1
00:00:00,120 --> 00:00:02,850
To run Jenny motion then.

2
00:00:03,750 --> 00:00:06,540
Now we'll do some dynamic analysis.

3
00:00:07,020 --> 00:00:09,180
We will run our mobile security framework.

4
00:00:09,210 --> 00:00:11,600
Just go there in the folder as we've done earlier.

5
00:00:12,150 --> 00:00:15,360
Point forward, slash, run, dot as H.

6
00:00:15,840 --> 00:00:23,250
This will initiate the Web site or the local host of this application on board a thousand.

7
00:00:23,820 --> 00:00:27,990
So open Firefox, go to the local host board eight thousand.

8
00:00:28,740 --> 00:00:30,300
This will bring up the homepage.

9
00:00:30,810 --> 00:00:32,780
So Brison upload and analyze.

10
00:00:32,790 --> 00:00:36,820
I have installed a randoms malware here just loaded.

11
00:00:36,900 --> 00:00:41,640
And as you can see, it will give you all the analysis as we've seen before.

12
00:00:41,700 --> 00:00:42,570
Nothing new.

13
00:00:42,960 --> 00:00:44,070
But what's new here?

14
00:00:44,070 --> 00:00:48,000
On the left side there is the dynamic analysis button.

15
00:00:48,270 --> 00:00:57,720
So just click on that to trigger the dynamic analysis of this mobile application that you have just

16
00:00:57,780 --> 00:00:59,730
uploaded to the system.

17
00:01:00,300 --> 00:01:04,080
So here, as you can see, we have a couple of options.

18
00:01:04,220 --> 00:01:11,820
It started running at intercepting proxy, invoking the agents that will install couple of agents to

19
00:01:11,820 --> 00:01:18,150
do the SSL interception and all the other dynamic analysis techniques.

20
00:01:18,760 --> 00:01:21,090
We have been options here to play around.

21
00:01:21,540 --> 00:01:23,580
You can stop the screen stored the screen.

22
00:01:24,060 --> 00:01:26,710
You can start the activity, tester, et cetera.

23
00:01:27,330 --> 00:01:29,100
So feel free to play around with it.

24
00:01:29,460 --> 00:01:36,540
Just it will load the application automatically and you just have to initiated by pressing this cute

25
00:01:36,570 --> 00:01:38,760
little button down below.

26
00:01:40,260 --> 00:01:46,110
You can as well have the option to enumerate loaded classes, capture strings, et cetera.

27
00:01:46,680 --> 00:01:50,580
So here it will load the application on the left side.

28
00:01:50,640 --> 00:01:53,820
It's a snapshot for the Gennie motion emulator.

29
00:01:54,420 --> 00:02:00,750
The screen here that you're seeing here that you're seeing or the emulator is the same snapshot from

30
00:02:00,750 --> 00:02:01,770
the Jenny motion.

31
00:02:02,110 --> 00:02:05,280
Android virtual machine that you are using.

32
00:02:06,840 --> 00:02:11,430
So as you can see, it has the same current screen.

33
00:02:13,870 --> 00:02:15,640
It can be somehow slow.

34
00:02:16,000 --> 00:02:22,180
Depends on the version that you're running and the build of the Android application.

35
00:02:22,450 --> 00:02:29,080
The day it will run the malware and sandbox or an isolated environment.

36
00:02:29,890 --> 00:02:32,740
So just feel free to play around with it.

37
00:02:32,800 --> 00:02:34,360
I will not run it fully.

38
00:02:34,780 --> 00:02:36,550
I'll just show, you know, the reports.

39
00:02:36,610 --> 00:02:40,740
Just press on generate report of the application is interacting with you.

40
00:02:40,750 --> 00:02:42,310
It will load in the emulator.

41
00:02:42,340 --> 00:02:44,470
Just have to provide data.

42
00:02:44,530 --> 00:02:47,450
Interact with the application, etc. It will do the same.

43
00:02:47,510 --> 00:02:50,030
So now I pressed on generate report.

44
00:02:50,070 --> 00:02:51,220
It's collecting data.

45
00:02:51,820 --> 00:02:53,380
It is generating the report.

46
00:02:53,430 --> 00:02:55,810
And here you can see this is the report.

47
00:02:56,350 --> 00:02:58,570
You can check it out.

48
00:02:58,660 --> 00:03:00,310
It has all the logs needed.

49
00:03:00,730 --> 00:03:03,250
The HTP traffic in case there is a traffic.

50
00:03:03,280 --> 00:03:05,560
I didn't interact with the application.

51
00:03:05,590 --> 00:03:08,410
But in your case, it will generate the traffic.

52
00:03:08,920 --> 00:03:11,140
You can here download the application data.

53
00:03:11,180 --> 00:03:14,190
If you scroll down, this is the activity tester.

54
00:03:14,830 --> 00:03:21,400
In case there is a screenshot, any malware check your LS eyepiece are checked and validated.

55
00:03:21,760 --> 00:03:24,940
All the euro ls called by the mobile app will be here.

56
00:03:24,940 --> 00:03:29,410
The emails in case it's using escalate database SML files.

57
00:03:29,440 --> 00:03:36,500
Other files are all listed in this very, very, very useful dynamic analysis report.

58
00:03:36,560 --> 00:03:39,910
You don't have to run the applications on your mobile phone just here.

59
00:03:39,970 --> 00:03:47,170
The mobile security framework will handle that for you can as well go to the dynamic analysis page directly

60
00:03:47,560 --> 00:03:49,390
and view the report from here.