Analysis

  • max time kernel
    3030616s
  • max time network
    14s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
  • submitted
    06-03-2023 02:57

General

  • Target

    lionairthai.apk

  • Size

    11.4MB

  • MD5

    b2429371b530d634b2b86c331515904f

  • SHA1

    ea5359c8408cdb4ebb7480704fe06a8e3bfa37c3

  • SHA256

    ec1e2ff5c72c233f2b5ad538d44059a06b81b5e5da5e2c82897be1ca4539d490

  • SHA512

    79d7d18e070f6c7c8d3a41d87c52c5c863c2833e58a70dfcd560b425850ee98b5308b03787f7455f72af031ddbb186c156da279e4bd934e67894b5ed37c8d75f

  • SSDEEP

    196608:IMdMDvYD4i6HkR3xSnGF+9Hn34Obet6zf1mOGrJX5/aYnRe2DyZMNRx:IMdMzYD4ixhSnGgn3Uwf1mTrtnRyURx

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.yiwuzhibo
    1⤵
    • Loads dropped Dex/Jar
    PID:4100

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4100-0.dex

    Filesize

    6.9MB

    MD5

    61d8bf475daa5f014d901ac2a7f9c8e6

    SHA1

    415aaf3913e2a8714a024266fc63b04166441e3d

    SHA256

    50ada1244139594bb7a6d54500cac3848a18883e78854f7e5251fd11cb12c0aa

    SHA512

    70c7314dc904c3ead50d3bb883eb4381f9b6ea6acf9ed02d067f924bfbb9f3afeb35609baeca20b7cfda770d8eebfc08d554a80089770614a68b59d6ff6461ac

  • /data/user/0/com.yiwuzhibo/files/.fstreaming/fInProgress/currentFile

    Filesize

    721B

    MD5

    ba5035243a03b4f09cb8acb99f556a02

    SHA1

    cbc7d729a7a2f1a495b837d03a30f73ed2c8d45f

    SHA256

    3457e7afea636e982ca0aa7173f5a9b4680d76839cf798e0985df346849c95d8

    SHA512

    264c0f28361bc6c6efaf927c0b6d7095519cce32c14deb9e4b4a38d3a658c752298c8a9065bc1e88446251354cff56c8fd20e6b030248f15cbce8a32d12e4074

  • /data/user/0/com.yiwuzhibo/no_backup/.flurryNoBackup/installationNum

    Filesize

    100B

    MD5

    f74a1429664850f14b5fa2b2b718f8d1

    SHA1

    b1dad99e0d3b4a4b45b1be6e17d23b97ab3722b4

    SHA256

    39c0df30d5134eebf304964e3a6528dc6822a936e975b5dcd955334fb54f82c9

    SHA512

    bf5a1ac4c0eeb90ccd51c22674168f6e055766ef349b697844a0365cbfab59f33976ab9ab96c558d41a86d9542343b1ff20ff1776ad2219ab131c2a04ae6ca01

  • /data/user/0/com.yiwuzhibo/shared_prefs/FLURRY_SHARED_PREFERENCES.xml

    Filesize

    129B

    MD5

    724bca6ef2ed083e2540fad0721c37e0

    SHA1

    abccb5f0864b73ef98aea948b91d2e104ec4bc45

    SHA256

    a0c9f1ba6c24359dd619f80ccd2885919505b10080c7d262d8d2e5005f639211

    SHA512

    27f8375c9654d0a3b37e87e82792077f821361f7aa3282e81a198ec5dd354e4dee77bd60e5ec7e9e89569afbcb86038cd9b1196b8875183f7a5fda44f3fb1150

  • /data/user/0/com.yiwuzhibo/shared_prefs/Setting.xml

    Filesize

    150B

    MD5

    e82fdb0ef5c2ddd017662a71c414bb87

    SHA1

    cdef99ce759959ee5f128aae74033b7a601e5ee0

    SHA256

    eeac6c4849810f62bc1865e17e748b287821f29522636a776f6ba05f1e6963fd

    SHA512

    03342a70a296d2a2c9ab6771f8d870220f80fac947fd496927b76db0c74eaf473b78633e517d992fe21e0b39018211cbaa3c9f9789881f7b0567196fd6a0ae44