cc4697f65ba2ac587ab99c8ee45aeacdf58e7aaf60129c10d3cd96210f611efb

Analysis

max time kernel
629s
max time network
637s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
30-06-2024 07:27

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

PowerWarriors17.6.apk
Size

173.8MB
MD5

84577b06f47f89f0be6cf65599790fd8
SHA1

a5e055a054a0296a5e71e0e21333eb101a5a5ee0
SHA256

cc4697f65ba2ac587ab99c8ee45aeacdf58e7aaf60129c10d3cd96210f611efb
SHA512

435d2fe2e31da4b77d275029b295e76fe437487d9c77b4310d84dd9eba0017e5b066d56282fd7b8c200715cb29dce82b29f89eb93fc1191d44e5dae6caeda291
SSDEEP

3145728:ic7Vx1OQPHaA63OIOPfRM3Wx5VT41eSUU1KuuJy2qqCJppHcZmAEaVnj:fK3OzG3Wx5B4sSUUolJFpCJpJcZmTaVj

Score

8^/10

collection credential_access discovery evasion impact

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 1 IoCs
evasion

T1426

Processes:

com.ZombiAriel.PowerFighters

ioc process

/system/app/Superuser.apk com.ZombiAriel.PowerFighters
Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
collection credential_access impact

T1414

T1641.001

Processes:

com.ZombiAriel.PowerFighters

description ioc process

Framework service call android.content.IClipboard.addPrimaryClipChangedListener com.ZombiAriel.PowerFighters
Queries information about active data network 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.ZombiAriel.PowerFighters

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.ZombiAriel.PowerFighters
Reads information about phone network operator. 1 TTPs
discovery

T1422
Checks CPU information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.ZombiAriel.PowerFighters

description ioc process

File opened for read /proc/cpuinfo com.ZombiAriel.PowerFighters
Checks memory information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.ZombiAriel.PowerFighters

description ioc process

File opened for read /proc/meminfo com.ZombiAriel.PowerFighters

ioc	process
/system/app/Superuser.apk	com.ZombiAriel.PowerFighters

description	ioc	process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.ZombiAriel.PowerFighters

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.ZombiAriel.PowerFighters

description	ioc	process
File opened for read	/proc/cpuinfo	com.ZombiAriel.PowerFighters

description	ioc	process
File opened for read	/proc/meminfo	com.ZombiAriel.PowerFighters

com.ZombiAriel.PowerFighters
1⤵
- Checks if the Android device is rooted.
- Obtains sensitive information copied to the device clipboard
- Queries information about active data network
- Checks CPU information
- Checks memory information
PID:4410

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.ZombiAriel.PowerFighters/files/UnityAdsStorage-private-data.json
Filesize
41B

MD5
16d3e6eac0e79222a9b368edac765b34

SHA1
48d5e621fcdd84108f5750d6905180b622715b11

SHA256
3a518b70256a689906d6740062462e3124aad6e55c5aa47339a87a56e4933ee7

SHA512
d0aaacf86100135241426e2a0e9ba44414aa456cd708124e2f9c3a8037e008870cbcb506d316e4fe7cfe1d6dc3073393989a6f3c29f7cfabd6b0f65057afe747

Download Submit
/data/user/0/com.ZombiAriel.PowerFighters/files/UnityAdsStorage-private-data.json
Filesize
607B

MD5
d055395fcea2dfcaad0b02a12bf54fde

SHA1
854c4fa9461fd99bbd020dd27c7c5c83630dcf37

SHA256
fa6f4d8dec28d06b490e2c1d7ceb5064ebf503f36d9215ce5fc393b463eef9dc

SHA512
3007d2356380e61d091fe3f6b486df95a1da90ea530174aa6bb3eae34b865723c530e9523d4f9eefd4d66a2092324d61fe312bb62724aead514aa1cad2f675d8

Download Submit
/data/user/0/com.ZombiAriel.PowerFighters/files/UnityAdsStorage-private-data.json
Filesize
2KB

MD5
a4a3b9c848c27ac58b71797627a6c01f

SHA1
810a2721fef19ba775a9542ffc31350844efb526

SHA256
33237e5c644d42aedc0e66b38095913fba9f7a919580ce9f113cd46009dbdc26

SHA512
a4c88f8a0d1ae36002ba68a579d22626b55d6532ca117a531fde01c9cd788203978fdf4af3890fb4c360372448f1d3fa6504c99a8b7bdb4b3e9c8a8e2b3b717e

Download Submit
/data/user/0/com.ZombiAriel.PowerFighters/files/UnityAdsStorage-public-data.json
Filesize
2B

MD5
99914b932bd37a50b983c5e7c90ae93b

SHA1
bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

SHA256
44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

SHA512
27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

Download Submit
/data/user/0/com.ZombiAriel.PowerFighters/files/UnityAdsStorage-public-data.json
Filesize
112B

MD5
2eb76edc69050ba630a0433d2cfe6ac8

SHA1
a500d16d80aac202fe4060562bffbcb8b12cb0dd

SHA256
7bcbbe2bdb5d89e52a2c4e57ba09b93bdb54f4b2c1a5f577394344508fb5f56f

SHA512
12977b9c5092a364d4fe6a8d53db31641daa21513a5277ad70762ea009ffe327bba965e571382ebb4e4dad8f73298d4af05ccef5e4a99afacfad0e802ede7a4e

Download Submit
/data/user/0/com.ZombiAriel.PowerFighters/files/UnityAdsStorage-public-data.json
Filesize
217B

MD5
b243edcdaff377a6a2be6810f1e56cf9

SHA1
d536208d51832989946d237e2fa3f2d82b83e7f7

SHA256
3c43dcb28b64c17c37c870477d153534f9ac3f414dea813b2bb5732f2f6a64eb

SHA512
085d20862490754aef83f074728df283807a6d89015a11e9f3566bfca66a05ccf99cc2b6cd15cfc2bc31f3c803f284a4243e0bda374e39757219a0f431d84917

Download Submit
/storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-551142b88922d24a2c2f550e612a3735e3b7bc396379133516ffa90645733152.webm (deleted)
Filesize
2.6MB

MD5
496164f9be2e65a600afba40d7080dcc

SHA1
34ffe2200b0ec7269339d6d6014d6913f2240504

SHA256
c0a2b4b092a238712af4d712e6782a2f364a557cfcab5ecd305ec62e03fec719

SHA512
38da5fbf82c76c6a29bb55726aae83aab57ea54fc783949a511e9daee1c3ce3dec441f5dd8f61d0b00e590cdfdffe28cbd60de10cf1d55a1e5993611c21067fc

Download Submit
/storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-6a549708b166aed255239b9d06909375436cd7c4ff6ab9f16c8ad58f3e432ed0.html (deleted)
Filesize
4.0MB

MD5
bac93b9929ad9a90cdd4b94344f34a03

SHA1
81b62a62ed20d59079a663b1bad92f3f256fb146

SHA256
3f537405fd510d5549d11afb31a2797fa6deef54a0c59face98dd6cf16d9935a

SHA512
092ec3c7e5d370fc6e874069c32b67afdcbed37469d1b2cd660f9dbe93860a4b48a262c879a8cd5dc3a3ed2e3aea945bfdc014bd2571c8696feee307496ca871

Download Submit
/storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-9eb5b1b37479dc42d40e97484ddd65ad45cee6eb631423460181f429f3ad806d.png (deleted)
Filesize
481KB

MD5
d8f76d5f6c6cc371455ce27f35fd81f8

SHA1
99fde79fab161153c542ea153e1187cb059ebf4b

SHA256
3028edb02c6080a222a07ea66410938a8f4a97db3172c5ac6f87f5de117e0576

SHA512
51de9f4135075e9ae742aea0989b352374dbc93bec42960a80daa03be25ec183b5a556c688f49e26d0ccdebbc48e3a56cdc11e7868a97b1d997104f98ec9af7c

Download Submit
/storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-b0bb36aadd92695480cde3dc56396a09be68d53cc718a1a7a85ae43152839b61.webm (deleted)
Filesize
2.3MB

MD5
313c1d9e10aec9dd403a1399f09c7d36

SHA1
dbab530f4c240b05c19d25f4efe541288e611cb7

SHA256
cfb64568077b33c00c151c00628c4963646d929025720949b4745112b4043b33

SHA512
ffac6b8a59960e460d5682bb97849d2c9022f996c58dd016e0de54d8aba9e0e383ef9ed20f83dfdc1b1761177b3810d2ee6133187b411cf921adb4fe56293a9c

Download Submit
/storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-ca43d873bd13b2febee90f0fdd7647f96236d96ca25008d2f280f1ff68f83b4c.png (deleted)
Filesize
6KB

MD5
e8899c36549b6955627de9b2e8144aa5

SHA1
fb15c2003a4e2faf4aa2d3db65ba94e65b8dace3

SHA256
07c2a22780efeab6d2b55f9d68a08b5d2a8747f334dcec0fa669bf07f1c42a66

SHA512
ead6124b3cbc64ee74402efb1ae34e23937e48447af59811fdc8bb448b2f07d45c400adfc54df8a3f2aa40f0e38fab00b2334d95355272f4f59c64cadbbd147f

Download Submit
/storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsCache-e4ce7d9b040cd22930dc2c0cd7eaaf1bb9d27373886571558bdc402e1f102380.png (deleted)
Filesize
46KB

MD5
078660a3c5e7123c3f4fe86816e1c67b

SHA1
0599480ef48d71ae6b77ddfa8b54c5ca1a64079f

SHA256
eceb02e422e3352b5d1bf246c9f8328656a69c5cab63d7dff5d068c0052d95bc

SHA512
2a6b7e0291cc463a5097db2a7f17b246a25d9715020d0bc53fba84a92f478fda2bbd158cd49ac2d5639161ccff2a96642bc2174188bda1aa1b9f76b026c1b085

Download Submit
/storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsTest.txt (deleted)
Filesize
4B

MD5
098f6bcd4621d373cade4e832627b4f6

SHA1
a94a8fe5ccb19ba61c4c0873d391e987982fbbd3

SHA256
9f86d081884c7d659a2feaa0c55ad015a3bf4f1b2b0b822cd15d6c15b0f00a08

SHA512
ee26b0dd4af7e749aa1a8ee3c10ae9923f618980772e473f8819a5d4940e0db27ac185f8a0e1d5f84f88bc887fd67b143732c304cc5fa9ad8e6f57f50028a8ff

Download Submit
/storage/emulated/0/Android/data/com.ZombiAriel.PowerFighters/cache/UnityAdsCache/UnityAdsWebApp.html (deleted)
Filesize
1.8MB

MD5
e5f6800452bcaba6382146f174cbbf33

SHA1
408c1204c3e3bc041b1f5d400b67bd00ff445b44

SHA256
0c2b9f79e8bc952dfd2c215eafbe31457cdc629351b1bd24586b4580a93d1e03

SHA512
0608658331b262eea170a4ca8f91702dad7ffd9e1caa869628fad95a152226bab3b9a154f0c27b577f80621c581acc7255496f1e014d43a4c14162626f4e8fb6

Download Submit
anon_inode:[eventfd]
Filesize
8B

MD5
33cdeccccebe80329f1fdbee7f5874cb

SHA1
3da89ee273be13437e7ecf760f3fbd4dc0e8d1fe

SHA256
7c9fa136d4413fa6173637e883b6998d32e1d675f88cddff9dcbcf331820f4b8

SHA512
991294f43425a5b80f8a5907ca7cdbb611401282585a58bb415077005428e3b4c0f661fc07ba5c45f627bd8bdcb172389ce2fda461c029b837abc70f0abbea20

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads