31f8620a467279cbfa516e368cd96a72ffb8cc0aebb299acea9221035e0cf60e

Analysis

max time kernel
3159836s
max time network
137s
platform
android_x64
resource
android-x64-20230831-en
resource tags

androidarch:x64arch:x86image:android-x64-20230831-enlocale:en-usos:android-10-x64system
submitted
22-09-2023 09:59

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f0496840c3627e5b839251f1de000828-1.apk
Size

443KB
MD5

92a57e55d0e04511a9bd3b819a3702b2
SHA1

715b298fd869672021fb17d2a358fcf122c0268e
SHA256

31f8620a467279cbfa516e368cd96a72ffb8cc0aebb299acea9221035e0cf60e
SHA512

ad5e793b873d97dd2421f515a4d23c40d0455d86e9da5cda41db3de3d70d268134db0178eefc0b4d89b168d7e38797d4e97643e1e0179fc35ba58f5eb165902a
SSDEEP

12288:hKuI17NtsD5BxmwMXWFXoY+pdcRZtSwfW6FKlhY6Zze:8ZZODhmwMm7W2jtScPFKlucK

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs
Runs executable file dropped to the device during analysis.

Processes:

com.mufc.fireabc

ioc pid process

/data/user/0/com.mufc.fireabc/files/xhelperdata.jar 5042 com.mufc.fireabc
Queries the unique device ID (IMEI, MEID, IMSI).
Reads information about phone network operator.
Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
evasion

Processes:

com.mufc.fireabc

description ioc process

Framework API call android.hardware.SensorManager.registerListener com.mufc.fireabc

ioc	pid	process
/data/user/0/com.mufc.fireabc/files/xhelperdata.jar	5042	com.mufc.fireabc

description	ioc	process
Framework API call	android.hardware.SensorManager.registerListener	com.mufc.fireabc

com.mufc.fireabc
1⤵
- Loads dropped Dex/Jar
- Listens for changes in the sensor environment (might be used to detect emulation).
PID:5042

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.mufc.fireabc/files/bfn.so
Filesize
33KB

MD5
35e2fa977547109fe28271567833a865

SHA1
814d919bcdcfb01f96a0fb179ab707f5a7e7521e

SHA256
0c210e6a67400e3e7b9ab74a656bcdec899271c137ee82751345a1f3e3e7e360

SHA512
2be99aee9c8d12d8c8ca7bac37b31e9c8ff1d35582d7da2e4a4501fd4525003ca4e0dcb883d88746cbc72d5b3fa36f478855b2ba8a274611e6c920847fbf8de7

Download Submit
/data/data/com.mufc.fireabc/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNjk1Mzc2ODAxNjk1
Filesize
1KB

MD5
7a2581b528bb0db41ad3df908dbd293e

SHA1
324370a4910dfb44194f1f4b180f975755863922

SHA256
075345264a155f6a47f86ca3a9d500042e1b159f11907948a8e934d9bdc43cae

SHA512
787fc9e92eeef81518817b59232dfcdd02bfe1c7f732886e6390f336522c84acb2fa95e16448041ecd1d988dbf774034a7b54bf24c841035d16ea7a0bce7329b

Download Submit
/data/data/com.mufc.fireabc/files/umeng_it.cache
Filesize
350B

MD5
b79a9e32967f25675ed8c4d765659446

SHA1
aa4870c89203209df450f6ffba62568db745aa45

SHA256
2bb12c010f39775fb456b925392a0d138af3634b96ae02655070975f0eee38de

SHA512
f90933ec12634d6ae1184858c956dcf22e72a744099f398f9cdf30a8e66bf8eaf1916ff3c140886f46eedd45b8a95fa96957f8e8b89b948f03ac44e6a0711ed1

Download Submit
/data/data/com.mufc.fireabc/files/xhelperdata.jar
Filesize
211KB

MD5
26d1f7625f74fd78f4487f6d89ea08c9

SHA1
a5cf0ebcbb0d9aed587487460b1a13b685b4a820

SHA256
8a256c4aeac80393d8446a7b426d838f4d76e290d31fa9eb0b5c17b75f935828

SHA512
45cbf1cb599ad431e73ae10312dae88641d1e98e3c2363c154ce8aec9a2ba45e93e8196c06e680933cf1ed869cd2df66b0f77be84ceee5781b96aeb8f98affc1

Download Submit
/data/user/0/com.mufc.fireabc/files/xhelperdata.jar
Filesize
4KB

MD5
969a2464e2fbf6b561cbc8176b14c8b4

SHA1
5b43a9a4342144f09da451a649e9cec4f0e58c1d

SHA256
5ade1d492abea3492cce2885c876899b2098048cd7b0255a62a79f6af6d67ae7

SHA512
aec97c4c5612982f6614ac0c5ee6c0a8172115871661295a03d1832524020de786931a53f71717645fdc558ff71e543f2dad9386f9b5baee706ee6548536c90f

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads