353745675adcfa601cb9a5022cb073585100985b124126321f22050aad6e2943

Analysis

max time kernel
5s
max time network
126s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
01-07-2024 03:42

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

db0b0e5eb345facc657dd38e95995545.apk
Size

183.3MB
MD5

db0b0e5eb345facc657dd38e95995545
SHA1

6bc1d177656e76702734bd3b886156964adba161
SHA256

353745675adcfa601cb9a5022cb073585100985b124126321f22050aad6e2943
SHA512

ea5e027d073a41c0d264e84d42629b6e1aadf95a8194e4022899b7cd21a030b199426846d619bc418e32cc811ef746bc532c6b8ed51c6368cf837e7517a14198
SSDEEP

3145728:zjucD6r95njYYfnpc09bGKR8vReA7z8YTMI2DFOi44SSecymKgU8gvgBO6hJ1leo:zacD6xpYlIGKCvRea/4XD04jecyaUhYF

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.roblox.client

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.roblox.client
Queries information about active data network 1 TTPs 1 IoCs
discovery

T1421

Processes:

com.roblox.client

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.roblox.client
Checks CPU information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.roblox.client

description ioc process

File opened for read /proc/cpuinfo com.roblox.client
Checks memory information 2 TTPs 1 IoCs

T1633.001

T1426

Processes:

com.roblox.client

description ioc process

File opened for read /proc/meminfo com.roblox.client

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.roblox.client

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.roblox.client

description	ioc	process
File opened for read	/proc/cpuinfo	com.roblox.client

description	ioc	process
File opened for read	/proc/meminfo	com.roblox.client

com.roblox.client
1⤵
- Acquires the wake lock
- Queries information about active data network
- Checks CPU information
- Checks memory information
PID:4261

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.roblox.client/cache/0de3774d53f29efb27fa09a940a0ec5f.0.tmp
Filesize
5KB

MD5
93ef245c82cd8b8b4cb6ed4742f1a69d

SHA1
4f837f28c8ddb49749d2966aa647239e94728a58

SHA256
e63df78e9a4c4e87d0fd7a12b18e36aeb26ecebed120bea6a4e71c730fcdf00a

SHA512
d3947c2969b2ca2dc27c2cd82a16f634348d78018e5712d19dddb473f838a969f7a56fb474375cd216eeae23d81c978d508a7df9f66a72d64731c0d827884af7

Download Submit
/data/data/com.roblox.client/cache/0de3774d53f29efb27fa09a940a0ec5f.1.tmp
Filesize
221KB

MD5
2d5f293be8ce45f81310f5bfd7fbe759

SHA1
a5afc2c2f022bb385a55b8c2bcbcfbef3d422e69

SHA256
aabc01e53e8c19196f4b0238a126b230877fe7dc2cb064cc64bafb14902cbab3

SHA512
ab368a0918cdea80f903199400ccc8b0008af8c1403daad513c73b2b48678e375efe2308eb73c14c531af458dee801b23e850f70af7841bce97ff3f03e0563dd

Download Submit
/data/data/com.roblox.client/cache/journal
Filesize
126B

MD5
0e85cb0ec10d9cedea30fe6cfc146da9

SHA1
e031cdad4ef230028d3b721f649162a3e1e7bec3

SHA256
c148ffc7afdb4512f009bf4c791115a41459d9e8605e5508041b66ae8e87b47c

SHA512
b0c76c26735c7cad77fb4d8defd2ab8223bcb9fb55da9cdfaccf58f5d7a518c1ef8cdbc5e6f2de6437b17cd3fd86bcfb7055a3d64ae3ab5c6a871d8b193b4485

Download Submit
/data/data/com.roblox.client/cache/journal.tmp
Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/data/com.roblox.client/databases/google_app_measurement_local.db
Filesize
16KB

MD5
2c1c674c955e54b857d36b9dd75adf5e

SHA1
24a7d57a17a41d7b73cf9d7844c7e54d701231c4

SHA256
9e8bd9cfb13eadbda15413a951b0828e94bdca6bdaceca96061db62fd66fe73c

SHA512
77b1768918d6e5c8330b68c1ec540a090c4506a769bf9106c5e769effd3e4e0e5466f924f4cde1039153a3d7df7e8cedd4e14e262ccccccc9ccbc3ffc967d374

Download Submit
/data/data/com.roblox.client/databases/google_app_measurement_local.db
Filesize
16KB

MD5
afcf84bbe185e9617d7489a989369902

SHA1
b18c9362bc76bffb5ae42cef66890ccb12ab89f5

SHA256
a7cc6efb55b9c6a7cd2a5256bed4ec618df6c3edf966a7dbb848eee0a6999619

SHA512
c8f27e3e9d7c78bf8bc9bf966d8d96aaccc76e5000160254d53aedbf9fa95867cee958c457f98dfae5ec216d695e6a17e96715b4c99bb2de5bd17bc1b2a2f2ab

Download Submit
/data/data/com.roblox.client/databases/google_app_measurement_local.db
Filesize
16KB

MD5
7237409e0640cfab7bdbd429bf821a3b

SHA1
4c3da934842f8d4835dfe2a9c275a300e5123309

SHA256
5c8e1b63d187efafe1e09bfadd83fd360176d689b57b5a0cc40e6854c12449fa

SHA512
c8afaf6a8ee43ce3601feff417bfaec563c01bcff0aae24577054034112b2020967f25b0b1a919c3c9e5e81d62a21a87e908b782c4d5cb8bba8ac259108e9c1f

Download Submit
/data/data/com.roblox.client/databases/google_app_measurement_local.db-journal
Filesize
512B

MD5
502d5ac4b61f241f44f6ddfc5eca3f22

SHA1
29bad28b1aac552514b8aead2a292a22f5353926

SHA256
ed696550b6cd12c93a9cb0c78cc2ce50c2b1c6beca5b48af0c178a077192cfa1

SHA512
454cb147a86bf5c9d61df4db10f1b82be2e0444222d040e6a5811b9a1a88afbdc6e54537d1d033d9f32e6e4a0e5a6b51e9b1f50ed3907bcb44be98808ef1ed6c

Download Submit
/data/data/com.roblox.client/databases/google_app_measurement_local.db-shm
Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.roblox.client/databases/google_app_measurement_local.db-wal
Filesize
36KB

MD5
7e09f824f087d2a55ff492911cc715ac

SHA1
b5bff518363372a54721947771981c9e657bcb89

SHA256
f596f12838ef1aea015ca9d53d00c4889e15a4a32e4217ef3dcf5979d23832d8

SHA512
bca9ec5c35e787b5f84a858682b3ae87a78379de445bf54c48122ef9c92f426c4d1bed0db1ace7f21f5c8bd14ffae81d9389873acfdfdc4a3b8bb343f00a26c3

Download Submit
/data/data/com.roblox.client/databases/google_app_measurement_local.db-wal
Filesize
4KB

MD5
64f3604d372ef22b662e3021ce759986

SHA1
6c55bc2e40d570998a4e72a68c4d37f2fa1511bb

SHA256
32320e1d589752aa027653ce6ef7fb777c67e2a6aed8b01ffe8feb08b06b2762

SHA512
45c201f6c72a7f5bf5ae44dd3c246767e07118df90c23749d88e7545d78af1bcec7bcdc0244ab85d7d181c5818a58893f3db13e8df2e560ce2d2d1eaa29280a3

Download Submit
/data/data/com.roblox.client/databases/google_app_measurement_local.db-wal
Filesize
4KB

MD5
0aa16d402f754012393b0d3270edc8ba

SHA1
f745583fcadd071cc3ed45c98600879a3e6137ad

SHA256
91b2db263bf24fb2d401234bb2e4ed7106d7b9f1b71aa38817d25fa483b1e559

SHA512
107b9fedf2a29f4ef38d45105cd7f63300425b24e790e39776c6430c689cfb090229df67143aace11bb9c460a9c9af89fb12c01627e313d3501dc6b27e86b0d1

Download Submit
/data/data/com.roblox.client/files/PersistedInstallation2087781640895261793tmp
Filesize
90B

MD5
61dc48f6f72787d8390fd8a843f7e6f1

SHA1
af926c91d262024504ba4917bcf333a09384838c

SHA256
8d574decf0894284e756f22e59d6a57dc031c8fc4393cb10cd790c486b9b7aa9

SHA512
15237511ebd9fe31cc41de0e172b1312f7c36492a59f4403c9b3d016984afa6cc21616ddd2313822749f7096ddc9e05cc3dfe1ab65244fadc40e4231f949d00a

Download Submit
/data/data/com.roblox.client/files/PersistedInstallation6360034176711708594tmp
Filesize
560B

MD5
b591562eef4e06bbb40d0b3336627f2b

SHA1
f7dc1724be885867dd009b7301e78425e02a635a

SHA256
9a55cf665f6b0a86d08d2c5ac5ae5e46232f17d8201ba649b8df15d320d3bfe8

SHA512
e07150ac4d1122bccc11f5c048131273ed9c1a450f33ea3db5bd7dd0d5be7e22d0038e7a9bdc2abc50b383c72e4c2a02ab59617d0ddbb12a3716f9c27bcdb680

Download Submit
/data/data/com.roblox.client/no_backup/com.google.InstanceId.properties
Filesize
63B

MD5
2b30969759c6d0843eaf224cc372d802

SHA1
a9e189d8066a0204985eaf78a1b52f4de9a32d2e

SHA256
18c8f29950b3c3edb55d8d7051c37a7395633f2b5de7494be086a6e3f8122f1c

SHA512
a49536230f009b3ece429b233d82875edbc3177e77ef4b438ee5b488163de3ef90a640ac1763229be42d159c0315804ed839b74ba58322498d06151e61958bb1

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads