Probe of dynamically discovered method does not work

[cryptax]

I wish to hook a method which is from a dynamically loaded DEX (packing). Dexcalibur does manage to see the class & methods, and I am able to click on "Probe ON", but then when the sample is spawned the hook never gets called although the method does get called. I suspect the hook is not quite written correctly and does not hook correctly.

To reproduce / to understand

• Use a packed sample. For example SHA256 8a7309366917e05c348caf79d4f29f60878958baff794f07c12f08dadcb186fa. Beware, this is a malicious sample of Android/Xenonorph.
• In static analysis, seach for class("name:org.securitypolicies.setup.utilities"), search for UtilGlobal class, and select Probe ON for method Log
• In hook, make sure this Log method is mentioned as a custom hook and spawn the malware

In the log lines, there will be no call from that UtilGlobal.Log, though the method does get called. For example, with another tool House I am able to hook that very method and get plenty of hits.

Screenshots
UtilGlobal.Log is Probe ON

There is no hit for UtilGlobal.Log when the malware is spawned with Dexcalibur

With House, we see plenty of hits for the same malware & hook

Desktop (please complete the following information):

• OS: Docker container here cryptax/dexcalibur:2023.01
• Node JS version: 19.4.0
• Dexcalibur version (see 'package.json' or output) : 0.7.10
• Frida 16.0.8
• Android version: emulator Android 10 x86_64
• Rooted