Overview

overview

10

Static

static

10

xiaoshuo.apk

android-9-x86

6

xiaoshuo.apk

android-10-x64

6

xiaoshuo.apk

android-11-x64

7

Analysis

  • max time kernel
    2179720s
  • max time network
    157s
  • platform
    android_x64
  • resource
    android-x64-20220621-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20220621-enlocale:en-usos:android-10-x64system
  • submitted
    09-08-2022 09:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    xiaoshuo.apk

  • Size

    4.6MB

  • MD5

    7569c1c694f071ad4bdeb278e2ea991e

  • SHA1

    0df5afa0dee6abfdb204aeabf596db4409701a2b

  • SHA256

    d3ad32efd8faaf4849785c2e0de7a09d4bbead49eda270c4ab668643f9f3b9d6

  • SHA512

    2a2dc867665f2832526104e767187b9ad49a261cce6f23423fe40c50bd165d5126809af03b4708be1fbc3208c35684e1b1a4c684665e6b416b04cb907f0912c3

Score
6/10
ransomware

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • com.reading.ykyuedu
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:6163
    • cat /sys/class/net/wlan0/address
      2⤵
        PID:6362

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.reading.ykyuedu/databases/hreader_db
      Filesize

      96KB

      MD5

      4279e6cb22c63e45d1159ea6e466b78b

      SHA1

      c256a926d56437e026b8d6538e58882c4aaccd40

      SHA256

      dd37c21293d3d40253a30a01de4f487dd5b8530967423966bf8d4ccd8e1b09c0

      SHA512

      fd72f5c75be766c67bb634dd9cfff648c8dd16d0b6f54487f03994336ad15cf5d0fcdddbfeb35d9dd5428d9934ae16ace7362b07b3a45db4225e44e3cb054d68

      Download Submit

    • /data/user/0/com.reading.ykyuedu/databases/hreader_db-journal
      Filesize

      1KB

      MD5

      22d35c4689a2a3f08e2ec9346f2d219c

      SHA1

      d1f8242d550e44740830b1557d251b0a7f440c1f

      SHA256

      f6fd7d1ce39ed4adb78dc8e6e20a77e5f89d3f8aedca6a0e8d979fffd2d4be69

      SHA512

      8712e177b78a245e4b91cc266a6ece619ab9d3f7f731203bf4d01c456a98211820b1e3158594db9c1f85cdb9d69fa6df9c81c54c4290e7e5be07a908ccb59501

      Download Submit

    • /data/user/0/com.reading.ykyuedu/databases/okgo.db
      Filesize

      120KB

      MD5

      97feccb5aff1f95b227dee268a38d213

      SHA1

      bcdf496694235432311012101db63f809023326d

      SHA256

      2499e603e72acb5837ecb34cab0f0e6588a1a18c3cb71af94e669709f8fe4e82

      SHA512

      2e4f960ecbc600fb2cbd0b9eb9daf097d973afbbe1916e9dada949e2a61eacde61aea5c92bf0b3db78307986960293e7671750ff37d706941061d7726792e3e3

      Download Submit

    • /data/user/0/com.reading.ykyuedu/databases/okgo.db-journal
      Filesize

      1KB

      MD5

      8d05054ab9fa32703e4554e873f74b2c

      SHA1

      fa39fd9df4ab4828fba8a31101c010093a708b17

      SHA256

      b6e40c4473b0636cf7fb9a0c9627711befcda523fba8d2fbeecd3ecd53329bf4

      SHA512

      4afa94be1eb3b0089ec0227b0c899f6a66e338a8e0f02de4e5ba4f9b68a0c511935dff32f215481340ea966a547f9e8f1882f572c93f614c5202d81c8594108e

      Download Submit

    • /data/user/0/com.reading.ykyuedu/files/TDCloud_Control_Cache_Param1
      Filesize

      12B

      MD5

      3deb8be564c2966c606e0a8fcc453204

      SHA1

      a548a7cbe04097bfebf1872f5de09ad3b384092f

      SHA256

      5fbca8f89d8be29d40674e3ce652e72388e330689602ed26e53d8c56f511e945

      SHA512

      1f2df402524431734d7b6f506bdcd550cbcf569e6fe396df326838da5c38dbb8218d2ce016122eb923c9c1a6eefe0392196001143019b5c559b55b8c14aca812

      Download Submit

    • /data/user/0/com.reading.ykyuedu/shared_prefs/TD_app_pefercen_profile.xml
      Filesize

      144B

      MD5

      54fb87a143a447667d7e23922fa6daa8

      SHA1

      0a26266281d031a0213ddd00458fe0ca291e2e33

      SHA256

      ad5d02a839b501cedf495d06a2d3d0adec02dd47498e7a4fb4e56681c5eeab03

      SHA512

      3142473758a3a580b7e6f92a95400471eb7d1ade2ec4f4757451f68ec22d8eca4c0aa275d55f1a60838047b54784b38653d43944f608d88838e5e707ff39c49b

      Download Submit

    • /data/user/0/com.reading.ykyuedu/shared_prefs/TD_app_pefercen_profile.xml
      Filesize

      195B

      MD5

      db8a7ae6e873b9d4c5c2bc7c69e30b81

      SHA1

      b0e2eb7b2148f4b472b882ea2dd84239126db4d3

      SHA256

      3b071d7bbec5bbab9f5b6591b86d8f2610c9d4512155d358bf44088db20c2941

      SHA512

      9082550657e1c151f576a6cd13e0f428688c287b65f2b62dac0f168922d4c7ac4ccf81cf41d3e1f365e826d7b3ef77a065e3d1ac311efb07daf177b3ee9373f2

      Download Submit

    • /storage/emulated/0/yk/.hpay_device_id
      Filesize

      32B

      MD5

      787b3ced55589f374893002af741310b

      SHA1

      d7d0df8d0c49106ef6a5b6d1d310ada7e2aaffd9

      SHA256

      974d6282040a763509473b21d40d0a4fe74efef1a39a8f43731608fa1c432136

      SHA512

      35a81550a6f2dc1478d46cd6d2b7820e4098e22143a97c6dd81e62ca7c3fc0cf670025d62c3d0a015cf20a9e667b939f9bfcbd52af941061005a873d5b464aa5

      Download Submit