0f89f39ed904cc48584aa732304880bc8f8dd9b9f13a05ca0ec028fe47e3c968

Analysis

max time kernel
126s
max time network
159s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
28/03/2025, 22:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0f89f39ed904cc48584aa732304880bc8f8dd9b9f13a05ca0ec028fe47e3c968.apk
Size

4.8MB
MD5

f5fc84957dd72ee9487ca561abccf3b0
SHA1

2ddb4163898024ae0a5949ff74aed17a1732668d
SHA256

0f89f39ed904cc48584aa732304880bc8f8dd9b9f13a05ca0ec028fe47e3c968
SHA512

f9241f69abb8d3545f7063475e4a8dfa2193f70646ca2f8bbc6c573aaf52b0481ee74332f68d6d33c2bfdb3278f2f1a00674af1c7dd193dbf874c183f3eb5383
SSDEEP

98304:O9vsfEjA2snEng9CAFQ8/svCNLMWpiy7jQbCDDEwf05kz46sw1RQZhP1W:OyckOng9CACjCNwWpiyAbAedmRMP1W

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries the mobile country code (MCC) 1 TTPs 1 IoCs

discovery

System Network Configuration Discovery

T1422

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone	com.nineggame.blaze777

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.nineggame.blaze777

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.nineggame.blaze777

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.nineggame.blaze777

com.nineggame.blaze777
1⤵
- Queries the mobile country code (MCC)
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
- Checks memory information
PID:4269

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads