52193b90058911302dd3763eb68c59c4f9b818aaab0b7c38a31a0f305a93552b

Analysis

max time kernel
263494s
max time network
139s
platform
android_x64
resource
android-x64-arm64
submitted
04-08-2021 05:45

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

Download(1).apk
Size

2.0MB
MD5

896114639cc1c4a141bc58dd4ed2c7df
SHA1

2e41a07fa0ef4b44b3d494846481fef2efe0e5c1
SHA256

52193b90058911302dd3763eb68c59c4f9b818aaab0b7c38a31a0f305a93552b
SHA512

758f60f2a8def6c395f8e92c6e2d39027df7d6c7ad334c573a71519ccb3ce352acc98ea9adc46723de9c6327ebff5f475f52d2a16774be10b1309ad711204d68

Score

7^/10

obfuscation

Malware Config

Signatures

Loads dropped Dex/Jar 3 IoCs

Runs executable file dropped to the device during analysis.

Processes:

jsn.naturephotoframe

ioc	pid	process
/data/user/0/jsn.naturephotoframe/files/498bdbf2.dex	4256	jsn.naturephotoframe
/product/app/TrichromeLibrary/TrichromeLibrary.apk	4256	jsn.naturephotoframe
/product/app/TrichromeLibrary/TrichromeLibrary.apk	4256	jsn.naturephotoframe

Uses reflection 5 IoCs

obfuscation

Processes:

jsn.naturephotoframe

description	pid	process
Invokes method android.util.Log.d	4256	jsn.naturephotoframe
Invokes method dalvik.system.CloseGuard.get	4256	jsn.naturephotoframe
Invokes method dalvik.system.CloseGuard.open	4256	jsn.naturephotoframe
Invokes method android.security.NetworkSecurityPolicy.getInstance	4256	jsn.naturephotoframe
Invokes method android.security.NetworkSecurityPolicy.isCleartextTrafficPermitted	4256	jsn.naturephotoframe

jsn.naturephotoframe
1⤵
- Loads dropped Dex/Jar
- Uses reflection
PID:4256

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/jsn.naturephotoframe/app_webview/.com.google.Chrome.SwFxlJ

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/jsn.naturephotoframe/app_webview/Default/Web Data

MD5
536e58581641e767a8bf8eca3b8cde9e

SHA1
750a88189322e36147068f1c585f02163ff3a388

SHA256
3ba04fa6622801be4e625176b175ff75caf19c8966c13418bf1433433eefa1a0

SHA512
498da0911c702bc683cf153ce9b66044642378eafb79bffe0afd7f7460bd12a4c9bb424e1606550d8bbfb25dede34b5ad6ad1f7ee698c8d5ff67208625612319

Download Submit
/data/user/0/jsn.naturephotoframe/app_webview/Default/Web Data-journal

MD5
104844b564f32e2926a05934c95370f1

SHA1
58ea4f48e3be5980a5019deb663378a2d6e4f85b

SHA256
0ceac82deefe02ea8d553f80d71ed3a2a1f6286046eb6b25b5f2be1c33d5eaf0

SHA512
88f84ae1e363e47a29142425126c3152ea8276a38d92b502657ebb31320e675adb202a6368f2d79c0c743e9d04b6beffc7fe1c8ca9ceaae02a55564b2f6de78d

Download Submit
/data/user/0/jsn.naturephotoframe/app_webview/variations_seed_new

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/jsn.naturephotoframe/app_webview/variations_stamp

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/jsn.naturephotoframe/app_webview/webview_data.lock

MD5
3a49416ff43b1f4baa7457e4ffaa25c6

SHA1
ff1f7377aff16f83307dc7e9061f6f2e6569d7e7

SHA256
4a54d432af34408c7aed06a0956315f83880e8821ce79be392086d8f5002844c

SHA512
6fbac6f9477a78fe23eaaf1bcedc68aa8646d2eb2bc8332ac506ada6f0af1c029e87dc8e780d37fad23e4b7307f8fc3ed65d8a8d049e440cea7e7e41c43f1796

Download Submit
/data/user/0/jsn.naturephotoframe/cache/WebView/Crashpad/settings.dat

MD5
27c6b293a71ea41d4df4566955dec23f

SHA1
2122550c3c5b618e822a1069e630ad86fd43ef58

SHA256
ef24270ac022ca4b38257e0502afe7e92b72c946be056436b9e798e69dea8d7a

SHA512
0c743f4c03ee5d9aaa7a3ad830eacb54af00d932ac433dfcdb865c8772882c32b9867aa66af58cc623e2fa9ed1b2a3029c311d5a6e4f94a12556ef3b26eb2aa2

Download Submit
/data/user/0/jsn.naturephotoframe/cache/WebView/Default/HTTP Cache/Code Cache/js/index

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
/data/user/0/jsn.naturephotoframe/cache/WebView/Default/HTTP Cache/Code Cache/js/index-dir/temp-index

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/jsn.naturephotoframe/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index

MD5
54cb446f628b2ea4a5bce5769910512e

SHA1
c27ca848427fe87f5cf4d0e0e3cd57151b0d820d

SHA256
fbcfe23a2ecb82b7100c50811691dde0a33aa3da8d176be9882a9db485dc0f2d

SHA512
8f6ed2e91aed9bd415789b1dbe591e7eab29f3f1b48fdfa5e864d7bf4ae554acc5d82b4097a770dabc228523253623e4296c5023cf48252e1b94382c43123cb0

Download Submit
/data/user/0/jsn.naturephotoframe/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index-dir/temp-index

MD5
c5c7cbf6157126b3c30b756bd3faa311

SHA1
25ab70419fc76d225f13adc667e025a101eaff40

SHA256
6267b552729a21d797488e90d0efbeaa74c8c647bc0458fc88ec7276bfb10e13

SHA512
b0a1ba2a9b5a18f91b98222fed223d2e41b35d80f7572e33e3b484ade467c74a88b4ac919cae2e04c697459067fb9c2de7b7c9528e9746d0fe5b90e80e657f40

Download Submit
/data/user/0/jsn.naturephotoframe/cache/WebView/font_unique_name_table.pb

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/jsn.naturephotoframe/files/498bdbf2.dex

MD5
022e62b9d5b891ada38ba51113b28e9a

SHA1
06c894a59c15b6926342e26e782de75efa9f5144

SHA256
750949ac8e4623b55d5b94ec4dade89b0baecb3540d82524582d7ad04d29378d

SHA512
235b8ab8c953e274e9f1c30c49ea5a42152c549daf60290cf0f856f1e884d657490545fb703cc7945ae8438141c5e2f821e80196f4ad258e28c747bb8f3e9830

Download Submit
/data/user/0/jsn.naturephotoframe/files/498bdbf2.dex

MD5
4021ca384efb8d7a690e5ba7aa1e4f47

SHA1
30ebc6aa45b8140dc41fde53fe8cd11d3d9dfc41

SHA256
b9d39323c178215de60affa8ccce9fe6e4df214691c057ff32cdef8691819691

SHA512
4ce11acd3b4f27647e291804c0b51d362752e475169ce331bf74604d88f3df8fdbf9696f9e31259af8ff6d1136d461e2c990fbcfb755f47ad7e99ab3ef9bc209

Download Submit
/data/user/0/jsn.naturephotoframe/files/BGEaUZrY

MD5
54ee1997c5d7e934db82bea63b728edc

SHA1
017f4958908f60a2ad3639452d44f1e485fd5ef9

SHA256
c84430aba218ac0807b1dbd879e7a7bbe891fa5779f81b3fb2a0610e1eea59ec

SHA512
0b0e0fe63c75437834a6a10534741f5068fb1bc27bd319ba4e54723d4746675f5179a652ee83d903b4d69f78030b67f8d8f50c327bbd3a7a5d1a675a949265c0

Download Submit
/data/user/0/jsn.naturephotoframe/files/TrPJFdsN

MD5
df56cd7bd143af4dbff79cb2191ab1fa

SHA1
7aee5918e0bdcc07b2707cb1535534e6eeafa36d

SHA256
4a5698c0481be89a572309ad1f9b1c6b3db14d29337aa270a7ad6b69891b657b

SHA512
4786f99fcce7a26648f503b0c6287399d177d33c3294132be70ad398aa1bf4561833caa70408c1ca1f812e91c5fb46bb1c89abe12d39739e5e7bbd8d39dbde51

Download Submit
/data/user/0/jsn.naturephotoframe/no_backup/com.google.InstanceId.properties

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/jsn.naturephotoframe/no_backup/com.google.android.gms.appid-no-backup

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/jsn.naturephotoframe/shared_prefs/WebViewChromiumPrefs.xml

MD5
97ccd9a2b2063143df56b6937f961ca4

SHA1
5e78a91ae5df289ce83443cb7d5589dd3504fb5d

SHA256
248ff7928128015b1cfe3e6517c8f9b8c9511bfb8c8baf44fc1370640eac61fd

SHA512
86c05a5bb3d7eedea390664796966e9e5a5bf846c85808da54407788a76b3ee25b91428242a1e76d8765bfe51e1ba3636617fbab6e7dbb39fcc433e07c3fcd3b

Download Submit
/data/user/0/jsn.naturephotoframe/shared_prefs/com.google.android.gms.appid.xml

MD5
610b0c6bbd3d3cc6754c2df8f61f824d

SHA1
06800394b1d8a900587d93a50746eea3a5a0500c

SHA256
394855b8e826848b5adbef5f5d8e2bc40c1fac8fd8e29d59355473a2062441c1

SHA512
990342e96f5bcb90748d0ba2e8cc0c455a6d98b191a4cb123c94ab80607332b5754ace4c35f82b10b3431f4273fd7b4934cbe6ee2f876fe47b5db14db58137df

Download Submit
/data/user/0/jsn.naturephotoframe/shared_prefs/com.google.android.gms.appid.xml

MD5
4e52374f8cda2b4df9a6aebcfc097fb6

SHA1
0636efedbd61d82cd0998a2ff9aad2b55af29536

SHA256
64a6e1f9f423e23e9b0c5d6de800b5f13876b625805454484a3d86080ba52ca1

SHA512
69ccf96237e778e6e7b6f9657292e739f7f9b8ff5d35f846f98dcc1aae7a908cb622eca788e93cebb9592c9d38d50fa26e75ad6bd7eeba52288e7737fbe4b516

Download Submit
/data/user/0/jsn.naturephotoframe/shared_prefs/jsn.naturephotoframe_preferences.xml

MD5
9f4b448544eaf3479083331b332f2413

SHA1
5f783283bed4f2e8d9bf716913722e2992032666

SHA256
db88554e3e4e1c47ab240b9996b2b7f9f390641791c49d68a92c96f15b9a44f2

SHA512
d91f4927e625d48a89b2d818f6e62b277f66dbf2663f6a17a2819df66f3c3f08b9c1eea05d3ae1d08de9ed9e0cdc701114c00b37a453e8746807ba6af7871cfb

Download Submit
/data/user/0/jsn.naturephotoframe/shared_prefs/jsn.naturephotoframe_preferences.xml

MD5
9a7185fe4f69afd292cd64e24a9505ca

SHA1
b5e8cbc03586d6bffeb4788eba1041e5ac175fe8

SHA256
0b9adaa5baf258fa1ef777a7c9cf1cbda2a2aa4b472b93a931f4e4f1f3c96942

SHA512
2280b5baabdd93700f515f5296c318607ac5f127ac009520838e716cfa22d12645107f86065cb42a3deea0f9022b9433dab54ccc06bb43393c241145df2632e3

Download Submit
/data/user/0/jsn.naturephotoframe/shared_prefs/jsn.naturephotoframe_preferences.xml

MD5
ee1aa20eef6b27fcf78ad88591a7846a

SHA1
d1325e6bcfc0de1ba46a9b50262f8700696083e0

SHA256
a538e73ed1c2bf648948acdaa5aa0e18d4fb6ae9ab588e02673814fc2400046a

SHA512
52840ac96e8f71f8ff40aac5e3518251a96e54638fea147a68294852eea84687bfe4a9741e6c15a09a3fc102825c3761d69b23155fff43b94267d5c26e4990ee

Download Submit
/product/app/TrichromeLibrary/TrichromeLibrary.apk

MD5
39528daeaf7245ec0be5c52098c44a95

SHA1
e10152848a684f53e9dc35c38d99ff0add509227

SHA256
4d59ccc291c4f9a6170a14baa457d50111354c8ee389043b6b40b08092da835b

SHA512
fa5ea98f323a05d2da2934021cd42f3791cb9c11a391ff0d026bf66a1af48f008c465f8eaa1580949c125cb758b16f47efece125919bda440876dbb843dc3e09

Download Submit
/product/app/TrichromeLibrary/TrichromeLibrary.apk

MD5
39528daeaf7245ec0be5c52098c44a95

SHA1
e10152848a684f53e9dc35c38d99ff0add509227

SHA256
4d59ccc291c4f9a6170a14baa457d50111354c8ee389043b6b40b08092da835b

SHA512
fa5ea98f323a05d2da2934021cd42f3791cb9c11a391ff0d026bf66a1af48f008c465f8eaa1580949c125cb758b16f47efece125919bda440876dbb843dc3e09

Download Submit