Overview

overview

10

Static

static

7

0cd538267d...d2.apk

android_x86

7

0cd538267d...d2.apk

android_x64

10

Analysis

  • max time kernel
    878975s
  • max time network
    156s
  • platform
    android_x64
  • resource
    android-x64-20220310-en
  • submitted
    05-06-2022 15:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0cd538267de2055801d10c4b888abe38ade85640c37a96a08c5885b1478aa9d2.apk

  • Size

    13.9MB

  • MD5

    60b83703bad5b6c6b6645b3b923963b6

  • SHA1

    5a032611a9b65b53353c9b6f099e9c67b8cb0290

  • SHA256

    0cd538267de2055801d10c4b888abe38ade85640c37a96a08c5885b1478aa9d2

  • SHA512

    2c49be801eb1988cb7e0c9bd8c2a75814c480bcbb6c46be74691f1d8e772edb80e51b1dee56baa7447c6830772ea04aa93f55b3221b2ad5846c52231284ada5f

Score
10/10
agent_smithadware

Malware Config

Signatures

  • Agent smith

    Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    adwareagent_smith
  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Reads information about phone network operator.

Processes

  • com.ldmn.plus
    1⤵
    • Loads dropped Dex/Jar
    PID:6287

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.ldmn.plus/.jiagu/classes.dex
    Filesize

    6.0MB

    MD5

    f1d31811534f872c9c3cb479be2bb354

    SHA1

    8d87c283c7b5e44d09b37b590a81ef86c88cb5eb

    SHA256

    6352cc7e8d33c010aa536ad5fb2917efcd8ad5e3107ebfc319acaa40b35cc9d2

    SHA512

    3f28984e2a2d90068131580615a321a7a5a96c8700ec4f701ad71a16fbc19a2c5a30a2e2cdc50c6dbbea9d1b77c95dee933b16167ca214f56f1d6b43f4c4ba3c

    Download Submit
  • /data/data/com.ldmn.plus/.jiagu/classes.dex!classes2.dex
    Filesize

    2.2MB

    MD5

    bc434ba0d474c9d6ec806057628b694c

    SHA1

    4ffe9af8aa900d4bd666ae10efc74c515d1241f4

    SHA256

    acad7554b127f935a1cc405df0a01f398e6dcba93147cdfd53669ea846168757

    SHA512

    408bfde40472cbeb14c96423ca10ff87f08abc690aefac0544239dc286a310af369bdaddc90f5410d8299483019348ef915f2b1a754f197ec42a950a9fbfa7e4

    Download Submit
  • /data/data/com.ldmn.plus/.jiagu/libjiagu.so
    Filesize

    477KB

    MD5

    39d77dcad8e2a44dd7226f442b3a6c92

    SHA1

    6560fa96c6b5a038abaeee5f139a16e46088d9d7

    SHA256

    99cba035cae818dbdef989e70e738463798528b8ca52dbf38d2b8a72152680c0

    SHA512

    7ddfc6c05839160813e58e8f8c50d2dcda7e7b5e7f1d27cffb802ee91de4bb664bc5c257137d39152ed6e8cad0d3c1b067bf8aeb7e53f884893887b54480a5e5

    Download Submit
  • /data/data/com.ldmn.plus/files/.jglogs/.jg.ac
    Filesize

    32B

    MD5

    3bde8867ac270a7332f8b9e108c5c599

    SHA1

    21b7936951f35bff900ac5c6add8df355d601d1d

    SHA256

    a32a8fe6ef44e18a9cf5120ebcff60850d5afd0375d260f9f28ef9000d7c837c

    SHA512

    ce244693a19073855e2198a2b6a742a316c54fdd4005b995f3d7247ce3ec83f07573e37b4582710b4d44fb0d490aa2173d7e7d2cf9d253cb11b37c4e41945325

    Download Submit
  • /data/data/com.ldmn.plus/files/.jglogs/.jg.ic
    Filesize

    32B

    MD5

    ba5014d903c52b80bea761559d768193

    SHA1

    4f432b6dc1f1aa12d94b7532e89e60c1741af3e5

    SHA256

    d833267c9728f2e004a3909169c2a12db4e3927a7ecbc2a49fc68d59b6a95372

    SHA512

    676f114b65fb22bed77aa066fbcffcaf2f8303ea0fb6470fdc16b98cf60278c6d192ca3821ed1b352824aa963f3eaa61bd9786bb8b71976120c755fb220813d8

    Download Submit
  • /data/data/com.ldmn.plus/files/.jglogs/.jg.pk
    Filesize

    64B

    MD5

    15c8ea70227a855acb885d919f988cae

    SHA1

    0eae1888993fc6ea53a03c8542608d4919cae8f9

    SHA256

    ff1cc784b0931a06533f5e4d85d058b16110279d2ea376e9b8766fef0a6befbe

    SHA512

    b974e641d609132a7ae65eb60f625bc984bf693eab1a5010712aa2e8061739c290843478a1838ea1799eda8c2d3fc430a52d8c40b9cae8e6042d75f261306821

    Download Submit
  • /data/data/com.ldmn.plus/files/.jglogs/.jg.pk
    Filesize

    32B

    MD5

    c613ca5e75f81edc56d7492ad80d5d86

    SHA1

    22372d2398d5ef3dacb7ecce6b62b595b4f0342d

    SHA256

    a01ee0f6dc0604258736efad0bca1d6e1113baf632230959769b1020a516d708

    SHA512

    25b21bd51df257d16f4d27787086b34df1549b9bc5824155334c664b91f8d958d35a8692618df9bb7b1c5f73b702d443faa085963edf740945de3ae516b5d19d

    Download Submit
  • /data/data/com.ldmn.plus/files/.jglogs/.jg.pk.h
    Filesize

    96B

    MD5

    d6b96567d56a2365a8bce6b9332ad0c6

    SHA1

    8beff00d8fca3e0a6817ffbabaca2a04ad1cc7a2

    SHA256

    6988164e9c882f05ab80bc1e6668df0d498756319442f126129d0131c4f05f8a

    SHA512

    8f5aac84f09ed54c5a8c33e32d06f24b4d9999de9c86c681ccaa8ab97a3a9ca80817375bb8613d853f19f38137dbd67704b7e2c0ef811a8baeb33f8646b7a85d

    Download Submit
  • /data/data/com.ldmn.plus/files/.jglogs/.jg.pk.h
    Filesize

    32B

    MD5

    c613ca5e75f81edc56d7492ad80d5d86

    SHA1

    22372d2398d5ef3dacb7ecce6b62b595b4f0342d

    SHA256

    a01ee0f6dc0604258736efad0bca1d6e1113baf632230959769b1020a516d708

    SHA512

    25b21bd51df257d16f4d27787086b34df1549b9bc5824155334c664b91f8d958d35a8692618df9bb7b1c5f73b702d443faa085963edf740945de3ae516b5d19d

    Download Submit
  • /data/data/com.ldmn.plus/files/.jglogs/.jg.rd
    Filesize

    32B

    MD5

    9dab1129560d049228b909229e2c5ad1

    SHA1

    8dc39a0be22a7242e8e0b4007ea6b6db07b0615b

    SHA256

    bb5d60a2c202b620dc1f50481ffe4e5c2ffe09daf636e5f5006bc7978a2a4714

    SHA512

    e632df5c83686ce944170d6687601f8087c9707b459f46f0c2aaffe39d04228b8f2f1d99af69d823af01dec503de6a9ec302719e177699ca72a7831bd04e6fcc

    Download Submit
  • /data/data/com.ldmn.plus/files/.jglogs/.jg.ri
    Filesize

    646B

    MD5

    6fc7d9c5490acff4bca80d67d355da67

    SHA1

    e2ae0b47d426abf927792728f63bd6b8de9bf2d5

    SHA256

    f2e7a658fb41d68954c926f69beccf95484c745e7a50956b24ff69d98ae7c073

    SHA512

    9b7711b90ce500a1394c4070e577485c44f6c5040edfaac16df2f88688b3609dbab00d7421d05b2ab498b4096a1c6d3d083218ee8dea01f06f8ac74d806e2476

    Download Submit
  • /data/data/com.ldmn.plus/files/.jglogs/.jg.store.report_pid
    Filesize

    32B

    MD5

    745ec50730ba459758ca021c697dba01

    SHA1

    5876d7a4317b3b86c9f1577826299759ac0f865f

    SHA256

    abe2dfce06196c37bb9965875e36e727b5bb30701c2fe903c0166b0510b901a7

    SHA512

    04e7087a169dff5e4c079ed796a7c786a9eceda2ba8758b4920eb219507caa83033733150740d11ace31d13f5256927b32a47da71ecc1d43b1f7beabd6a4edfd

    Download Submit
  • /data/data/com.ldmn.plus/files/.jglogs/.log2
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit
  • /data/data/com.ldmn.plus/files/.jglogs/.log2
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit
  • /data/data/com.ldmn.plus/files/.jiagu.lock
    Filesize

    38B

    MD5

    81789fb1e2581be5db657eeafb3a2072

    SHA1

    e6301814a5cf1c7e87ee774d9e5c0b8af1bbb9cf

    SHA256

    b133889ec83b569e41301ea27015b04246a4df13449845e9fba518e6bc88facb

    SHA512

    f916d7d3624d0e7940cd6d77b62fa1a011363b1630735d5c89be039d8924ef8637947ddb4bf9c2c2bd9b4aba0a8c7469b7c8f7248ab0c750aaefc3de2ec58c9c

    Download Submit
  • /data/user/0/com.ldmn.plus/databases/share.db
    Filesize

    56KB

    MD5

    f8483d3180af19487876e39396c49987

    SHA1

    be86b3b51666cd465a7e97d1d0a5c65589fb3c2c

    SHA256

    e840e5942a4bc65e1dfc3cecf2e8edf6d17cf002660cc264c005b2410c5db16d

    SHA512

    56eb53305d330105066c05522c5b2e4037deb87d8c480ebf2c311eca43f036e024c701ec512a39d33f77417333c3b830ad910c154f48c3fbad9d47d0644045ff

    Download Submit
  • /data/user/0/com.ldmn.plus/databases/share.db-journal
    Filesize

    524B

    MD5

    58f138d417606f11dd37221010c88664

    SHA1

    e3bece37982469d9ed331a4cb6d05be59c40782f

    SHA256

    1b55f6a04f2461bab8816612e2f0e6512b54db928aaf94fe56a77490c7b21ace

    SHA512

    f81eca2e7f45e1c42e92803174ed5a0a5bd5f5dccd979138319cf7166316c09378b773e2ebe830462adb574e6a1ce3732359ad0e9b762a293fea2588d1ac8c25

    Download Submit
  • /data/user/0/com.ldmn.plus/shared_prefs/AV_CLOUD_API_VERSION_KEY_ZONE.xml
    Filesize

    123B

    MD5

    f3e930fd6f61a69a9720c35e282db1bd

    SHA1

    747d9ec1e652c30d152976da101680a86f18dd33

    SHA256

    e0c70ec0883b85cf892440de5d4dc3b58bb192eea1ac6412e66bcaf78a4f862b

    SHA512

    c0d29beec0648eb2efeb88353b1576dfb40082af781d45b5027ec65630ddfb10c4f0be73d9612d2800418590c41973982b357ba9ae97c8825f36eddbd93b4a28

    Download Submit
  • /data/user/0/com.ldmn.plus/shared_prefs/info.xml
    Filesize

    448B

    MD5

    519d9a7f4685eb384fb554da73256598

    SHA1

    131f7ed54c648fe951e95b95a9f025511825c76a

    SHA256

    0fa8b6577a0b5c094a3e8d0de938d8e8e351cd024266ad42e9e57d5d51b0f6eb

    SHA512

    64f7a322323620d89e770d546826b14271f80d91c2b733d8ec4fb40ae15f9425c1c7497f31d17043040650e9df1231da4a3278b52b4854c707d04c42537d8e3c

    Download Submit
  • /data/user/0/com.ldmn.plus/shared_prefs/metaRow.xml
    Filesize

    107B

    MD5

    caab9a167ba7d27c70559deeace19905

    SHA1

    fcacf4259cfcb1e82ec25a65d4456241b7245905

    SHA256

    15f2dbc35a8fbeab991ba75ad8da827f36d96a01a3057a2e954c2ae780b8c46c

    SHA512

    464716014f023fc202e562db94d132b1c7bebc0d3c02743afbb6cdfa3ad41de77bc26e04f465e2671b0a038bdbf87436eb0afef87e649cc58b0341a24cd8852a

    Download Submit
  • /data/user/0/com.ldmn.plus/shared_prefs/umeng_common_config.xml
    Filesize

    179B

    MD5

    3b83a8e7e09220293cec3bd6e800415b

    SHA1

    a7f7e862807f46a76e1208e67d2fdbff1c169bdf

    SHA256

    f67d1ed22258774676eff2f596125df0702b2bbb0942b4ee9c8b4b28453c46bd

    SHA512

    c75b611bc4f9cb64a216c6a3ca264fbe1a4f847901e72410683af0390899d97aede7c4cca2fc5b2e07d1553699a44d4a4aa1c27e61448fc563a66af5fc66c57a

    Download Submit
  • /data/user/0/com.ldmn.plus/shared_prefs/umeng_common_config.xml
    Filesize

    244B

    MD5

    15dcbf19231bc0800d753fd152c33cb1

    SHA1

    8a2f7421f017d17665b14c902b23b057ad66520a

    SHA256

    6195832663b256dd688adfc051a5eed01011ee2c4361128575b44ae4ee38a4bb

    SHA512

    4820522369cbf15c0907694576056e4395fe990689e0eebb443ae084370054ecfc2bb6619a2968b7ac2a03db0aab953a38f4f712e05a7707d3cb54daf5e33268

    Download Submit
  • /data/user/0/com.ldmn.plus/shared_prefs/umeng_common_config.xml
    Filesize

    119B

    MD5

    4e5871426714a983a5d802ec8cfc6825

    SHA1

    7850f63e286ee8f11e9b88ac4f580df4b3e8d6e6

    SHA256

    989c82834f498f7d4db1c46a35baddaf92af2aadfee7373e99d8e3c0e7e737bd

    SHA512

    759b86b9ca2db0915a3c1ec3a5eaddcbd82cbffab316bb9e66d36cdc377b49ea464f31f72121cb35e94f6ca6032edab89f86be6209943bed22a362780b1d7f6f

    Download Submit
  • /data/user/0/com.ldmn.plus/shared_prefs/umeng_general_config.xml
    Filesize

    102B

    MD5

    e3f3a1ce529535a2e3b257d722aa84ab

    SHA1

    ba5353c3e318d0528d843223842fd849aad4dc57

    SHA256

    91ab93de28e0b3c1ccf1272410934927c08329e42917621660defaa353637cdf

    SHA512

    f808e7106fef36146f107ff28cc204ab88499ec7a01dca44856c6889fa691ad65865511cc98e9f0aab86013f9d55bfe9d01e16031b7334ab8649f3fc7b25cd65

    Download Submit
  • /data/user/0/com.ldmn.plus/shared_prefs/umeng_socialize.xml
    Filesize

    125B

    MD5

    1747feba0419c73d9d02d56ac816a366

    SHA1

    92eb87bf63cd9c89ee9028a26820ed303ba67247

    SHA256

    c2f716b8a9831ce033554489d58eba185af546392bdf87803b70c9cf88b19d86

    SHA512

    4c727dadfaf55af4737d0971b3f30a2cb3436f224a446e849be794558fb750de264902b98486f3b96e8df2e631b437b768054114855fd63c91deed6b91e70c6a

    Download Submit