Overview

overview

7

Static

static

7

76dc261851...89.apk

android-9-x86

7

76dc261851...89.apk

android-11-x64

7

DaemonClient.apk

android-9-x86

DaemonClient.apk

android-10-x64

DaemonClient.apk

android-11-x64

Inject

debian-9-armhf

OnewaySdk.apk

android-9-x86

OnewaySdk.apk

android-10-x64

OnewaySdk.apk

android-11-x64

libgoldcoast.so

ubuntu-18.04-amd64

libgoldcoast.so

debian-9-armhf

libgoldcoast.so

debian-9-mips

libgoldcoast.so

debian-9-mipsel

test.apk

android-9-x86

test.apk

android-10-x64

test.apk

android-11-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    76dc2618510f1255c4c98d841e67c0e7138b9b6152ca19abbb8405beb8a9f089.apk.zip

  • Size

    19.4MB

  • MD5

    92716c73246235c2675d835564b16327

  • SHA1

    f58cb97c9ef81c5c2313e2cfb3b0826c267d16e2

  • SHA256

    726a78770598d7f30e25915dd62a1f4dcc6a63a5dfc721e47aa2f4ecf1735939

  • SHA512

    aa3c42a3b17b18d4e9adab2cb355211158d804adac3d8c0c4d52baf8c0af30b59d03af6fdb42e61c325842048b3ab6cb18269e66f5c5b33c222c2dc28c0cadc5

  • SSDEEP

    393216:9a5rg6npRgcMNVS2ytckRPqVw8rPwRiV44KNH1XHmQWa87f:AZTp8VLYckEwEj0NH1XGPf

Score
7/10

Malware Config

Signatures

  • Requests dangerous framework permissions 15 IoCs

Files

  • 76dc2618510f1255c4c98d841e67c0e7138b9b6152ca19abbb8405beb8a9f089.apk.zip
    .zip

    Password: infected

  • 76dc2618510f1255c4c98d841e67c0e7138b9b6152ca19abbb8405beb8a9f089.apk
    .apk android arch:x86 arch:arm

    com.newswb

    com.cyjh.elfin.activity.news.SplashActivity


  • AdDex.4.0.1.dex
    .dex
  • DaemonClient.zip
    .apk android
  • Inject
    .elf linux arm
  • OnewaySdk.jar
    .apk android
  • TinyCnnModel
  • config.txt
  • libgoldcoast.so
    .elf linux aarch64
  • litepal.xml
    .xml
  • script.atc
    .zip
  • script.info
  • script.lc
  • script.prop
  • script.uip
  • supplierconfig.json
  • test.apk
    .apk android

    com.cyjh.dump

    com.cyjh.dump.MainActivity


  • tt_mime_type.pro