2dc9233611a10d7e74fa553946271c28ce331752c8848e9e0846585aeef33bca

Analysis

max time kernel
6s
max time network
159s
platform
android-11_x64
resource
android-x64-arm64-20240910-en
resource tags

arch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240910-enlocale:en-usos:android-11-x64system
submitted
28/03/2025, 18:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

app-arlequim-hom-1.0.4.apk
Size

45.7MB
MD5

0fc3b9a1faa4687e8257dd21ff3a64e9
SHA1

2465fbb0807b3b0bc64948148952eb4f8eaaa564
SHA256

2dc9233611a10d7e74fa553946271c28ce331752c8848e9e0846585aeef33bca
SHA512

7f74d082cce306d3e48a8b69fe857fe1314db4955a2b19084a8c3698c782f200ee2e17fda3ee3ccc92540a6b6ab51dc2988a823a6a550335544d8049900eabd2
SSDEEP

393216:vI0yDovXuU03UIn+d0d1KYhs0TjJ9oxrxtzeSu34esau32REYunoBf:o+z0gd0iTdxTuaYzf

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/system_ext/framework/androidx.window.sidecar.jar	4840	com.arlequim.arlequim_app
/system_ext/framework/androidx.window.sidecar.jar	4840	com.arlequim.arlequim_app

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.arlequim.arlequim_app

com.arlequim.arlequim_app
1⤵
- Loads dropped Dex/Jar
- Checks CPU information
PID:4840

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

System Information Discovery

T1426

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.arlequim.arlequim_app/code_cache/flutter_engine/db49896cf25ceabc44096d5f088d86414e05a7aa/skia/9d530bb0bcbfd571ee3d820fdd79ff859d61e2cd/2bbbb4beb4e5f32a1b49f4a93d65f13f30798ff8.temp

Filesize
1KB

MD5
4610e941ea84cead5dded089ef95e2ea

SHA1
1754cb2dfdcce4e96db3a2f02decd1be9c95373f

SHA256
681760f1fa445bbe2c5550f9fd1fb1f31a964ca51501173e67a4d16029035439

SHA512
122a07745d81b43b72145db8e347118fd27dd5bd4453f1f5affca89f50755a3b3c346415c0dbf75c0d4654e6f0db9abaa52d484ab49f144347670c384fe01c23

Download Submit
/data/data/com.arlequim.arlequim_app/code_cache/flutter_engine/db49896cf25ceabc44096d5f088d86414e05a7aa/skia/9d530bb0bcbfd571ee3d820fdd79ff859d61e2cd/5a551daf3d51192724478ed516c3602fe7474765.temp

Filesize
1KB

MD5
c0444e5a1bac2d7079e77b09d49f5057

SHA1
79dbda0a4c58cb8b7c1dc44041b445e8046d4880

SHA256
6a5435b57acc6d5dc467a341d8d283957d2ef380a4c47d1abd9ba2962eafbaf6

SHA512
2511d379c314224d7d2759cbc21cad190f60abae55af95728a8a9b5025eae2970a35e18950d712a92aaeed81941ff0585e2af312d7285ed2916808f486caa3ef

Download Submit
/data/data/com.arlequim.arlequim_app/code_cache/flutter_engine/db49896cf25ceabc44096d5f088d86414e05a7aa/skia/9d530bb0bcbfd571ee3d820fdd79ff859d61e2cd/5f5dd003eaa24005e7ab14db902f3efb7ca955ae.temp

Filesize
744B

MD5
8f8b22a2193c906428bad44f798c357e

SHA1
2b6915f04c164c08100584d3dae68706d1c9eb8d

SHA256
8a5638801e24b70259e83e267de06c69cc6a58d661aa9ec6449b7748403d2748

SHA512
cfde87b03702f670f09c3fb6e73bfcd7eee75eee9515c2cb2ea68de9dfdec3a7364afc4442151cb25695ceeefb64f0ff7e1e1bdcc9b3e1d6f7087812a35c1e53

Download Submit
/data/data/com.arlequim.arlequim_app/code_cache/flutter_engine/db49896cf25ceabc44096d5f088d86414e05a7aa/skia/9d530bb0bcbfd571ee3d820fdd79ff859d61e2cd/5ffc79cf5681441fe86a3f18e8990894967d717c.temp

Filesize
732B

MD5
c0ab6580aab20ca6838fa8f561388574

SHA1
8a2475622fa3b495ea2840171c1d1d4de06d3de9

SHA256
4b1c784a5ed6968a096a1929b6f596e4c96c0d90f55fc210df8cc17718c7b68d

SHA512
cb3ab6ef1be1ce35281d65b9506cd659c3305467a37e013b60e5b67bb7ade7d286c6da631f913e6ea72458a361d4cc32a5fd3ec4f169856065b6bf6ac974cf85

Download Submit
/data/data/com.arlequim.arlequim_app/code_cache/flutter_engine/db49896cf25ceabc44096d5f088d86414e05a7aa/skia/9d530bb0bcbfd571ee3d820fdd79ff859d61e2cd/6b6195ba1a69b3d10673e750c52f17f20834284e.temp

Filesize
1KB

MD5
7c7e19dda29257bd2e92a9f39912df82

SHA1
58fca4a50d32f92477da6e088e9bd4c569ad41e3

SHA256
0ff0c7cd17ff22304c86d2b401b30770bd398e49e7ff328d2aadf845e55fd19b

SHA512
f1cd3426390eb4fce39f4e0cb0cd0854f8632215b15b1457bf2d9b3543dd6fba525acceb7701bdaf1aa99ab62faef60d5f4b9a27b991e15a92ebab5b1a4e544b

Download Submit
/data/data/com.arlequim.arlequim_app/code_cache/flutter_engine/db49896cf25ceabc44096d5f088d86414e05a7aa/skia/9d530bb0bcbfd571ee3d820fdd79ff859d61e2cd/70d338766ae20514eca6f5d387445bc8d553f73f.temp

Filesize
900B

MD5
77ff49f0e5d9301abd84fbcb1f1d961b

SHA1
0d52a5b720e182efcece683d1f7795a43f2c01e6

SHA256
5191e2151a3041de54bb2095768943ec0d91045d026ab70b3105d2d030a4cbcb

SHA512
5c8b5118cd2b23941b7e986d708419937acf52de3de8c10bee96c8a3d96dd030bcc9e3a8020acfc1e94bba77961f4b49d42a8d68659a32de578e7e3f05a11857

Download Submit
/data/data/com.arlequim.arlequim_app/code_cache/flutter_engine/db49896cf25ceabc44096d5f088d86414e05a7aa/skia/9d530bb0bcbfd571ee3d820fdd79ff859d61e2cd/8c490a6dd2c814ba46154b831b831b25991b2658.temp

Filesize
2KB

MD5
13b3991de07892a82ba6c206cd961c22

SHA1
0ff2997ba377eb48586e7ed12c819b233c65aea7

SHA256
5c03efd1c6d718d7661e578076b9ebff51546935948e62f8f2dd42a90915389a

SHA512
b1727bbfcb84b9f45d3bd31bc8c355061ef74e45ca71fd364044a1aa0093f34654d328fcb955a89e8c24363daa4589eabeec02bb9879f4ffa9715872166c8354

Download Submit
/data/data/com.arlequim.arlequim_app/code_cache/flutter_engine/db49896cf25ceabc44096d5f088d86414e05a7aa/skia/9d530bb0bcbfd571ee3d820fdd79ff859d61e2cd/d1e76c089834eb441d0b30fe79a43e0645f95b8f.temp

Filesize
1KB

MD5
779c5f4dc5b45ba9e61712a9f4f82d48

SHA1
262fcf5b6606d8624f1d66c2761250d4979713a8

SHA256
db84a99a0c8512ca49dca3e8702fabd390996c0d54bd384fb2e9311301c3d763

SHA512
f2ffa7be05ce5333ec78f62ca103058df98041532f58090db79d80ed5f3d63c7f3f3d1596f5096f08e285969f14129f6d9aa3ba2263b831cba5b242c77f89f4f

Download Submit
/data/data/com.arlequim.arlequim_app/code_cache/flutter_engine/db49896cf25ceabc44096d5f088d86414e05a7aa/skia/9d530bb0bcbfd571ee3d820fdd79ff859d61e2cd/f17ec4e6286c3fb2ab7c368367a730d9712a1a4d.temp

Filesize
1KB

MD5
e078d70cd2cb3dc0a09bb4ad40709902

SHA1
1683b4eb6b7acf5f27ae01aed83d7e7d885ba645

SHA256
372d64f4d7ab1d05af0be19f534f76613714da33af2077b01e2bbe6dbb139ccd

SHA512
361cb6b8c5094e138d96fa94c55d4aeac6a9ffeb193b5c1fce3af0bf9e17ec413513381e50e14bff3be0a5d7ae9f08d4278c4f6fb958cebfd0f5ab81d51e1526

Download Submit
/data/data/com.arlequim.arlequim_app/files/Inter_700_b7e339223d56e8c4210c86f1ba87b3d43d6c47e03956ea56f0a7a938ae61b2a3.ttf

Filesize
302KB

MD5
84e0ce3a955766bcc7f1cc9b444ae5b6

SHA1
914188dd398f26122c8fd6b7ddeb10571a9a763e

SHA256
b7e339223d56e8c4210c86f1ba87b3d43d6c47e03956ea56f0a7a938ae61b2a3

SHA512
2000e76b9a38d29b0b789c8348fd933e1643b0d1e3bd21a0eb9b9b2178754433fc149f5cab7c25379e0108f262e45bb79a36582eafb55d8e9cbd13ac159e231e

Download Submit
/data/data/com.arlequim.arlequim_app/files/Inter_regular_ecdb53099b1a68cd24c6900ea5beeafec81bd3c8cb9d0f3c51b9986583ba3982.ttf

Filesize
296KB

MD5
a1c48d34ae1d9cf297b1e522e4ece60b

SHA1
c49e93c97e4e2e62212f0daedccd0af23758aec8

SHA256
ecdb53099b1a68cd24c6900ea5beeafec81bd3c8cb9d0f3c51b9986583ba3982

SHA512
ddcea27faf740bc48df8e95bab0b5d41ea75fdd2c874a71b19a8ad21c7a8e75fce44e8b015b50153d386eb7f1e785d2d0e0ae4cf77b6f42ded20ce5dbb67b164

Download Submit
/data/data/com.arlequim.arlequim_app/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat

Filesize
8B

MD5
b5c4017e23169f61b6166cf0637e3a7f

SHA1
48db2d0d5d76d9ef57b4f84bcf4d8b054b368594

SHA256
921f11ad2451e8ab35832d2f722fe3bd1de189106ea7335244b46d20ca4b8978

SHA512
4eda9aac814136257e40029ac29c47369fece39efb636d149e360c294f2914afb5e0f886c17081928f8360ea6cc4562990527f26fe2a757fa6acba28a1ee8487

Download Submit
/data/misc/profiles/cur/0/com.arlequim.arlequim_app/primary.prof

Filesize
222B

MD5
12fbacf1947da9d68e78ea53b21724c2

SHA1
dc1f4e2e90bd2f36f3f357b3baad14cd183f6b54

SHA256
6e9facfc71980ae015fb4b16aea7a08c4568f01f81b52f709400b5a86917010b

SHA512
17b7e5a0fae0916a1327ac54c50a2d69aafd8cb60cf2be13e64bd4e139051382b6a774b25c25a8977fb151e8e1987090686f641b8905119014092b72e419b9a1

Download Submit
/system_ext/framework/androidx.window.sidecar.jar

Filesize
12KB

MD5
bdf3529e80318eb14e53a5bf3720c10d

SHA1
25c9ace4b1af6e80ebb2572345972c56505969ba

SHA256
bbc8300dd1e9cd08de8f66560c1ac2c928615b72b51cef9649f88974f586d64b

SHA512
48b9c2d01171bb651b9b54826baa51f4add48431a3efd8ceb5f7cc3bcd6f8f37edf47fabb24349dd15b3a02329cd450f90a8d164bf4f8dfae554bf3b35a8a55b

Download Submit