Overview

overview

5

Static

static

1

484628741b...0a.apk

android-9-x86

5

484628741b...0a.apk

android-10-x64

5

484628741b...0a.apk

android-11-x64

5

Analysis

  • max time kernel
    2201567s
  • max time network
    167s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    19/12/2023, 14:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    484628741b160901325b4dfdaf7fe40a.apk

  • Size

    3.4MB

  • MD5

    484628741b160901325b4dfdaf7fe40a

  • SHA1

    18c89de6bea2bf2ef727c1fae49376c4746a025d

  • SHA256

    9e90d8dd0a41b47b5acda1f1081649f0f8373eedf080fc6265f1b6fb42ac432f

  • SHA512

    a64c5b295d5c512a44aef3c638944095ced108b3b5e2bb2993c61919371f72163cafca75a91a61fbef314cc3f2abdca0dada9d91a44050b0fc72df51cf3978d5

  • SSDEEP

    98304:kh0sxMwRovHQnm5RokYnhVXQpCu6GSaoPtMMLiQ:knj3wmkYjwaGSDtMHQ

Score
5/10
evasion

Malware Config

Signatures

  • Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs
    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.yxxinglin.xzid3648
    1⤵
    • Listens for changes in the sensor environment (might be used to detect emulation)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4470

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.yxxinglin.xzid3648/databases/ua.db
    Filesize

    36KB

    MD5

    4a8120c91e3143b2db43971dbc77cf8d

    SHA1

    37c5700d35059c4e0a718ced73b3d73ba5d2b277

    SHA256

    1fa1b6e6bd75bcef64d35785e2fd6f2e73dcdf92dce73c8b2a8fed49746d53bb

    SHA512

    465cd282927e30a0a894a75ad261feddde5a31869c8cea6b548362afce08fbb7cff7a784bd1d62c3e4c95916ce30e758d3919dd4cdc13176f29d68c2620c185c

    Download Submit

  • /data/data/com.yxxinglin.xzid3648/databases/ua.db-journal
    Filesize

    8KB

    MD5

    fa1ecfd709435298ce674f4bba9d7714

    SHA1

    95b458a6af83332aa9ef4a13adddd20075014c5f

    SHA256

    24d7fae83ee0dfecce6e3af012f77a9053508080c782eb89b2b90c80c34f98b4

    SHA512

    e659b82859271be321c4aae044c64f257293b83b0f6ed24b717f411f906e3e2017b4e59c31f2db27f3ebe5b07076e511bd69db7c89ec3add6d7575997a93c142

    Download Submit

  • /data/data/com.yxxinglin.xzid3648/databases/ua.db-journal
    Filesize

    4KB

    MD5

    ebe4a6d35233137abeacb530d4f919ba

    SHA1

    9462014caa7cd697106c76c4996c9f80985f966e

    SHA256

    28932ca4fd0af2d109dd7c9651a8af92d7d21ddbde41d558285cfb60b724a27f

    SHA512

    8edbfb4695740b4edbd1dcbffd005740fe6e0090a975e6ce3002e2198f924e5e7e6d23bd2e61dd875c320db2b84634c19c13311e8ef6db01d6bb4f36ab77a70c

    Download Submit

  • /data/data/com.yxxinglin.xzid3648/databases/ua.db-journal
    Filesize

    512B

    MD5

    daadf01f9ff4eb8c896842165b2137ec

    SHA1

    0a19dcb02be33d58fbc06f6d860017c313c4979d

    SHA256

    2e3c036e59b4044c4d9ced11cb6a3b0bc968216036b65677d383051ad66bef6d

    SHA512

    b45d27612493bcd1d434f35709810f8ce4544ca08e1519f11d894f7756fb453b36fbf0128c72f93c9ef777c4df5cd3c4f7702b04db2e9cc8bcee2ffb7651af08

    Download Submit

  • /data/data/com.yxxinglin.xzid3648/databases/ua.db-journal
    Filesize

    8KB

    MD5

    23a7f68662a129b80fd05010b0e23c9f

    SHA1

    e252929f8f6683c16728705edc3ec4568987997e

    SHA256

    575ae2577cad5fde60436408456321e5c6177ce5c5d13443287d3e0311f5be88

    SHA512

    bb2364f6789c94fec0591298f46992cb4393e391ae96c64c8386185486bff71ce2dd82b237df42c625a64243ba877b06a7607b5c6dd26304ce12f3f4a649556b

    Download Submit

  • /data/user/0/com.yxxinglin.xzid3648/files/.envelope/a==7.5.0&&1.0.0_1703008493197_envelope.log
    Filesize

    1KB

    MD5

    6fd475ccb3fac372e9c74e025e52a116

    SHA1

    ed07d3a3e2b8f11c7bcf59e904797e7be8c93fc9

    SHA256

    b4d984830d34c912db32f409b920bd0950045476ac7d9188a23fef4bcc26f90e

    SHA512

    d84464fcf18be392a5525d0d4838fc13a4614dceeccef5f1ae957b28dd86c25ec2b5bf568fb6a74625c761688d35abae4103f00e538cf9a05dd7e469597ec28d

    Download Submit

  • /data/user/0/com.yxxinglin.xzid3648/files/.envelope/i==1.2.0&&1.0.0_1703008488210_envelope.log
    Filesize

    2KB

    MD5

    edf77dd8aa802578ffb5e5c45eacc1fa

    SHA1

    8874e8d1aad1ab6fb6af9fd47efea7cbf6b76b24

    SHA256

    bd3f6d771efbebea5df05d587e510fdb677640687d7dec46ed2504bca89007d2

    SHA512

    2d78e82620e4116f5c3d8b9cc3bee7ee76ae08a160f21453493551bedd74b4f9a0eb797d3643c519cf91cd8409d15eac0be8552eb9dd600c6e3b2a201b7aba3e

    Download Submit

  • /data/user/0/com.yxxinglin.xzid3648/files/.umeng/exchangeIdentity.json
    Filesize

    162B

    MD5

    faa0f230d5013ab6464fac9b44db92d0

    SHA1

    54ab11e2e9124c4a812c2c714fb7442b96de3a6a

    SHA256

    32f1bb4293883d5fd2a1d703beff70cf76f8aa440684bcbb754a1f27728199ce

    SHA512

    5203c07562ae4a8a538d5f9f51b1dd36a590986b021b9490e48df48d4de7b27a55368d5c25a9dfdc97bcbb94abe4dff93a0862ea5ca372cb7d3e3b2c7f555dec

    Download Submit

  • /data/user/0/com.yxxinglin.xzid3648/files/exid.dat
    Filesize

    62B

    MD5

    7b0593efda0f6071062d20cd9b9c53fa

    SHA1

    cc0c444554f247a350a6f67c34d0772883b05344

    SHA256

    5897c93eadf79486382b9318bf3b80d601f61ce34707245711f1abe93b64f77a

    SHA512

    8570ab4350e66392c5f309ec6977d4f4497cb06bcb9abd7ade019d51b78b9620ad744a8d053f497cbcae2338353e77c0a87930ec0fef5f6bd293c75fbbdb0fe8

    Download Submit

  • /data/user/0/com.yxxinglin.xzid3648/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNzAzMDA4NDg4MTEz

    Filesize

    1KB

    MD5

    1ecb169ad7d6deaf691cb1591cf64aa8

    SHA1

    50561a151bc601e6a22faf4c3979dfb11e9fb7d9

    SHA256

    10ef9cc8f737208d88de26ca91f57d7d558e252764984f72016e92f4e86d96f3

    SHA512

    841f13fa8f6ed0c87f2d3c629d2374d505375768b80bd57a594fff49e3ebadbe564c00563285b7bb1b297ba0f0c30ab6b6bc515ee0812a1e16f18c977bfb0a8d

    Download Submit

  • /data/user/0/com.yxxinglin.xzid3648/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNzAzMDA4NTE4Mzk0

    Filesize

    1KB

    MD5

    32c4d331fa69b72849a13d23ccca8aa3

    SHA1

    c4321291c88e100ea46588ac1a664a8408738697

    SHA256

    dd814cc45bdce1b4c60629f99a400b06f3ff0e48a83c06a1dfbd06ef491bf54d

    SHA512

    71dcb89191c05879acc10982e332757130e0d26c4a6829ff6a6906f898118592ea92e6def16e27cfd561d7efd08fd26fef77461ae4d733b300b4bd02845d333d

    Download Submit

  • /data/user/0/com.yxxinglin.xzid3648/files/umeng_it.cache
    Filesize

    352B

    MD5

    ce339af76cb3cbec3374f27f3b7fa253

    SHA1

    8d1bb74c13b8e24b26ac74836beb60a9dc29092e

    SHA256

    93d5e45679cdc14a4f8a3c63065c0b0606bfe3aedaa37a0fdbec6b652b51a405

    SHA512

    58d6eabf630de74f34c07119fa3d93677168c80b800f6e6c1da3d246539c6e21d590e59b475eced15982221583ab1bb01dfe10bd0e2de2faed9fcf04ec276da8

    Download Submit