6d360f9378b205f9764bc4db0829085dd5321db18e8c05847361fe2e9789a238

Analysis

max time kernel
3829130s
max time network
19s
platform
android_x86
resource
android-x86-arm-20220310-en
submitted
21-05-2022 00:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

6d360f9378b205f9764bc4db0829085dd5321db18e8c05847361fe2e9789a238.apk
Size

6.0MB
MD5

b8bf5c5ab48368089cc6e733c8741c71
SHA1

4f86c42fa24216a26e9c6cdd0c270c6068ad1e0d
SHA256

6d360f9378b205f9764bc4db0829085dd5321db18e8c05847361fe2e9789a238
SHA512

054619f59ea66fe17ebf1f4653f9810b4e9240eda1dbbd4e54e946b2ba2cdadec661ef1bfe1a94cdf772e7b3c705c43b750f2983a989fd66fece5f22c7d97336

Score

6^/10

ransomware

Malware Config

Signatures

Reads information about phone network operator.
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.pinhaoduo.app

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.pinhaoduo.app

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.pinhaoduo.app

com.pinhaoduo.app
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:5086

/system/bin/sh
2⤵
PID:5138

cat /proc/version
3⤵
PID:5196

getprop ro.product.cpu.abi
2⤵
PID:5161

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.pinhaoduo.app/app_tbs/core_private/download_upload
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pinhaoduo.app/app_tbs/core_private/tbs_pv_config
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pinhaoduo.app/app_tbs/core_private/tbslock.txt
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pinhaoduo.app/app_tbs/share/core_info
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pinhaoduo.app/databases/ip.db
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/com.pinhaoduo.app/databases/ip.db-journal
Filesize
524B

MD5
654aa4d9e03c33a385bef56cbcae29b6

SHA1
5061644da2b13dd8ba6ccc5261108474255edc82

SHA256
7728b8dbc316809ce641e0c095b08dd6351b6c9c2cf952fe04f3dc35fe3199fb

SHA512
5081300268b9e177f6f72dc9e218c6c88fc7e68ef3e5d2f925509b533b86cc886684d73eaca36287cd10dee569b6c235b89ff1e351468ff291249b66b822cdb8

Download Submit
/data/user/0/com.pinhaoduo.app/databases/ip.db-shm
Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.pinhaoduo.app/databases/ip.db-wal
Filesize
32KB

MD5
d2436b7b15a7fc365785bc6f75417092

SHA1
66b760618ac34c466b5f5123ebcb2d5419eebd69

SHA256
ee63c26304e520de7bce1255b5be778e44d266f741bf97a8bb953a15c3f8f734

SHA512
967440cc840cb5c9b8a590b18646fb4910e23c56cdee9930d9d5dd98e216788aa53bf861d09a12563c38a3fcd5b375f69b8f04a1eb78fedcc5092fdaf8d1cb3e

Download Submit
/data/user/0/com.pinhaoduo.app/files/files/dpi
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/ctywcid.xml
Filesize
393B

MD5
4638907c54a55353db0ed045d83d240f

SHA1
dda96e8ca3515bcc526ea1ac3bf73c8cb6188f77

SHA256
eccd041331b1af9a85fcaf5153d0a11be4925c23f5a21dcd941af6ba87866982

SHA512
18a8bea5001b97fc38ae4e5c9d29409f64eaad7e5058c831cefba935d856f5fa58e3cbc55068fc838c6d2372c85a0289e48b32f08a4926c22ef0e48542363472

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/ctywcid.xml
Filesize
447B

MD5
f4e6a5b2fa1be47e2d02abe060c856e4

SHA1
e69b143f0b7f73cc5060b724019dbce4843cfb31

SHA256
c5c5ec11f23ce04b0876df7c107285aa8bf3d03dfcb4ae50f60f46cfffc649eb

SHA512
2d28f5fc264b290a1ed8a4401a3f1ff7144e71c4b534f0f3f3c0d00ed7394b970dabcbd8316e1edce69e4bd82fde17e525837cc129ad0d484325330942b19f5b

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/ctywcid.xml
Filesize
112B

MD5
558a394f9aafa305087bfb7944216ea9

SHA1
581275bfec220fc2de16b15fce886939b0d7a68b

SHA256
c33ea69e0c699eacb5ba63349f03d917ada3a0ec8cd75708f8a07d3c298b600b

SHA512
d2b4bc7dd6b6d15a5f114170bb0641fbb6b760ddacac7398a3c729849a70863c40e33a9a88ce79efed8dfd4ccd334412835389b228b1926bc857593068130f22

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/ctywcid.xml
Filesize
148B

MD5
231c6d70214997450a88dcd338e3f440

SHA1
70ec417a748ab4a8d9c25a645b81b73d5402ee8f

SHA256
a414366ed174eab87ba00d51cc58ed01f863687db6b34700b3b54b37ac4096fa

SHA512
34e6075c225b25f30c4815350c6b04fa5221bfc2f9983ce7a33e6e80453ff552bf37373b96646273d28b9efc8365b35188f26df1e973851810283f9382837407

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/ctywcid.xml
Filesize
199B

MD5
55078ae48f27908acdb4af29a3ca228c

SHA1
41f654da9f167fe201c7602efbdb4938e4e4132c

SHA256
7d6aabdbbe85e83691094dabe0426ec1952ae141b0b73ab9272f9589aa8ba25e

SHA512
5ad21bdb570d1444356523d0e92cca55159ab57d93caed4b7e2563590dd788e08065b489147d600c91e1477aaff3564a1dc6de7f3a07565c78441986d6236efd

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/ctywcid.xml
Filesize
248B

MD5
ea8a8b7ea6e795c20a1596098311e29b

SHA1
abb65d243319473459c2a0b6585098058f9c569b

SHA256
d97814e42622581a165e24bd6ff683e73702a75ea2e70dfa74f5505eb20d4c93

SHA512
6a6d7849aa6c4a4d79496ba89cceab3792735b3d7496627a545b6b2b65f8d58bb5f67c6d9c4f4446a5d1f45900e0605eab0f080faa561f81a850c05000bdf2a6

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/ctywcid.xml
Filesize
300B

MD5
a89b0280dd8cdad3cf5122269c0d7fb9

SHA1
e35541e90579c8a31e536aca9a5cf4b87fc3f44a

SHA256
a0c45ca70bd870204bc753ad68e53f6b7fd9e936dca31db09454137a9e6053a9

SHA512
6d9e2daa4a234a8daa82f0ea2f6ea9e26cc055ee9ca6d60a89dbf61b43ae0d3ab1aeadf0572321088d250067cade110dab19227c79bff0afb3241cbec0a3730f

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/ctywcid.xml
Filesize
345B

MD5
602ab183ef2b4bbe10182603227b7e11

SHA1
f77e723232764380d4318f786b2c2a66409553a4

SHA256
df6661119ac2f74f67cf91a7859f2d85f7d777369c4ffef5eae84a258ccc5b7b

SHA512
1da12d3de5921dad2df182d141b31d7db51a8be5fca2c5deccca25092d49d6531d7f485c314af5eed28158039100852e206f5b5456b33aa8ca7fca2929c8bd38

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/lqe.xml
Filesize
158B

MD5
3cf09be52d871a5b01cac4d109c50497

SHA1
e740c435f27cd054db65f6459c1705984c72a407

SHA256
ae1370769a3519c773b4b855ae93057ccc0f2285ae30b3ed0b1e7c6360bf2f6e

SHA512
dea8ef82a66f5f6c3d9e103ab06ebd0a96fd7c103b11b05dcd8ccc93a861e27c9c8c42d3e4006ce2a0d657135a05096dd92096a2f9a42742a9ddb82c75f2f14a

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/tbs_download_config.xml
Filesize
200B

MD5
c4d3ed846581e5efd5f1a1953e035e04

SHA1
d3dba1c159ff8444bf7cd0fce45e559c98232012

SHA256
5dde465cd53d08d1bb6371e1f07bdbd95919a46d695985ea5e0b35e775209341

SHA512
c6ac637b6df6dd587a008fe65d025c911ed8d0227142816139ed1891a626cac6e91cb1734aa9ccaf203f986bb709f69cb4891d27cf3cfd923aff844d14420a3b

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/tbs_download_config.xml
Filesize
248B

MD5
d04ed9408aaa6bc3f6d4ec74622499fe

SHA1
f36707bb09956a55a0a463153c923c7b765f8367

SHA256
7a7009cb33e560cae8acb88854a9db0e27b958bac83bfa10c892e280b730b1dd

SHA512
6912140b93178a023ca91901c272118275ba028d9765544686fa69fb3f21b74c22077b41869512c453cacff81c53c8ef7f9582dd4816531e34dd4668d145f9e5

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/tbs_download_config.xml
Filesize
248B

MD5
21f2ae4da12ed0f1069ab3837d46aa63

SHA1
d9aa9dcb522a5ce617de8c4214276aca94250bbc

SHA256
435ec6297205426b8bbc43443c6a09f0de3353aa24fbc0dcef5cfc62333f7e16

SHA512
72b2966b089c41ed6932ce0d9225f52e050bcc4529a3efb8325a7b3407dd417f11533422c87485e5a7e4a1333dbf05b82f998b4106689d40929988c7cd71f234

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/tbs_download_config.xml
Filesize
248B

MD5
f4b59d1c70828ec9c1854d8f5629fff1

SHA1
2077cafc50f3dc4463caa92527d046ef0dd0c99b

SHA256
6aa023bd693801115d8315f53ed7d0224868aca9e0c8a31e491a42a641c0eb68

SHA512
6bbe8668ebbeae2501f2e25c74919810dc811c2e3e727ef8f5209add2dc87fb03bf0ee1a4fd23ff53a51cc5b81f576907c16f893981187d424d66897f92011ed

Download Submit
/data/user/0/com.pinhaoduo.app/shared_prefs/tsvx.xml
Filesize
159B

MD5
e5d24e69676d923592a1aea657f718a2

SHA1
1bf5622ab2e615bb5cc96b05ef687fd81713984e

SHA256
e6a73bd24e400adf289ae8337bea3f4e28cb88b9061c03226de517db630b8375

SHA512
0549304f2789b074902de2bf5d4806452772ff5ef36e015fc1b04d4b508aedb4906976e54600116d44eaa210808c70a093953607d879fab1579d936e5629006a

Download Submit
/storage/emulated/0/.nid
Filesize
36B

MD5
875a0de3109ce493b5159b9d9bdcd53a

SHA1
569a73ed955fa6815cf6be68a31d9964eff7a372

SHA256
b4278669251d08d097cd83e4ef1e801f07349084247f72358b9e71659205c67c

SHA512
c702f15851fb7937f0906dd5181e2e0f409061bed9c41462dbea65aa025c185feb4e0da8c8a9b5944b21083e9cb004eaa73a44727bc58a177cadbf29ff5235a4

Download Submit
/storage/emulated/0/.rg/ia
Filesize
26B

MD5
c36896db24a815210676c1fcb99abfa1

SHA1
ecc851c51b6130ad4c04eb349244a97499c4ca0d

SHA256
25a59980528fd6598d9e2e1d574a1068a007d1aa10de1dad4096d36d5f7c1f5c

SHA512
c540121d8e97d616cdeb52ed80f828a339172baff9db68e2bcf0c5f5f3e3163dc18e8996500b73388be1e96b782c62771f6c1e20d937ca16c975f330d4833935

Download Submit
/storage/emulated/0/.rg/miqn
Filesize
27B

MD5
890b041655c9d3d0fca4d5eadc88477b

SHA1
2e1f60c262ea7791b7941e84243ff1cbc5a612fa

SHA256
e5ea49adea41395ac8ebd931b8a6e82fc81bbb725a8c7275a45eaebc88b86f6a

SHA512
6b080783c4a2358cf528453303979604b79da2dbdc9059691ffca278b92f18b971a57e2d7ba7a0a874e5c411400e676483c4b7efc107cf1446481c6d69f5f3b9

Download Submit
/storage/emulated/0/Android/data/com.pinhaoduo.app/files/tbslog/tbslog.txt
Filesize
5KB

MD5
c2211b5ed4aff79068d0a783cd02f20d

SHA1
1366ac251017553de88b913a8dc1e86ab5e6e487

SHA256
1a8b0db58ec48560b73af097ba7e43b03790c92e46321c7bc587ba447616f9c6

SHA512
d6eeb89c1c2c7d072fd7675edbceaf5f4adb6f17983a59945a7fd9baa91057a06ff0057cfe307c20df0117af08da616cfb6beb0472a31a7a409764e4d334717e

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads