a378825d426606a0a86ec7ec357fcd5c205eaa84d890248f527b8847e3d48538

Analysis

max time kernel
1s
max time network
141s
platform
android-10_x64
resource
android-x64-20240910-en
resource tags

arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
submitted
14/04/2025, 22:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a378825d426606a0a86ec7ec357fcd5c205eaa84d890248f527b8847e3d48538.apk
Size

2.9MB
MD5

1a1e1b1556052aaedc9f5956b84ab20d
SHA1

4f1ffb72eec4256cef3c6484690cd898b6f62e06
SHA256

a378825d426606a0a86ec7ec357fcd5c205eaa84d890248f527b8847e3d48538
SHA512

76b2930ce9f5326978655ae0e32a6969c8c9ac5e6f8b31841fe5ab91234498544018d37eaced82786a37ea2d911a1609383ba55ac14fc466e349d4ca8419f627
SSDEEP

49152:ZwsGvebxR3lemg6yCHT5+8fCd8BmbWvxeqPff8tZWI7nX7wYz2nl9P6fXJoxQ+9C:CgN5vHT5RCd9SMW8t17X7wvv6vJD+9Xy

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 1 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.lovebeen6/app_blame/XquD.json	5214	com.lovebeen6

com.lovebeen6
1⤵
- Loads dropped Dex/Jar
PID:5214

Network

MITRE ATT&CK Mobile v16

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.lovebeen6/app_blame/XquD.json

Filesize
1.0MB

MD5
b422640e0b5a946fcd225b0fba3ca596

SHA1
40d2bf5e80fc38543039cdcff3b7cb62fce720e3

SHA256
ec161d8b15f6ddeb86ed7b555d00e8f048bdb176f297c47379ca0ccae2c2d552

SHA512
88b607b717f763827466ace3bb2ebef4fc0798a376fe2f8d744d29b76e386f2a1ee5bbc2dfc85a2b3ae2d217a03e713fc6840fe95da3d5d952b6eefb8350abdd

Download Submit
/data/data/com.lovebeen6/app_blame/XquD.json

Filesize
1.0MB

MD5
540982ecb78450ffa126230612014511

SHA1
2ab3ad7510c6970d345f70bafa2930fbc0a8877a

SHA256
9f06626a19926caee47b4a40cc008df018ec965b016ed1d36976a41f82371386

SHA512
0651aadeef455ed60012b0a1ce7491ea9c6edb33127796e358bbbaa2c6d61d5145f58c5e33516bb22d96e5772d1b252f2a68e2e46611d689394d5e1f09ac9cc5

Download Submit
/data/user/0/com.lovebeen6/app_blame/XquD.json

Filesize
3.0MB

MD5
26a1a00475d96d561e814d196aa11c45

SHA1
5c15d1dbbc2cc7dec2ecab065562ac0164aa854a

SHA256
40d1d8115b20bb9ac5f55094911f98db584fd0bfa8be9ee578d9062050d4ae9e

SHA512
bb85fc5b1a473e6ed63bb2f7ed855d1b1692b082e7471ff12000633c892e1469169bd283a5e5c18854d3371830b73097efc24c27affb8859d44e14efe3a294ad

Download Submit