e6fa66fc4795131cfbb97668279b84fbf389cc0ff736ae77ec351caa15a45038

Analysis

max time kernel
2201655s
platform
android_x86
resource
android-x86-arm
submitted
15-10-2021 09:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e6fa66fc4795131cfbb97668279b84fbf389cc0ff736ae77ec351caa15a45038.apk
Size

4.1MB
MD5

532cfe30d666611e34eb49ae310c81cf
SHA1

4e446a48e0a4097371442a2cf88a202226828d10
SHA256

e6fa66fc4795131cfbb97668279b84fbf389cc0ff736ae77ec351caa15a45038
SHA512

dd991e6e4accde9f70e5da9f8c2bab220905ec4083f0ae81e9c7a02b1b3cc9f9f571d95a89774539ef9e0795bb8399ae028e56766d155251938b8d6becb27589

Score

7^/10

obfuscation

Malware Config

Signatures

Loads dropped Dex/Jar 2 IoCs

Runs executable file dropped to the device during analysis.

Processes:

/system/bin/dex2oatcom.baidu.searchbox

ioc	pid	process
/data/user/0/com.baidu.searchbox/Yfzjhhjpkv/bzxjopjhbhhbhjg/base.apk.jdkhjbg1.xbY	4879	/system/bin/dex2oat
/data/user/0/com.baidu.searchbox/Yfzjhhjpkv/bzxjopjhbhhbhjg/base.apk.jdkhjbg1.xbY	4847	com.baidu.searchbox

Requests enabling of the accessibility settings. 1 IoCs

Processes:

com.baidu.searchbox

description ioc process

Intent action android.settings.ACCESSIBILITY_SETTINGS com.baidu.searchbox
Uses reflection 1 IoCs
obfuscation

Processes:

com.baidu.searchbox

description pid process

Invokes method android.view.ViewGroup.makeOptionalFitsSystemWindows 4847 com.baidu.searchbox

description	ioc	process
Intent action	android.settings.ACCESSIBILITY_SETTINGS	com.baidu.searchbox

description	pid	process
Invokes method android.view.ViewGroup.makeOptionalFitsSystemWindows	4847	com.baidu.searchbox

com.baidu.searchbox
1⤵
- Loads dropped Dex/Jar
- Requests enabling of the accessibility settings.
- Uses reflection
PID:4847

com.baidu.searchbox
2⤵
PID:4879

/system/bin/dex2oat
2⤵
- Loads dropped Dex/Jar
PID:4879

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.baidu.searchbox/Yfzjhhjpkv/bzxjopjhbhhbhjg/base.apk.jdkhjbg1.xbY
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/Yfzjhhjpkv/bzxjopjhbhhbhjg/base.apk.jdkhjbg1.xbY
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/Yfzjhhjpkv/bzxjopjhbhhbhjg/base.apk.jdkhjbg1.xbY.x86.flock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/Yfzjhhjpkv/bzxjopjhbhhbhjg/oat/x86/base.apk.jdkhjbg1.odex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/Yfzjhhjpkv/bzxjopjhbhhbhjg/oat/x86/base.apk.jdkhjbg1.vdex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/Yfzjhhjpkv/bzxjopjhbhhbhjg/shhjhpja.kvsg
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/Yfzjhhjpkv/bzxjopjhbhhbhjg/tmp-base.apk.jdkhjbg1044054683438137580.xbY
MD5
4abc051680e6bc42e5511881aa42a4f8

SHA1
1df59fe6dff5a23758d60ffc3ec6a1aa9d22e850

SHA256
30ef4a8e31f60021308fa315614927aa8d23c69fbca9dd970626a6b020d2f8b4

SHA512
f75df9c3a854939f2de67b91fe77b9b139bf2db6c9ec518a00801cb3468e784b18e73e86e7237897bfc931597e5a1122a70c1e27a9260c1930023dfca756f893

Download Submit
/data/user/0/com.baidu.searchbox/shared_prefs/Voicemail.xml
MD5
a49699b77af2755765a72f9a777a97ac

SHA1
7933a6a86711669fe1f0ca89aa4a54ada25255fd

SHA256
13870389131a4afd72536ed37f9e11c366b258118bba924fa2279b842cb99992

SHA512
7dd22a59d65722f378a8df7926eba28f1c32e5d19fae41579e813c60d50e080efc1977e0db0bc5d6e2804b9fe1aa2b851d2906dde903d71060f39248f9247ba9

Download Submit
/data/user/0/com.baidu.searchbox/shared_prefs/multidex.version.xml
MD5
b9b9014488dd4836f3a33c2ca0d5fa53

SHA1
347753bcf5ad2f941649585ef3307214eb461903

SHA256
ab6b2b3526af9117f8bb1c0274bf65890c419d3e5bf5479fe7d2518e0acae298

SHA512
bec92db017b78bca8564b1af8493eff533478eb73d2e22425ffe47edc03664d2e6d653c17e687f6f0c0bec5b2f60a48797d38a700ec9d7c557949ee6f5befa2a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads