9562b63f2a35decfeff1277d31d97e62531f787760577a1deab86f506882efc9

Analysis

max time kernel
2201757s
max time network
161s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
19/12/2023, 15:41

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

5236e9578f69a043ec568f1d81732a2b.apk
Size

12.9MB
MD5

5236e9578f69a043ec568f1d81732a2b
SHA1

63a2c6ab8480a9233f9dc0bb353625d23b0f2457
SHA256

9562b63f2a35decfeff1277d31d97e62531f787760577a1deab86f506882efc9
SHA512

9433d49c7a817d7f1834292fca010cab85db3146ec3805e14cfeeec07aa9719dc1b692a66d5f432cba25db38ccd980695d8e99e704226ab0c5c7b40643207c3c
SSDEEP

393216:At/g0mFRAbz0Vne8mMzSWtbe0Yp+Mfe/Lwyv60GQ2jvo2:At/g0mvAqXZJbe0Yp5eDlv60GQf2

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 4 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.DGDSbt20190601/[email protected]	4629	com.DGDSbt20190601
/data/user/0/com.DGDSbt20190601/[email protected]!classes2.dex	4629	com.DGDSbt20190601
/data/user/0/com.DGDSbt20190601/[email protected]	4728	com.DGDSbt20190601:pushcore
/data/user/0/com.DGDSbt20190601/[email protected]!classes2.dex	4728	com.DGDSbt20190601:pushcore

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.DGDSbt20190601:pushcore

com.DGDSbt20190601
1⤵
- Loads dropped Dex/Jar
PID:4629

com.DGDSbt20190601:pushcore
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.DGDSbt20190601/files/.jglogs/.jg.ac

Filesize
32B

MD5
f6e7ef72acabbf7c7fe6dfe30d35ce27

SHA1
8b18ff3dc895efcce77378d7812be03ddf694936

SHA256
13ef56d8ae48d1852f3e4e6508f013ea4115356aeb4dab7e6a083637642388b5

SHA512
cb505cf25ba9b79d32ce09763786074c523cd084983d79ae0609ff9c6eb27624ab76a230e58885437b7a0c6c61e4f0d7346d3701b7e419134d2a30891f445a75

Download Submit
/data/data/com.DGDSbt20190601/files/.jglogs/.jg.di

Filesize
340B

MD5
d2921e439ca5bb33f23c3c23ed24c2ff

SHA1
6fbc346d1c1c18ea8d6f0d62efa9265fd5edf2b7

SHA256
0e8eb5d86729f67a8dae6ec323937dec2ab5ab45faed63d67856850a89a3754d

SHA512
0293ba8e578cd4ed20dba08221dc5e7360198086fb15e67a35a51e16dbf45bf2cfa54c5b69d1179a5757e7962c48c4c7ba773cd41de080722cf93c2b3e1dc60a

Download Submit
/data/data/com.DGDSbt20190601/files/.jglogs/.jg.ic

Filesize
32B

MD5
7bf9b320902a547db56c959583c8dace

SHA1
e59c0e46fe9d0dd6ee76354dce94d028eeda4094

SHA256
609e32f2cf12e27dbbcb864d33f308d59bb67b7466904dda9ca448b6b573598b

SHA512
6ed4c119a469d238f9ca9467c5799d08a743e0d42e65fb470de52c47107765d2b415f141bb46fddb95030e820b20a706256dd9c5ca8dff6c8471e06145113d0c

Download Submit
/data/data/com.DGDSbt20190601/files/.jglogs/.jg.rd

Filesize
32B

MD5
b5bb1d25a7e4dd0063fcf03462387767

SHA1
6985215f7bbec9338e0fd2032a6662a51a017ca3

SHA256
ee1fab3771b9d9a4d5e616b2614a490a78747d11ee2d01a49cc7391d72549e19

SHA512
d43d1a4d25aa62b613fcbd578fe1aad6bff4e1709ef9a86b05bece282ab4a7af648ecd10fbaf0196eaf1d50014d8fcaedf77a3515f4d3284ec4bf816574e6875

Download Submit
/data/data/com.DGDSbt20190601/files/.jglogs/.jg.ri

Filesize
314B

MD5
2f170768ab3c38e033e3c64e9290fee5

SHA1
6ae31ce0b5b3b402f2d00845bdba2cbfd3e31185

SHA256
d0ef82ddcd323e96646a3a50050cfa9b952eca28c1eaa16ee088d5ab38d37e8e

SHA512
f1845764e685cafd32a5e7ce17528edf5d41a1e562a25be688ab686176f845ee830ceb3786c12a209a5d80a83951194b57d973a1dd19913ab42b5f607326a8c2

Download Submit
/data/data/com.DGDSbt20190601/files/.jglogs/.jg.store

Filesize
32B

MD5
448e391c59eef34ee1defbe4dee4c41f

SHA1
df1f890987371d7d8e6963c68b787856e42bc146

SHA256
55612e17689f4bb05f27e18b4f6d06ffef92a6a8893a5cfdd3d5b99a6028b549

SHA512
ce336ce895ba861dda7da27e8869dea065eb3c3403cac55cdf1935409e5ebc95b495370f87ed7416af20af533b15615472e333ae9f2fd2713040f526835399b7

Download Submit
/data/data/com.DGDSbt20190601/files/.jiagu.lock

Filesize
27B

MD5
363d74fb17c13954524923d52648cccf

SHA1
3e4f2732bb14ae2e46640686b9fc4c493a2ab150

SHA256
c9408b0b1ccf84041a32ec8b6b3beed4c0ccb83879023f20e0da6ac3dffec31c

SHA512
fb6ab74bedc8a6daa1bac6dcb91fa4d81b4af21de9c55fffe2a83745c5ea212a78b56d8d3fbc4cabad2c1421c21b2b79e51116676b11f96819da5f5e008ee1db

Download Submit
/data/user/0/com.DGDSbt20190601/.jiagu/libjiagu.so

Filesize
482KB

MD5
f380717bd1e3916c7b697fab8d46c5d8

SHA1
04f51f0d16097214e38be517d93be44cb0603a88

SHA256
8455632be7bacb221468c4daab2f9b5ee33739f08b22244ff81a36a02bec36cc

SHA512
b78fe11f77d2c0ec5b36850e8cc3b955661b31641405233c8842b91205e44dc16a30d7fc1ef18dde1b066c1b98959ae9c18be5472413d2b398b7ab6a6b52c07e

Download Submit
/data/user/0/com.DGDSbt20190601/[email protected]

Filesize
7.1MB

MD5
c5d8cdcb19d4e48912783779c0df8dcd

SHA1
e83eda287e975098d73dedc2ba4d9ad2df59690d

SHA256
fba585f716a069ae95527927155da5280122cc73aad462bbe4dcf486e1292eb9

SHA512
5daa2241c4e6f8ee287604d78d78d8a7a421b4999ec83a307a7b24b455f34ae9a77ccd6c55866f535b4c05cc42ae00c8c77efb78a5d8eb210e8a53c0e29a59aa

Download Submit
/data/user/0/com.DGDSbt20190601/[email protected]!classes2.dex

Filesize
6.8MB

MD5
7866b5a670ea87fac6ebab21b71916e6

SHA1
6e817ea1e737bf5ded715f22cc83967ba4721c60

SHA256
0e143255bf50484d845f8abd1117af018fe9ba9773f92a75dacc6829db85c628

SHA512
aba97d1e211832f18f3f2e3268e6c3fb376181b922c4215747c3e6f01936f7c6124f9bda9e5ff9f9d07d5bef6cd0956bb1d17f75159b1ce95d6380514eca2246

Download Submit
/data/user/0/com.DGDSbt20190601/app_crashrecord/1004

Filesize
227B

MD5
ce8958c6531104fc6ec75f1e3fb71cd8

SHA1
d4a4a22c595e8d4faadd73f916bacb9d0a1702c9

SHA256
03cc73a76e721880eaca15e0538748c03d6880edbaa576dab04dc8dc9e79bb13

SHA512
968355d741f742c8c06686690eff8e2c3751505f7c1525067ce89a58ce7e8177050801bdc0e7c4dd379a6340796de9c7d7001290e273e74161738176ab6fc7da

Download Submit
/data/user/0/com.DGDSbt20190601/app_crashrecord/1004

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit
/data/user/0/com.DGDSbt20190601/databases/ThrowalbeLog.db

Filesize
12KB

MD5
f41f531c07d4141546a531ff9caffdcd

SHA1
9dcac5aed06972d0ff6bd4cc1f1cdff85b36d3f5

SHA256
bb8dee5b5c3779f175abbd142722eb0022b98d374783aa80145b34614a4de646

SHA512
e0c8d1a820cb4c098e45776e8b50ea8c83944ef2e3f005cb0acbfc07688974d370f78100ae022f62564fc4c12acfdc43b710c18ca1c30f4f575bc08b9b12d2d4

Download Submit
/data/user/0/com.DGDSbt20190601/databases/ThrowalbeLog.db-journal

Filesize
512B

MD5
d35a8e989a37dcb65b6997c45e9ce269

SHA1
089fe07093ecdb44f22c1e1682ae808b456e9e88

SHA256
72967fcd198a4eedc9301a3764eb1d01241c11b440c9e2bb6a1340b8d6f775d0

SHA512
489fc3d9b5d74506369fe2c58c068fd158525c465491ee5aa468d7debe149ed4411f328e584559b17f642d8580529715da7ecbe2849261e97c541556484d773b

Download Submit
/data/user/0/com.DGDSbt20190601/databases/ThrowalbeLog.db-journal

Filesize
8KB

MD5
3bffe340cb042ab22951285d129c4a39

SHA1
595d371d841065f58f8f92981b6078ee941811ab

SHA256
b1ce0ef7567a381355db382fb8a33f84b80fa5c8dc49e144a29a2955bf639168

SHA512
1dc876846b19ad5c3e86d49e0e929a688a7639fb5d7a3e2fb1a4e7d36e4181ad98053f38f14c773b40befb78e16f1026768fb8cb394c8ac429bca46e847a0d77

Download Submit
/data/user/0/com.DGDSbt20190601/databases/ThrowalbeLog.db-journal

Filesize
8KB

MD5
6d2245f70a18334245d7574101109d0c

SHA1
aac175b4a85b3e2a0a0cd881967e3b09a37ae44d

SHA256
0432f30df70623acc6ca609eafd8a6eb0724720d081d47c166a84f572216edc1

SHA512
663dc44b550b73458a9d1fb75cc0aec566d0f7b0818d33e473a471957d27c0178c9656614fc4d2e7dd4134917ec1801a94b691e07814aec4517399f72cd93365

Download Submit
/data/user/0/com.DGDSbt20190601/databases/ThrowalbeLog.db-journal

Filesize
12KB

MD5
a668065c051dd2f7104badef6e99a2e3

SHA1
25fc9dc8cb721d81d1411ce6c4f1142c40a2a4da

SHA256
0817ec3a75e32d6877e27e76bef95df5f055b8be87ea852755957378093ac038

SHA512
987c403af0e78aef6ea82544e1b8ca7cf7c0bdb15177fbadc7931ca71b060e06cfb86930c582a146752ec5e1bd7702084bdfe0899273f98a36a0786d758e0065

Download Submit
/data/user/0/com.DGDSbt20190601/databases/ThrowalbeLog.db-journal

Filesize
16KB

MD5
e6fc21908ff77d04da18539fb7fc2f9a

SHA1
e4b7f1b4065fd3e825300aa1eb7a2446c4128df0

SHA256
ccd464ac07c383eb0f71b20a854b6dd4d63c336089c0f95a456b9170bde3f16c

SHA512
95927e3add1623cd85b378b0ad994cd3f4f826d69fce86d830c5dd42ab6005905e979d8fd645fa0f0e3f07406848e869e528a2c4bec922e7cae739b97ef83e42

Download Submit
/data/user/0/com.DGDSbt20190601/databases/ThrowalbeLog.db-journal

Filesize
16KB

MD5
b57df7344b7ebfc08d5cc24d0bc7d860

SHA1
70f01b6fab2c021230884753b02f9583be81706b

SHA256
0bd81198a98aa3068c75484d9cc98417e114201b18967a1e760fd1210984c4cc

SHA512
2a1b588af3e385bcaed19208d47f6a16ef797a83c211e62f8edc931d7b244b61565e31f4629245d5486a8277884fef6f907baeb2736ac60460a945dde7378ee9

Download Submit
/data/user/0/com.DGDSbt20190601/databases/bugly_db_-journal

Filesize
512B

MD5
2e963da30dda93690125594c7eb723b8

SHA1
8dfae5194aa5e5c3643ecc2fee489e69fa384f83

SHA256
ae2871b5ecab08a5863ef5ad0a82169e7cb828c9961ffae0e5708b9b3915cbce

SHA512
d98f0e9953336da502283afe0b2c1799f9bcef339f0952c582b7d3a7bac0728d2898451d30c90569bca260a641808ba91ead2740370a9099e320055ccdf0c5a9

Download Submit
/data/user/0/com.DGDSbt20190601/databases/bugly_db_-journal

Filesize
8KB

MD5
14534b78b76fac0c19b6d8e9b38b67d8

SHA1
833b747f5754c0dc24d8b25b51be0eed912d9f5a

SHA256
9a595f2c6f8bdd64222a579b50239e45db030a20540817d9c32e86e3e87c97a1

SHA512
42e46e7be014990b2232a41dc9f06698b8e27f8f709081e4786dafe0d687d450a6947651943f8f9cbbb5fb1a3ac1ff9bb839dfec5737611d1f012b2fdbe62c5f

Download Submit
/storage/emulated/0/360/.deviceId

Filesize
48B

MD5
4c4c5285293d5141f582aefa4e038669

SHA1
e01852a72e5a8e6f7d63a21426b515118196047b

SHA256
36c5c63f39ddf7a6a9c01946e4f78b95790aa734176802e793e95724a1b5b731

SHA512
097aa673273e307f7bfb7c08861ad389d4b5f7fae55d972a5c1636aa66d0b8d23b5eb9b696cefe0e5b942f23969dabf0147397aeca85fb9a4d75e0473104e399

Download Submit
/storage/emulated/0/360/.iddata

Filesize
32B

MD5
881d715b95e14dac3df577c23b406677

SHA1
4bb3c386d7b8109976d9f2435d8160dfbac2732a

SHA256
fb4a860ffa3343a2e626fa1fe80fbd0475c0ae447d25236555462488fc0980ff

SHA512
2ecd9570ecf04872314eeb149ce1193a1527c165abfd89e30dee982f46a7a664642758df14d4da9179d4f48ad59d07e5eef3191c015c955a58cd068917c43656

Download Submit
/storage/emulated/0/Android/data/com.DGDSbt20190601/files/tbslog/tbslog.txt (deleted)

Filesize
1KB

MD5
7e2c639173fcb2db6c9a511dbdb1e737

SHA1
7491244aae04512f9f90893f37bca36a9bcc1eea

SHA256
eee98018ef9f0824c5af04fe8d37fb7dc5eeb6b428ec7e1a0e1d4f8ea3a4c958

SHA512
baf0a282011ec110dbd41fae88f9296018740592cd3c71f9b2f06578ec9dab293a78ebe57a57f19f70cfc7c6b2812f1677cc83871c30b4c3ae74fcf35d70b2b4

Download Submit
/storage/emulated/0/Mob/comm/dbs/.duid

Filesize
480B

MD5
f2de0055c7dc2c0182ecb50e4adb74f8

SHA1
aa7df9b7f6e0ed5c139544997962b42677871ebd

SHA256
1fc1bb05378f32803fb2f3aa726feaf3caa620408676762f95dad4438e4880b6

SHA512
ec28617abbfab725b4e07cdc33e31472c9adbfecc9877309183d9cf21e2a1f26e31a046086f70b5bd5ba0659c6a6f71266bdd6ae04f90f2345be3c9be0f3d767

Download Submit
/storage/emulated/0/data/.push_deviceid

Filesize
32B

MD5
c40f8410662d20ad68a96901264e606c

SHA1
263ee1015a6c1a7102fc527f37caa1544de4da6c

SHA256
131a07932d88139deea54321a4ab6d5ce57bb6053e4cc6660f379a7b1eed1004

SHA512
b635117866bb5f96480ec67e01017dfd381675d0bfbb09f3d72a5215072fd6eaa0dffa63b690ca59745b3898000d1683ad923855eb82c99aa4b48eec789ce1ec

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads