Analysis
-
max time kernel
4s -
max time network
131s -
platform
android_x86 -
resource
android-x86-arm-20240624-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system -
submitted
01-07-2024 00:32
Static task
static1
Behavioral task
behavioral1
Sample
signMagisTV_TG-MALL(3).apk
Resource
android-x64-20240624-en
Behavioral task
behavioral2
Sample
signMagisTV_TG-MALL(3).apk
Resource
android-x64-arm64-20240624-en
Behavioral task
behavioral3
Sample
signMagisTV_TG-MALL(3).apk
Resource
android-33-x64-arm64-20240624-en
Behavioral task
behavioral4
Sample
signMagisTV_TG-MALL(3).apk
Resource
android-x86-arm-20240624-en
General
-
Target
signMagisTV_TG-MALL(3).apk
-
Size
32.6MB
-
MD5
3bf5ab947080db8634ad5ab8f7a581c3
-
SHA1
94d24474687674ac94ba6d7b43155135b6199ebf
-
SHA256
177344b039e577e6953861ffc697d8692aa8e9b02a98726fa13996c2f9f9fd6b
-
SHA512
b1d9705c6a9750be9bbc7dd0e310814a04e3cc163e36453d01a627566dfc373abfbd9012aee1bd24506881c76db39145c5a2d15ae4143ced2cadeeb3a2eff0f3
-
SSDEEP
786432:v3jrbQULjGInXHJN7Xn8eIDRidU1HiUlT3gr/Ga:vTrEUeInZFXWEKH1gua
Malware Config
Signatures
-
Checks Android system properties for emulator presence. 1 TTPs 6 IoCs
Processes:
com.android.mgstvdescription ioc process Accessed system property key: ro.bootloader com.android.mgstv Accessed system property key: ro.bootmode com.android.mgstv Accessed system property key: ro.hardware com.android.mgstv Accessed system property key: ro.product.device com.android.mgstv Accessed system property key: ro.product.model com.android.mgstv Accessed system property key: ro.product.name com.android.mgstv -
Checks Qemu related system properties. 1 TTPs 7 IoCs
Checks for Android system properties related to Qemu for Emulator detection.
Processes:
com.android.mgstvdescription ioc process Accessed system property key: init.svc.qemud com.android.mgstv Accessed system property key: init.svc.qemu-props com.android.mgstv Accessed system property key: qemu.hw.mainkeys com.android.mgstv Accessed system property key: qemu.sf.fake_camera com.android.mgstv Accessed system property key: ro.kernel.android.qemud com.android.mgstv Accessed system property key: ro.kernel.qemu.gles com.android.mgstv Accessed system property key: ro.kernel.qemu com.android.mgstv -
Checks known Qemu pipes. 1 TTPs 2 IoCs
Checks for known pipes used by the Android emulator to communicate with the host.
Processes:
com.android.mgstvioc process /dev/qemu_pipe com.android.mgstv /dev/socket/qemud com.android.mgstv -
Checks the presence of a debugger