Overview

overview

10

Static

static

6

0f6ea55eff...1b.apk

android-9-x86

7

0f6ea55eff...1b.apk

android-10-x64

7

0f6ea55eff...1b.apk

android-11-x64

7

app.apk

android-9-x86

10

app.apk

android-10-x64

7

Analysis

  • max time kernel
    142s
  • max time network
    150s
  • platform
    android-9_x86
  • resource
    android-x86-arm-20240910-en
  • resource tags

    arch:armarch:x86image:android-x86-arm-20240910-enlocale:en-usos:android-9-x86system
  • submitted
    09/04/2025, 07:52

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0f6ea55effb6b33bbc1bbe0a62880ff420e71803546903d51fe034b1bda7901b.apk

  • Size

    21.5MB

  • MD5

    d97fddcdd7034bae124dc04d25b21acc

  • SHA1

    a4413fafd1c30e332a08a4aef47abf5d20f97800

  • SHA256

    0f6ea55effb6b33bbc1bbe0a62880ff420e71803546903d51fe034b1bda7901b

  • SHA512

    ee01c1bedc2af5820d0ccbab8ef18292f20867a2e2f1ac0059326d67b7acc4694a6256be3b71ba56b50f8817634ee906a27f7de3351339faad0cc44e6237c563

  • SSDEEP

    393216:gLkcr0ncN0WdWf1uTz54UF+cp8m1OQYYOVCKZjL2NQiVW2HVRjQdiMQ:YZSG0yimXt2K1JOVCon2vT3

Score
7/10
defense_evasionevasionpersistence

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 TTPs 6 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

    Application may abuse the framework's foreground service to continue running in the foreground.

    defense_evasionpersistence

Processes

  • com.garden.iptvv
    1⤵
    • Loads dropped Dex/Jar
    • Makes use of the framework's foreground persistence service
    PID:4326
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.garden.iptvv/app_dex/classes2.dex --output-vdex-fd=41 --oat-fd=42 --oat-location=/data/user/0/com.garden.iptvv/app_dex/oat/x86/classes2.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4353
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.garden.iptvv/app_dex/classes.dex --output-vdex-fd=41 --oat-fd=42 --oat-location=/data/user/0/com.garden.iptvv/app_dex/oat/x86/classes.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4377

Network

MITRE ATT&CK Mobile v16

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.garden.iptvv/app_dex/classes.dex
    Filesize

    8.8MB

    MD5

    83b465452f3bbb096649bc20dc140f68

    SHA1

    51a3d6bec13801f626d61b7f3e3782c1402b80b3

    SHA256

    a7acb7ea6dfb095d8a680ff6f3e65858a72dd334e93fbbb11332f93909577710

    SHA512

    3d8479343ce5c59ab782a2b97069ea603a52555772d561c1c179927b95b6922d747404da562252680e4616bda7e3a870be47f884558a7b0a18ffb7101e7cd48e

    Download Submit

  • /data/data/com.garden.iptvv/app_dex/classes2.dex
    Filesize

    2KB

    MD5

    4e2f95c28abaf08f84ae37faa3d0ca2e

    SHA1

    f9406488efe5154b24a29d1e4c3d8f1e83da87a4

    SHA256

    2b2f9c8e8c5eb644955280401df8482e5ba6ac71410c3f9c433c540f56f2db1a

    SHA512

    36016f971dc5b26d4a0f35131bfa92d5de705a8605241d25c560cf2e8ff7ad8e048c772a846866e8b7986960975706cb27868efaf1e259248f932a432ab89249

    Download Submit

  • /data/data/com.garden.iptvv/cache/classes.dex
    Filesize

    3.2MB

    MD5

    3cee8782840d36fb7685feb781250a09

    SHA1

    9d14f118fdc787d5fa13a2a2094bc9d62a6540dc

    SHA256

    3f12d1478088356fc59d666637b1e5bd77beb7f79e62f1cc7a63c38fd6bf44ae

    SHA512

    80177ced749376b2aa789443decbbf7f98223af18fe6ace9606f38ca4fb3e0b6833c8ef5ad8621f9c9aea47cfe81673a8aed80628e5911d8d62e5649a5dd2ce9

    Download Submit

  • /data/data/com.garden.iptvv/cache/classes.zip
    Filesize

    3.2MB

    MD5

    cac9e352c1d80005f4e15c530cdd1014

    SHA1

    fb8fc50eec2691d94c76867d509719116c40f0a3

    SHA256

    6519e43cce3ee2964f890d90356b63d4d1d551e580b22bfd42c3acd3f75898fd

    SHA512

    66473dc2d4c00be6be08a97f0a17aed786d1ff9943e5a92affcf982a6d8402a6630ee6f9b3c1f65a5c8519cf4431ec77edb3051613a057b5c065730661280463

    Download Submit

  • /data/data/com.garden.iptvv/cache/classes2.dex
    Filesize

    947B

    MD5

    1bd625689ca025a89428154d70cf713f

    SHA1

    20ec0805db8cfdbc0649d759352ccaa744dc67ba

    SHA256

    03e8fd54e9cfe22f1bb233223808a899ac86843ba7e5875a9983b301ecbca0e5

    SHA512

    a3281a2636d7544843bab459df4652e1524703975911afd029bec767fe89f8400477881aaaf899dba53adf1e0d29469d846038a3d993c85b67d2152980d2ba82

    Download Submit

  • /data/data/com.garden.iptvv/files/profileInstalled
    Filesize

    24B

    MD5

    5f063c6b91e56834015298ffc6a7ed43

    SHA1

    726a732b8364435af6dad76978a4e0c0adc5d7c1

    SHA256

    84f881984684fe3452335d39ab6b9f42c10ce4eee8bac680a0aefdd75821383e

    SHA512

    4a59052d46275597f062023f5790c9991310c21d602645c44a64326457bc55078d63fda5a95f87ca5d27fc535b8a8236f8eae4c2e5572e5d8bed90dfad7699dd

    Download Submit

  • /data/data/com.garden.iptvv/files/profileinstaller_profileWrittenFor_lastUpdateTime.dat
    Filesize

    8B

    MD5

    e51bc45042f815984430569f0e9d9ebe

    SHA1

    813fb0a888bd5c31100cbf956c75fa0a780de8fc

    SHA256

    1457d9a5553957877ea8ba137c74170d552fc1a7f23d27191282dd66f6f28fde

    SHA512

    f48523e07267b176aa4e5f69e8b870f944e84f328130a37cdb05cbbbe3eee01b9b8abea9f70abd3caf29be827aa87888909de2e30df58d27f56b5da3ba09ba85

    Download Submit

  • /data/misc/profiles/cur/0/com.garden.iptvv/primary.prof
    Filesize

    2KB

    MD5

    a816bf8da1fcd1b455b16f42ea3eb9c8

    SHA1

    dfd293d82a2bc7b64de7ea30bced3907ac581866

    SHA256

    68a14e8d34f8aff2420743ecbd7d2472ab253bbcfd468ad76f19989ba4785763

    SHA512

    20a82a714349249299dff31adff81e5507969d20397e733efbf443cbd94a841cb685e95312e7038db9ef4635c3da1677635f6c1b1d2f41842e0e3c100d32ac1b

    Download Submit

  • /data/misc/profiles/cur/0/com.garden.iptvv/primary.prof
    Filesize

    106B

    MD5

    9c968b20ebd419823e1d6a12e8efb510

    SHA1

    6a2cd839760659e3edb010fe6a3981ce694f94d2

    SHA256

    874ae0633910a43df45ca6192614ebbb56b7a7d0e81c0e786a496993a1daa78b

    SHA512

    c4beaa6f9fcafb3ab667768727f0950afe02d288034ec736a69332a7f79ef74b05de4e456ec224ff0395a8cdc81b6c819efa6378f674de833b2d28c3499c35f8

    Download Submit

  • /data/user/0/com.garden.iptvv/app_dex/classes.dex
    Filesize

    8.8MB

    MD5

    b069b13ab88e26c0e3b698f012a4c962

    SHA1

    69e1764deac23085ededf88946e079d5c84c9347

    SHA256

    3bbf84e315ef69371aa093be86a2df6244fef47a1129198421a63a70bd295793

    SHA512

    5847afb9a55e3ceb5783b27c8891778d91f33e2d0c1e202c09aa0342f034f4499f6f8df12fa14daa5d77db52633b17cb2abfe3aa35008f16673fb59c5fc34c96

    Download Submit