ioc[.]one - OSINT Cyber Threat Intelligence Database

Dissecting mobile native code packers. A case study. - Zimperium

Tags

cmtmf-attack-pattern:	Native Code
attack-pattern:	Data Hooking - T1617 Malware - T1587.001 Malware - T1588.001 Python - T1059.006 Tool - T1588.002 Hooking - T1179 Hooking

Show in Graph

Common Information

Type	Value
UUID	d0466fd6-a324-4212-84f4-e7b6b7ba3a68
Fingerprint	bc17982164710399
Analysis status	DONE
Considered CTI value	0
Text language
Published	Feb. 2, 2018, midnight
Added to db	Jan. 18, 2023, 9:11 p.m.
Last updated	Nov. 17, 2024, 7:44 p.m.
Headline	Dissecting mobile native code packers. A case study.
Title	Dissecting mobile native code packers. A case study. - Zimperium
Detected Hints/Tags/Attributes	65/2/43

Source URLs

	Redirection	Url
Details	Source	https://blog.zimperium.com/dissecting-mobile-native-code-packers-case-study/

URL Provider

Details	Provider	Source level domain
Details	zimperium.com	blog.zimperium.com

Attributes

Details	Type	#Events	Value
Details	Domain	8	libart.so
Details	Domain	3	libdvm.so
Details	Domain	52	android.app
Details	Domain	2	libjiagu.so
Details	Domain	16	libdl.so
Details	Domain	1	ro.yunos.vm.name
Details	Domain	34	ro.build
Details	Domain	1	itr.py
Details	Domain	4127	github.com
Details	Domain	25	link.springer.com
Details	Domain	53	developer.android.com
Details	Domain	28	docs.oracle.com
Details	Domain	11	android.googlesource.com
Details	Domain	2	lief.quarkslab.com
Details	Domain	11	www.sohu.com
Details	Domain	1	www.gabriel.urdhr.fr
Details	Domain	1	newandroidbook.com
Details	File	172	androidmanifest.xml
Details	File	3	util.config
Details	File	1	itr.py
Details	File	1	vm_emulator.py
Details	File	2	application.html
Details	File	1	contextwrapper.html
Details	File	816	index.html
Details	File	367	readme.txt
Details	File	1	dextra.html
Details	Github username	1	zyq8709
Details	Github username	4	checkpointsw
Details	Github username	3	rednaga
Details	Github username	3	strazzere
Details	Url	1	https://github.com/zyq8709/dexhunter
Details	Url	1	https://link.springer.com/chapter/10.1007/978-3-319-26362-5_17
Details	Url	1	https://github.com/checkpointsw/android_unpacker
Details	Url	1	https://github.com/rednaga/dexhook
Details	Url	1	https://github.com/strazzere/android-unpacker
Details	Url	1	https://developer.android.com/reference/android/app/application.html
Details	Url	1	https://developer.android.com/reference/android/content/contextwrapper.html#attachbasecontext(android.content.context
Details	Url	1	https://docs.oracle.com/cd/e19683-01/816-1386/6m7qcobks/index.html
Details	Url	1	https://android.googlesource.com/platform/bionic/+/android-4.2_r1/linker/readme.txt
Details	Url	2	https://lief.quarkslab.com
Details	Url	1	http://www.sohu.com/a/167000502_354899
Details	Url	1	http://www.gabriel.urdhr.fr/2015/09/28/elf-file-format
Details	Url	1	http://newandroidbook.com/tools/dextra.html