Resubmissions

10-12-2023 02:31

231210-czt24adbe5 10

04-12-2023 16:38

231204-t5r85ada28 10

Analysis

  • max time kernel
    1368442s
  • max time network
    134s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231023-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231023-enlocale:en-usos:android-11-x64system
  • submitted
    10-12-2023 02:31

General

  • Target

    NEAS.92dc910b5df989defcf8733985776f35797681ea11bc9da2432b6dfb589b9778apk.apk

  • Size

    1.7MB

  • MD5

    57f07617681a61f549be71d962a717e4

  • SHA1

    7c6ce38d9fc0843c908c17e6293b0615eb9d6201

  • SHA256

    92dc910b5df989defcf8733985776f35797681ea11bc9da2432b6dfb589b9778

  • SHA512

    091ad6e79c86f028bc27b598de2e614af28ea37b3a8c2bf5fe3b72fdaa89ead66a1b611177ab9e52c052b43c533f92ce3c1a1019218e83911438549db3993600

  • SSDEEP

    49152:1sjkkzEXs1NjyEOCtM3do54AnUKwn+H/NySR:ikkoXGj5MCiVKw+l/

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs

Processes

  • com.lyufo.play
    1⤵
    • Acquires the wake lock
    PID:4560

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.lyufo.play/databases/google_app_measurement_local.db

    Filesize

    16KB

    MD5

    d9cf75fdd1c2292d986f6c3d5d60f2c8

    SHA1

    07ecb1d3a26d952ae5fecf54f36699ab498510b1

    SHA256

    2d227e9b7a044c8e10294f6a831fb92d81ea9582381796d87f35bd268e37538a

    SHA512

    442c96e4b4c79b8d1c64dd3a6d6088ae1dace441e78d830dfb3190ee1c0fafebc606fb432071b4a1ad1a4ba9b68c7877b0bce520ccc88708feaf82bbc474e0cb

  • /data/data/com.lyufo.play/databases/google_app_measurement_local.db-journal

    Filesize

    4KB

    MD5

    162aee773bb3e78155b2014e4dcacdb6

    SHA1

    17cd05aaee404891bbae042eb343275996c30c15

    SHA256

    2188a011437d3029c4d98d6105c47a635e77c8cf1c0a7ae7d5bb9a14d8906928

    SHA512

    7aaa7d7f97edc8820d36aea47a47ed0f491f14710ffbc555a45ad318ef50e65a2649399a3c892a5f6148fc7af1bf8b23cbcf48f23e295c99a4c00585147250f8

  • /data/data/com.lyufo.play/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    602517a37c5de2a3e8a8481632041fa0

    SHA1

    64201da6411d20871bdf6ee9bef9f8f5c977204f

    SHA256

    6bb51fade4734f07339104784df980cd3085354af6414864da49bbd065e29521

    SHA512

    c130bf2669193cc493344dc0505bc4b404f3f5a25c0715bdf82eebbe8bfe39ac9314cbb92c702c6e7cbc7b11385d62302860bc725e33cb4048a8ce9d385b861a

  • /data/data/com.lyufo.play/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    3f5421cc78f3735f2dae64e35be4196a

    SHA1

    8813a3224167361a068e82befdea2403450b6e87

    SHA256

    fed7ca7ccaca697ec43f954f773f4fb82d92e55fe4312c3164c906c162175b92

    SHA512

    e898ec4fa802831095c3c909c8b2940963960dfbc69d69b5158c5f3da8da7f80e0cfe983afc3e0f1e98d68d4cf3fe82dd1ff31bdd906c9b36d23583640c451d3

  • /data/data/com.lyufo.play/databases/google_app_measurement_local.db-journal

    Filesize

    512B

    MD5

    c7458381577d2f097053dcc3a0c51b81

    SHA1

    ba32021e1e2cf9b01bb6eca380e1918f9107dbd5

    SHA256

    436cb201458e8bad094c3941a706cb40339f8f1fa15075d7d8d89a2678dfcfd9

    SHA512

    1341a3b624d4026cfc1540f6f61ab67edd31b684190a9cd9ae983896aa08917fdd9e658cd0f45190b4fc2cf7764ecfe4eabbc25c8c382203c62f0064e602ed25

  • /data/data/com.lyufo.play/databases/google_app_measurement_local.db-journal

    Filesize

    8KB

    MD5

    1149ac8dddab014393a94321d0a00a43

    SHA1

    4261bfa7fa26e5f59ef013f3d7c9d1f59ad19a11

    SHA256

    250a05b8df079e9f0042bb66d1a5e7e619dcdb4e43a74b75640f471797e48115

    SHA512

    f5193e7a865882ffd5be4c62c1e73185fe9ac2c014754100e1a50f350b7b08f34b1111b9226da68bb86c71fe0828ba6abd8f6e89b69b4159bab49f52441b5eac

  • /data/data/com.lyufo.play/files/PersistedInstallation3401469043499633825tmp

    Filesize

    569B

    MD5

    9a9f2967a92129adb29533caf8dae625

    SHA1

    b56cf6d9e495420dca30cc257276dafd302d005b

    SHA256

    7656d7eafcac869268c90ae03c1c3a274fbebd0793437e6fa9807394c5d84e31

    SHA512

    e23fbde95359f479848a05c2946b8e437c683732282be3496bd80778af57430abad3a746f4d0ff9daec8f44f2577b6ee09fc69d94082c968246c2f4150e04487

  • /data/data/com.lyufo.play/files/PersistedInstallation824770282926908060tmp

    Filesize

    90B

    MD5

    9645fc8431583af48b5395193cc49e5d

    SHA1

    d59c664f0a9e1a4ceae7756b215d7da5bab43898

    SHA256

    a50023a9e41a7863d1aa1f76da06589b382f3124b92a1ab7db17390ee2c497ad

    SHA512

    d45d372978883ca988fb83e316dd339ed62aa54a51979e52540c07c059045e9d206480eff4cf1696df8471542c636382cd7af00ec0aaa4960c866447eaaa182d