1b54574686a3d0256d41799e5d573eb940c3c2ab67a8e6b58785b9066dba7ebfb9b29bbfed569a793ab90b95ea00f8a3f7dfea5c32d1c489d09abb

Download Submit
/data/data/amoungus.among.us.free.online.game/files/StartappAdInfoMetadata

Filesize
1KB

MD5
cd52145e84fe4284b9db3654917ac5e2

SHA1
725938a469c50fedfe30dd572bb20f9a2dcb37ec

SHA256
7dcf0ffbd9b74186b8763d56f2baeeb8e1fd20883dc2c5ee05f8792da585ed07

SHA512
eff0fb0c337e40351dc7129bad737416e07c4ad640099912941fbd5f9fa13d8c33f9f39b38c0da8279b73239db8fd3a90eb3e12c317a0086fa1f84a3bdd66d35

Download Submit
/data/data/amoungus.among.us.free.online.game/files/StartappAdsMetadata

Filesize
2KB

MD5
128503719bfdef6b09d4c8feb1a096d4

SHA1
8ca4eba243150f61a8660ed41c42510e16f36cb1

SHA256
db1874b1c410bf8b36c2715ddd5b274e67146a1b75c6393be20abb9dafd6c20b

SHA512
038e1cc07930281bbc2e6395baf41f9d463530496933a0f26bc1a37de4f3a1d75536ee1425a6f1580f8f32cda1e2e2fa4db754288d09351d81af5aafaa4aed61

Download Submit
/data/data/amoungus.among.us.free.online.game/files/StartappBannerMetadata

Filesize
719B

MD5
64837ec60a5def703db0471648bdabff

SHA1
f1eb4a00833351d6dd8040d9658faca109c0859f

SHA256
04e4c66980a46478b18296ce2620239907d7406143d003fd7ba7bb6382440ae3

SHA512
e856f892b0a8b4c645fb87d841e4faba64e2398589dbf25ee36f20e7df7a63e2e9464276232a625be4063659c924a005d8598fe03aa967c9d2a8d97b4ab68f34

Download Submit
/data/data/amoungus.among.us.free.online.game/files/StartappCacheMetadata

Filesize
785B

MD5
e9a968e4938a9bb9632799e2f10bbbbb

SHA1
8c9e1e04c6784d0f9d182081e6329897c957d166

SHA256
8afd711f027fad53c5c96bc0d79574983b6d661af90aebaddf0f1dd858d03f2d

SHA512
cf76a0a9051cade548200101d5e0837b1d1eacc441fed901641e7e9fa87ffa3304a98ba674c8d20ea30ff682076f45b60cdbf260e3dd2770b8f19ff2d393f133

Download Submit
/data/data/amoungus.among.us.free.online.game/files/StartappMetadata

Filesize
7KB

MD5
791bf400cf05a009afb1068f615f2937

SHA1
11907edaeb176e90b6f1029e31c8fa923f13f5e5

SHA256
078ca98a73429487e394de1490cfe4d00646926ecadf4a4cf7a99b8baaf9a5e0

SHA512
13e873854d679037be1a171bbdc11c6a4098e5bcd1afdd7c9820d10e4a41fc3b62c297f91493d97279645e1a057d3736784d6921af69d9d2630b67a7badc267a

Download Submit
/data/data/amoungus.among.us.free.online.game/files/StartappSplashMetadata

Filesize
1KB

MD5
6233062b4d55ee5b9699036884f470ca

SHA1
e415abe9bed25b0ac15bd0a6e012ef5e277c7871

SHA256
a0bb7e4b8fd937390af946710621e0a283076d264487eacdb19cb503f2dd3522

SHA512
1dc094dddf9ad6230ed2bc2b55274f6b51736d72f7f16591dd52151b69be15e77edf109f5ca82fb4e951dfcf998b3b8af33116810c093836101cea5e1eebdd5a

Download Submit
/data/data/amoungus.among.us.free.online.game/files/back_.png

Filesize
1KB

MD5
ebc06fd3d86c27a426932a83325eeffb

SHA1
461c990e677114de3baba2a33f0a60c0a10bb9d2

SHA256
ada010f03b82133ccddb4ac69a7c81a1d507121ef1d276c7c191bb55401c2230

SHA512
3b3c682dc3876f7c813bff1a38e53e0c20f6c776eeb8362a8a750b81d0a3132a207b01740a493c61a03261748399e020aec5fcb7354c723e4f5703efe5418b2b

Download Submit
/data/data/amoungus.among.us.free.online.game/files/back_dark.png

Filesize
1KB

MD5
355eb0af21063fefca005d93d6afa9c9

SHA1
f854e3d2f0c0470a54e55f31017f9c499bd3671d

SHA256
b50339f939827a8e5a918ee4ed1d8213e27f6d546a98313f90449b27a1ebc00d

SHA512
ffff59e303636383dccc1282dea4c13b8c46d9aea1d646d745f7d26607cfabc25aea8001af873942749129291abef5dc5a858e7360cbfc145f870b80689b34e9

Download Submit
/data/data/amoungus.among.us.free.online.game/files/browser_icon_dark.png

Filesize
1KB

MD5
cac9a26c27728066be7a285defc0df6c

SHA1
9931d42eea7663aaec4eb901bcf279b246c19e34

SHA256
9347cbd8e6e2af4d09759e55b7595474648619da07992d6485b9756ab4d8170d

SHA512
11a3abfc4558e6c887f1f809a3837ffe6f4c1702407db945319acacaa5e677f6b117c07ca676cda6438639a1ebc447a2993e0ff31be8ef797bd219700f508ba5

Download Submit
/data/data/amoungus.among.us.free.online.game/files/close_button.png

Filesize
2KB

MD5
2d858e8af5d9426fe061df5c82ffa6ff

SHA1
bc1b2eab876aa221b6449d11e482de24b777d58f

SHA256
73d875bdb982c50c666e30ba2b8ae2dceecc63cd0d5f8a35158edfe5f3303835

SHA512
aabaa75856cfc07bf65f3f2dae118e357cba83a45f0a900aa625f576de47c2753b0a00fb1913e45c1d743acc0f6e0100a4a6a326f402b0f4664ba181ad670c0c

Download Submit
/data/data/amoungus.among.us.free.online.game/files/empty_star.png

Filesize
895B

MD5
76ce13c6312eb334fd351e3b5cff4bf4

SHA1
203bd863b812c071ab3ae25bf4ab2f9c4d42942b

SHA256
f0a8e8d6b8bcb84e466f921dfb20a91fdd4e4b1777d9b0be6ad4d03d4a253af8

SHA512
d06ba34786090e3b027670a17910d2e35f48eb7bc639e6da1d08214534215797dadd1a56be44422b176801e5d1a1345cd2bf29e73acb6a49bc9a2f7670710783

Download Submit
/data/data/amoungus.among.us.free.online.game/files/filled_star.png

Filesize
753B

MD5
317f802aacfab6282b8f74f280e841c1

SHA1
3b746a76f6322e97fd6c09a43d03ac14631d93e1

SHA256
f37f9a17c20ca3068f4f9db08c262c62b7b86544532f612a78421bdee92f4196

SHA512
a714f902ede615507cef840dcc03a5eca183c21c82cc419a924587f38b6974f5aa45fcfcc2bac4d6cf82b81d1b6ad452540e0581751bfcad72e524c83757a301

Download Submit
/data/data/amoungus.among.us.free.online.game/files/forward_.png

Filesize
1KB

MD5
9ee047a6801bec9459a9dd5ec7068078

SHA1
1aaaffc208e2d86e53fc031e8413169850e65746

SHA256
9f63f6c9ed9d33f235c30508df34c3358b55cac8bfb4967fc3e15afc61a6fd12

SHA512
8245818df5ffe06c8f369c8d77479f9f2163d10dac36b0e37c834018b713dc8b063ec1de1862fe16a8c1a769b496652be880ddd48d6fcd24ad766a395bc3ff24

Download Submit
/data/data/amoungus.among.us.free.online.game/files/forward_dark.png

Filesize
1KB

MD5
12bfe20382337a84c0fc004a52b9ba9b

SHA1
ead15f7ef372c16f78060b8f8c5fc6e0ca6a96f9

SHA256
621fbcd864a7dceacffddb00a682148042732aeb675e22cd42b1a0937c6717a5

SHA512
7a346febc49154dd348be77f88c6e7ed5c7a531c2fed981f12c40e22a19e4e1a5c51fa766b3122898d97f05e1546a6f2a29b598b0ff441cc7de5e3c505aa33c4

Download Submit
/data/data/amoungus.among.us.free.online.game/files/half_star.png

Filesize
895B

MD5
a40e6a567b7aef329bda0ac200f7a23d

SHA1
2fa463649c7ba586b28670675a15e0d7a630c7e0

SHA256
ee0933e12dd4e302b1e18572d22f48861e8125e5d0201603e024d18ef5e38556

SHA512
5e77ca21445a09aa903ca08c10c1bcaf769d8273368b7981aacf1bbab08cefb7a521687e78d280828f46b625c99fde02050f5c914dd4d07fd742723f7713ee4f

Download Submit
/data/data/amoungus.among.us.free.online.game/files/logo.png

Filesize
2KB

MD5
45c24a8686a0978086c99f7039accc17

SHA1
c63ae2601322045390c7a4f230602b74ae18d2d8

SHA256
bc9c4aa36a0dd7efe16a8b3bca9172d970fd13d70d3e718aad17a78269079912

SHA512
d5861c64b9dc9139904c3bfc7da26fa6f3d9676a5b4203ad617c661d54d3716508fb02f282f5c204bf9d6a0c7162bbb565a44f2ceb96d825177065818b797727

Download Submit
/data/data/amoungus.among.us.free.online.game/files/shared_prefs_sdk_ad_prefs

Filesize
153B

MD5
65026ee778e1372d9f4aed742772e893

SHA1
5a5f1c821d7639424f3c75a44468ab5f7dd4e8cc

SHA256
15070f52136d5a8332f8d70f790bd7bb04cd6a99b386d40e0abedc40c42caa3c

SHA512
589c4a12c6b6ec1a1cca957da758aaa900e68a23b4bc2f42524b0e8dd34f6c5378541d9293eae1ae8d478bf5b5229ce4218c058fc3b399eb5756afeb05c68616

Download Submit
/data/data/amoungus.among.us.free.online.game/files/x_dark.png

Filesize
676B

MD5
1b759349f0bf3e55c51e2a2c2802b3cf

SHA1
5a608a093fa5f513d1ba52e8a9e01f693c47da98

SHA256
59d83bb6ebc5394c048273ea9e1516a2bc7a6f80212d53f81ee44cb1f9b65443

SHA512
3b39d22d0f8368dac2e36884b0316c5aba24180f51cb3a993fdefcdcfd5a36823d6c02c75863cd5a3bc0808223dcadf9934d548c433332bb9528f0eb8cecc0a6

Download Submit
/data/data/amoungus.among.us.free.online.game/no_backup/com.google.InstanceId.properties

Filesize
63B

MD5
98a78cc31fd0f2adc6281acd1e2352ae

SHA1
e7913b18083463a10bf6434cacc2fda1d03a9e60

SHA256
a5ce2f9fbc26d21cd895c2f176eba3b4795dd885d2f90aa4e632f8cf80fb0925

SHA512
6cb61d53f76294f69f6279f0c7e1e0849b557421da53d835fa70f5a01486a23613dea605dbd77b9eead8bb6ae6021e8ccea029bb543222cdb87102b59d395a6b

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads