Overview

overview

6

Static

static

6

6f93eca834...d1.apk

android-9-x86

6

6f93eca834...d1.apk

android-13-x64

6

Analysis

  • max time kernel
    2305058s
  • max time network
    161s
  • platform
    android_x64
  • resource
    android-33-x64-arm64-20231215-en
  • resource tags

    androidarch:arm64arch:x64image:android-33-x64-arm64-20231215-enlocale:en-usos:android-13-x64system
  • submitted
    19-12-2023 23:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6f93eca8347719eb1f1f19ef901070c16016e94d09794cc3fb76e22c88bdc3d1.apk

  • Size

    4.9MB

  • MD5

    5931f929be14e110d60981fc0ca89a55

  • SHA1

    8313455503117e7507343f7e81cfc51fe0f4f942

  • SHA256

    6f93eca8347719eb1f1f19ef901070c16016e94d09794cc3fb76e22c88bdc3d1

  • SHA512

    5ebd69195ae6275d403f289a9653701608eb73dcdeb27310372fc4ff637cccb0a316990994db617ca3d3d799f738032b215aa3b771f20b004ab36982f6c4de61

  • SSDEEP

    98304:8sSB74iw09jt9dlO2cj67I+b6QAW80jjYLEo7IcJ1NDnxKtSNDAdz:gnw09R3tG6NHjHU/kcJ1lnxsqK

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.ecymh.ecymanhua
    1⤵
      PID:4245
    • com.ecymh.ecymanhua:mult
      1⤵
      • Uses Crypto APIs (Might try to encrypt user data)
      PID:4329

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/03fffc4c40ae6de752da3f5b084364e65f8077ba8d5a375de7b73bdd6207e1c2.0.tmp
      Filesize

      15KB

      MD5

      e11558b547c11d20a5eb484b90323d19

      SHA1

      c5897164c947e7ffb46b66b424915c29f80c2e30

      SHA256

      9d0ce03a0a040d6f6789378d7db4984746a7af2be8597df0a2754b704267e23c

      SHA512

      7d9ccf3bf1cfc77bbc7cac5e23fca14101a6adcb72c9ba608020111d0c396c6fca74aeb22daff7adec138bb86dd68ea630d1c46a4c69f1b465420676ee9638c0

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/0af4c16b669ea0dac96e338bcc4e9a949c96815b98c5d4e87f4b817be503e10d.0.tmp
      Filesize

      14KB

      MD5

      6dccb532686a45a8195610fb50bff574

      SHA1

      6aeb715668a0c2cd5373dd6430480d5ec5826b26

      SHA256

      ec4e6a6c63076bffe503b1e1ed14aa8c069da8216f8da3cae1789307a9c55e00

      SHA512

      887840985af779b7c2d11c00f1f2357298ca008dc8c47b50bb0fe55ef2c879b450ddb3f04f4c4f786512965de8cff66568b5d65c28851b45aa7c08ad2d367df1

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/10fe052483bd588173ff091853aea060c79f0b3e9641e96592831cedcb89ab5d.0.tmp
      Filesize

      791KB

      MD5

      0f7e9d5ae8c8876cc95771d3afb64e35

      SHA1

      10dafaaefe22a36e8419f11cfc3a27d5f81abd74

      SHA256

      47d63809a8c2f590cf1aab1929e8279dc75abb3451f71ca91fd96bf3baeb2c89

      SHA512

      11ef80e08046ecca111a894188355a6fdb01d436858ea45b5b74f9dcd6ca913552e52c0665c652b5705aa9d2a93dcc0eeae9ab6b2e2aa4a897de417146f8dfec

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/13635787c4c42196d19461e7c94f03ce3f2f9624463c3190fb73c6c71f1b6b6f.0.tmp
      Filesize

      14KB

      MD5

      f97d398d41b1092d9652565f82d00646

      SHA1

      cf4136aaa7df1afbf9a4604d317d927422289467

      SHA256

      29c2dc48e0c1dfebc26cc454c8fdc7bd02a75b95c59d1a70243ca9223d89011e

      SHA512

      17e6a6ce9b7fac2974200bdff74c453517468cbb8950aebc9b2b5132ea43b863377d3f02b9320d74177cac6caea482ccc1ae23b407069a5c1a9534d6f9bf4fc3

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/13fdb02517e27c5a7de45d3fc7a6cf16374742fed79615fd05a7b828252b6f95.0.tmp
      Filesize

      12KB

      MD5

      2330c285e609aab55baa2859fa3140fd

      SHA1

      c654ad2a26b948491e80afeb34b6f9a9064bf23c

      SHA256

      334203f0e1234c85ddc98ba731d44f6d0f544df3d8d8259d6fed9ef59b947c46

      SHA512

      4809df741e8b46a8129022963c3a6ea5138c9b4c4fd661586675046384c662e7eb5ec83d5a78080d90d1b12f26a3ec25a888b4acb86dee91539a924ee61bb8ba

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/21d75c7cd934a7f9f9999c1794c8dc0f39917999856f35c343d78328f730f59c.0.tmp
      Filesize

      9KB

      MD5

      b67f0109a6de81a6c5f4af0685234b75

      SHA1

      d20a282de0bcf639485b79dbb191d1cac4376e89

      SHA256

      94b713ee96f0e525342ffe7ad9f29b38e911d8a752f672c97c42a17cac0f62f9

      SHA512

      1115e859f7cf393d9c2c78a5bf70b6201a0f3add94f8c74e4e7965c1db65f0089b631faa499e7bb3c28208b827eb0d5e8136b1fa5507c54b88576c9f6ad1e419

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/21f12721b6d8f94e35ccf9a9649570d1713fd224e86c10a734c259873afc93f3.0.tmp
      Filesize

      18KB

      MD5

      e0c47354bd6cfed297817d6d3cd89923

      SHA1

      62d05f5190e38ed100d28e0221bc4624330fc7b1

      SHA256

      30f700b5c1ebef3ad3d741d7699ed168998faa0989672e100a160bfaea887f89

      SHA512

      87f43f60673d6353f221d2c7d2cf17d1700f9753973d67cd8b6834d4a198dae3616338ce28247231afa18b26b42b56a97b7debc125b5de10370286fb6cf9c5ad

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/5bc78cb71d5f7876880fcec2e04bb95946fc94338d1687ce5f689bcf083920dc.0.tmp
      Filesize

      14KB

      MD5

      e0821bbc581136a7cc9e327876145371

      SHA1

      210a1a6681c7599f5f6f87e874d007b6add6a9fa

      SHA256

      4d97c8ab1dd20bcae0626c2dc4ca28aa7e282ce6f3dd04984b351600bbfd220f

      SHA512

      4bfb34b89e9a8a5ab16b2e15055fa8b4c8758896e8b8599cd955b5ad852cdfb5891b6441e2332ad281942143e5f9e922d0d448cbb26256570969e42fed6b0418

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/6763c13d18b1270502e4a608788b0143feb060b894ef095ac6e2c57c2f9e8853.0.tmp
      Filesize

      8KB

      MD5

      524d59760c5712ed06ac9dfb378d59d4

      SHA1

      015326c26899dd37d7b00532104ebb013e89b971

      SHA256

      c5bdffe98ce2d0be71424de6c25b9932aceca177c5d31518bf3d0aaa4e31ad90

      SHA512

      8d7aa9cc6714746300c8f1c6baf6bcb2ff6975c67559ee785687ef952ac0da4b933c8cbb1dac1b1bcb3d7b6fc7554398645452a3a80c12bd001e7a1f93cbd90b

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/8097d1304bb921daa9154f978fd7c306fe079b0352b46ea4d5a3476b3838ec50.0.tmp
      Filesize

      16KB

      MD5

      e06eec01ff51dcc938c0349515cd6c99

      SHA1

      af3b1e5cb39767eb3a09f8a3e97f6ee29422aeaf

      SHA256

      af9a478953fa3fc8f005959adcf8c1bba58b17b3978c4ccdf9de1651cad90a61

      SHA512

      d1b6932191cf4ac0a1041188a87aefa914b2e58b9f7e0e193819b0119148aae1f05d4e8b52886c445e50100296304b35cb90bef0729a50e5dd8150b2191b1e62

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/9f307a81ba9982ee4d1879d7431fb2667f429d43413dd7ef2af2e1ff38a8a356.0.tmp
      Filesize

      16KB

      MD5

      982ec3dd53c11bafb284ac69721a45ee

      SHA1

      4be2878744565f929a736cdbc96fc38f7439963b

      SHA256

      4670b5f0437c6a96681ea456b0a4c8ebd16eca62e8c154e2613019648ddaf29c

      SHA512

      c12a23499f401d98d8a87fcf5cd6e3782c49ad3b7dcaa9bc959e017cdc3e3cfd4109e2835eba6cac3d9e75ecd882d33e30d5eacd95ddce669601b0eeebb27260

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/a97a96df0d0a654b2cd41d1fd18f491b18191e9068741061f04317c0e41b8cf4.0.tmp
      Filesize

      12KB

      MD5

      96f287d9fce2bf31e8ae9435c882cdcf

      SHA1

      40a1b68dd43860b0aa5a39a334732c6296057cc2

      SHA256

      f59d10bceb3a33fc88bef8b31f280eb9855568761468eca84df276beada5448b

      SHA512

      2bdbcfa46bae8e8e852ac6ed156e3630e1847bc4172bd93597b7ddaa68885f16f66aad63147f3682114c08ade30f488358f1240c2ce6ce63e5350661df97e4a3

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/b20270a3970f3ecca45c48b989aaf4934bd1ca7e8c657e2f40baf48c3b23a331.0.tmp
      Filesize

      7KB

      MD5

      b18e3a865a2aaa6856f50f8c11e82e96

      SHA1

      402715e3ebfe65c4767ee903f10487293385086c

      SHA256

      253ae733e316efff59b6c05531c452ff93a00d7801eed761f0c0ab3ebc7d532f

      SHA512

      e96c4533085f6885dfb40c60045c2ec35af5d5f2aea783052b99423452f4d28cbec56c8be89b745041a4ee99b551688f5d9a317d6af58e6d5306c8dac21ef216

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/c557c75a7951757ce9f925370f75a196e51a7c812089978b0b9fe5d06722d9bf.0.tmp
      Filesize

      14KB

      MD5

      e3612475dba6d22cc1bfc346cd0c7388

      SHA1

      a9b8daa15a04f64cb47736e64fbcffb29e171180

      SHA256

      7823671005d2f650e2e6f98596aec835a9b326e755bc88997f3d529fd0981733

      SHA512

      fdda7e3b9faadd55a8e58348a864f9b1cf55baa44099ab866a526ee977cfe32ed20ec850b2da1e3388c2c2fee33f1e9964bb998c64c57d7b94136b120b09458a

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/c979e08166703ddada11b80644fdc115983a4289f6508376432a1d4ea9760b13.0.tmp
      Filesize

      14KB

      MD5

      98b58fbd78b7858db3b0ee334d7105ee

      SHA1

      608e8fb35509a225e07fc1de782bd6bc254c30e7

      SHA256

      456ac9029ecd6afdf950e28e759a0ae3983732bfc274af8b23fdca9698ae3328

      SHA512

      34b2c5f4da82aacfb53fcc8d8645c73eec13628c80105f09352309389ae5ed18cef0d81955ace0e65d5b02af1df5b39837f2cc03a65429ec1d60f1e9419c74ad

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/e90bcc22af476a49c8a3a270247c1dec8adaf83cb3a76914d70836c14167f88a.0.tmp
      Filesize

      13KB

      MD5

      46b6d32308a9c25a3259e4d5db4b0aca

      SHA1

      77ff38d6b40ef1dbbe3e52639b819dc150f222b5

      SHA256

      fb80cf3b9708646a3d858ed70c1cc7d0ad625a45f8d885b3155c21801f4ab70e

      SHA512

      9575e8f18bf4d7ecc86681887626019068a79d3b2e89960e941b7fd32b3e14c447f15b49941a7828272fa7518409b049d384a0ffd7299dead72adbd414a145c5

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/e9a508201d7482a19683ebe1f0007372612f65966f45c30fb6e4d365af6ac02f.0.tmp
      Filesize

      13KB

      MD5

      8e538ff5c420d8e1947f20345825267d

      SHA1

      2a55483d937b20f73baa735acc9d38feef04fc5d

      SHA256

      9605f731ae04017c3f9ee4bc88f30b98e43a42caa88d45b4f0c5cb241215f643

      SHA512

      026226d6bda60bb1b2c5d5388556a439f7c5ceda956cea71288f032a26611681989f50819e188c84cccf9e4b72f3924ec17760c42733b266f9fe9137f051c358

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/fc6e9212f10ac3d801d64375d79657ae06f4e5e4fdca5367a57bc8f031b84158.0.tmp
      Filesize

      14KB

      MD5

      af2afdb9484cafaeac1ba7e0da90cad4

      SHA1

      1e7ea2b1698346046fc8d7f8d2c77cc99c4b425d

      SHA256

      d79889df3f240ba70be0d2b8afcd9d11047f5fa576edc1a586e874bbdaf26254

      SHA512

      3328b570732094d72d999389703e7aa862848213bed2c62d38f4b840168ba4cad4eea00565b9975f02b572a45057ff9c1202797436db115eb0c1da2d36622c58

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/cache/image_manager_disk_cache/journal.tmp
      Filesize

      31B

      MD5

      8c92de9ce46d41a22f3b20f77404cc1d

      SHA1

      8671a6dca00edb72be47363a7071be65cf270373

      SHA256

      68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

      SHA512

      30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/databases/test.db
      Filesize

      12KB

      MD5

      edb655088d1ed9f33f9d0d499b7a3ef5

      SHA1

      565c4f4e43179dbfc285cd6331dc8ac75a901af8

      SHA256

      bb9e45aad35b43e895393e7a66e4ead6a5f728f90b7627e3c741d391bf65d4f9

      SHA512

      98cbf923880de82921c38973fbc6d711dc39884428d1eb4ead33658a5a7f163734e5121823d5b043ca44554d19c5b6f966674ac7291513944a94cec97d5be599

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/databases/test.db-journal
      Filesize

      8KB

      MD5

      b8e42fa746825ff74e90708fcc5752da

      SHA1

      316c7e2b9846ede2eeb849a1e2c6c061b2312cff

      SHA256

      49a073de501b7a9a8151b2aa2fa680da9dad0edde67f1314dad4d2d44e13e3be

      SHA512

      11a32f9d55954e25e6cf919df0fd8be2c23d1adf2e208c968d53bf944285f67f3df822fd2813b16b9820bac3f6aeefa1f628a924e5c5bb023b46a505a01bf8a3

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/databases/test.db-journal
      Filesize

      8KB

      MD5

      3a0e6d3efa09968c36d59c2a9a1858da

      SHA1

      48148048caca1982297c394842429270d25a971a

      SHA256

      4b128fd31de40b48a48455e5d67d1f8a4db2a866721a5e164ac778cc0f44f01b

      SHA512

      babd176db3c9ab4f889decc62a76b2eb8d2bceba651292d1911a436622fc634a9e5fa76502af22eeb185499e160faab80540158d86e18b311bd763ec1ee7549d

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/databases/test.db-journal
      Filesize

      512B

      MD5

      e4656df0b3e26da62fff75f4bc260b7f

      SHA1

      246b19b1cee00b9d9b15bfbe411c08d5da0a6db9

      SHA256

      0a370470799b884167104221650293975e9474236a6eef82babe326e30bedf40

      SHA512

      b750de24ab7ce3d0cc3c08dd6521b375394e26a7e81814b79b7f5fff79c14bcc5e37a29a8425eb8d0958a2ba77c90d8175510e1e14fedb4eb2d299daf3e1a6a6

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/files/jpush_stat_cache.json
      Filesize

      119B

      MD5

      1c5ddbee06a0cba70144beca4397b7d7

      SHA1

      13beb4bf1eb97a326f9c0165cd73a4a85a7c2442

      SHA256

      e7b39d521cd209dbf76cb1aa98cc2a6822940af5bdf75151f87454d21dd4af4f

      SHA512

      0436e29a4d43337db33700a10518271d2153462aea270101341f8b2a426f88401ea9750f9750980aab3cc3eafdd9ff7b91d6de6814dba999cbfa3fbf977e64e3

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/files/jpush_stat_history/normal/nowrap/c4df67ad-cd2c-496c-841e-dafc0bb1ee5b
      Filesize

      159B

      MD5

      7aa3aef6c5b200693b583d6ef03bb8e9

      SHA1

      c0d362b1cd2a40b55f826b34b330083d33bcb9b7

      SHA256

      b77940c28b492b46a92e0ec62e01fb94b15ef62379d68a24e65db9c07a948c95

      SHA512

      97c8e11061e81e9db63fbacccbd9a8299f18884784ea1db4c6fd6c516af8a9431f3f445ef88736dbe3e07a0cd906dc89be7beebaf210cc342f4835adf4f81d78

      Download Submit

    • /data/user/0/com.ecymh.ecymanhua/files/jpush_stat_history_mult/normal/nowrap/81b82142-1406-477d-ac8e-86ee2c40d75a
      Filesize

      187B

      MD5

      7c4490e11f19e0b9a8fc55c31babc442

      SHA1

      7e25a54bdcd14104e5a0572e21a36fe59a2ebbb8

      SHA256

      8c4c846b73a420352f869ebba990e5493cff631234b7460fa54bccf4b3d0b07f

      SHA512

      902a6c907f73e53dcb76865ee63924db3d529785b75aa78bed6d8afe0aeeac697652285cfe73ac679f1af31fe5eff5ba78da620c948bff3b50155a04cee685e9

      Download Submit

    • /storage/emulated/0/data/.push_deviceid
      Filesize

      32B

      MD5

      cf5ea9c1991870f3f289606798736b04

      SHA1

      c90ee977d5d37f09b455242bb6cd01c6da4f646a

      SHA256

      b5d7aa8e779b50b97ee7941dd16966c482d0e81e871211bb413ed81cd5310aeb

      SHA512

      a1245596de535148465c6b7a91cd18977490e873dce32038277e1dd5e1d47dbc6c9722f4aed00285bf49723207b4bf24e271aeb1deccffb71e56e4ecf1cf7618

      Download Submit