fa7e64af14e57194e2463d959e809812e9bdd48f4cc996565706f658e78694de

Analysis

max time kernel
6s
max time network
151s
platform
android-9_x86
resource
android-x86-arm-20240910-en
resource tags

arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
submitted
30/03/2025, 19:53

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

stub.apk
Size

32KB
MD5

82668f36013320f7b873253809e0023a
SHA1

76ed83cbcaca19ea94fbf20c8ab7e24262c16d09
SHA256

b5b3081583d0175392ed093ed74d4ec82796b87d907e33a5b329771a0efcf523
SHA512

1670bf929341bf75ffe018435bf77b0a35f77e90d161f3b86b802705a2a093e475bfca36fd003daae5eb1aaf682e733b32639e3d987931123e259b24206c2532
SSDEEP

768:n84l8r2d+8qIv8HPg53huKYH/sX74yOW3CGnVq+ZRxXy:H2r2dzcPg53huKYHEROW3Cp+Zy

Score

6^/10

discovery

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.topjohnwu.magisk

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

com.topjohnwu.magisk
1⤵
- Queries information about active data network
PID:4317

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.topjohnwu.magisk/code_cache/res.apk

Filesize
9KB

MD5
91a9af3b57100ee6f3a5cb7dedd08f52

SHA1
d39292c6e863e58d48763a3386d14b884818d8ba

SHA256
c9348e2944686cd13162a7facc51392caa6bfd8ed2457c9dd161c13c85eab2be

SHA512
1bae8e425a51f293e0a6e8c87db192370fa55b11cd9bc3e47c9199afce5830b5c37d12d07235cd862dc14bfa632f5570ad8e88759633c4a622c5c7fc10a6c627

Download Submit