Overview

overview

5

Static

static

1

70897140f6...07.apk

android-9-x86

5

70897140f6...07.apk

android-10-x64

5

70897140f6...07.apk

android-11-x64

5

Analysis

  • max time kernel
    2262042s
  • max time network
    169s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    20-12-2023 00:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    70897140f63f91b096c86742825199c3fd2a4432792730610394f0ecfdd45807.apk

  • Size

    2.5MB

  • MD5

    04c2589dba3d5c35a8602e34eccc48a6

  • SHA1

    202d05f4bf0202df5e818ce9bd845ccb72237c10

  • SHA256

    70897140f63f91b096c86742825199c3fd2a4432792730610394f0ecfdd45807

  • SHA512

    061250fee4687918f3564210bba7d6fb3802d214fe97e59081629c4ee922b0dda5c4cd38c4e3fe9f5cfeec7d1d2facb7c5e25e77ed1f3ca278b51a53e1cfcb8f

  • SSDEEP

    49152:nUm23Ei2Lnu2S9xphxvrymYbg5EWBCkIannhfc3tBGAn2yf23IOYS/cDfpnQd:5238u2SkmYEKWHnhfc9HSWeD

Score
5/10
evasion

Malware Config

Signatures

  • Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs
    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.yxxinglin.xzid534567
    1⤵
    • Listens for changes in the sensor environment (might be used to detect emulation)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4611

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.yxxinglin.xzid534567/databases/ua.db
    Filesize

    24KB

    MD5

    5b1690709f9ea47c070c65420c6dca07

    SHA1

    4bb754732eeb49cc05979440509588487fa09257

    SHA256

    d50bff1839474cb2bb2594e18433ee67b2ef81fa7c4311a914fea3bfb3ee1b05

    SHA512

    f83c8db7a69cee3da67270379ab6cf48aaeeabfe98250f145e6b3799f4c5d6da28d0a7c10509abac118884048db4578ef8fe02827e300bc06e55a7f6cdd41bc0

    Download Submit

  • /data/data/com.yxxinglin.xzid534567/databases/ua.db
    Filesize

    36KB

    MD5

    4a8120c91e3143b2db43971dbc77cf8d

    SHA1

    37c5700d35059c4e0a718ced73b3d73ba5d2b277

    SHA256

    1fa1b6e6bd75bcef64d35785e2fd6f2e73dcdf92dce73c8b2a8fed49746d53bb

    SHA512

    465cd282927e30a0a894a75ad261feddde5a31869c8cea6b548362afce08fbb7cff7a784bd1d62c3e4c95916ce30e758d3919dd4cdc13176f29d68c2620c185c

    Download Submit

  • /data/data/com.yxxinglin.xzid534567/databases/ua.db-journal
    Filesize

    8KB

    MD5

    b2a3eb0bd679ea06c9c1877f1214c433

    SHA1

    6cf8da18306ae4e1678a87cbcb12da2cefb0d350

    SHA256

    706f63927ac12d2a9847e4d07560e7eb017c54074943596e536a7dbd65cb26ca

    SHA512

    b6ee8a0046ec22289b9faefd73dbd19850edde71b41dee41e431365e836d400cff139d6c94657347b96f7f23348c773cc39467a62a1d173ab17135d9368fcbab

    Download Submit

  • /data/data/com.yxxinglin.xzid534567/databases/ua.db-journal
    Filesize

    16KB

    MD5

    76a7a0db31a50516db84d8c41f15b0a9

    SHA1

    cf1b31ea4af537996ee4f27c06cab9c54e048479

    SHA256

    1c484ba79a87e174ca51abb5814a4f85d95c88427f72bcd6ed7ea10704057487

    SHA512

    70e0c7a2c1a6479299cfc9fb945f7949b2834ecc8a91cac3279861d752d810bb28ff327e4fe7abcae723c4bf16dd1ae7ac790e2a0b5fed0b9be25e0302f54f6c

    Download Submit

  • /data/data/com.yxxinglin.xzid534567/databases/ua.db-journal
    Filesize

    512B

    MD5

    b2b7f6570add6389df81f24687f7bb0a

    SHA1

    a7e1dc762b115dc4a829891b8405b22916ed10e8

    SHA256

    0eaeba76ae42970e2db626d6ff22af3c156dec87288e91cfe3e35b0711bc9f69

    SHA512

    a847bf5e18488b0942d6be2b7b84a195a9723067d6d40d5d96f84533e1b95f8fa4781dd48c16640fb1c0784b7c164f9baf07301e9e3fff5dc776e9f07b3ba01c

    Download Submit

  • /data/data/com.yxxinglin.xzid534567/databases/ua.db-journal
    Filesize

    8KB

    MD5

    09fc54b9e6f9798edf913e50281303ad

    SHA1

    6275cbaf602d7209d92f368305b881e66e5e315a

    SHA256

    28fc3d30eb4aebe7a4e637998ec187466dc352ef282d0e396b4cae185ec91a8e

    SHA512

    3db9f9a4e4aff5d50da0cbb137a90e8d31fa9e8e9a4a092d82052483e262b3dab33b37d056c83f84c15e3de6b7a5d40b5d4d50a70ebfe41bef19ce86e1ce69d8

    Download Submit

  • /data/user/0/com.yxxinglin.xzid534567/files/.envelope/a==7.5.0&&1.0.0_1703069000527_envelope.log
    Filesize

    1KB

    MD5

    61f933b7116bead9946e34cffc813045

    SHA1

    481f80443a31d555ecb481cfeffd5cbc657a3e52

    SHA256

    90a07dd4697d4c36f5081f7de888f36dbd287921dcd34576a7d40a7fc770e295

    SHA512

    61fd5b32e11e65b797f24b559cc584bfa863838a325acbeb9461e8d55df83f373292d43ead3917190694af59975cead640f32cfc21aaeaab846b6da760d84a2f

    Download Submit

  • /data/user/0/com.yxxinglin.xzid534567/files/.envelope/i==1.2.0&&1.0.0_1703068995403_envelope.log
    Filesize

    2KB

    MD5

    973712343632c53a9315c01d3708d14d

    SHA1

    df51fde8223ce373bdbf031572eaa9cf416f1198

    SHA256

    bba7b804fa50437914cd72a72e463d3489ec2d34221fdc55c0902a6072097a62

    SHA512

    02a450b76b9408108b02ba590395a81429cfdb893f49c1057a1a52d6ed7fae035af3ee0b2ee99f86b0669f09d59194cc0a47a8eecc9d983ea82c344593ff89ed

    Download Submit

  • /data/user/0/com.yxxinglin.xzid534567/files/.umeng/exchangeIdentity.json
    Filesize

    162B

    MD5

    e92bf8cb7923dbdd7e9c0385fe0f6edb

    SHA1

    e50dd70d7011366621de5466ad62f0eeca804fe5

    SHA256

    c5473bbf4609be70d01c45f7df1100aa21f019448fac93c0d7afb2e396bea696

    SHA512

    dc3b0849364cd06016675497f511b474822bd155591237899e02982225efa173484394e5c7f852db608cd7abe43e47bf2b291d86e4c7ec864a6ea22a758877f0

    Download Submit

  • /data/user/0/com.yxxinglin.xzid534567/files/exid.dat
    Filesize

    59B

    MD5

    fe6e1f0f7fcf080f0b664051380a68fd

    SHA1

    1d4ebf1ca52cf658f901a43ce8f7e6ad7325182b

    SHA256

    0009f79d8c44422b644d88be3b1b734b8e97abcf9754edbd7e65340980b04ab0

    SHA512

    d9c598f18e19c773cf3097c57d46c6865f8122dfabe4299fbbeebd54658d54e34bda8467df28b4193fad8b366fda16b8e015465119968b90d1c1d7c2e87f31cb

    Download Submit

  • /data/user/0/com.yxxinglin.xzid534567/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNzAzMDY4OTk0OTkz

    Filesize

    1KB

    MD5

    04bd5f13aa9754d7d8dc0798c7cc7d29

    SHA1

    68704096a23f298d1e782c4f87bf7f6a81c2a982

    SHA256

    321b6e949f07b1ae455158bbcd97665052c27964bb12f75adbbeddaf2e321c98

    SHA512

    d04019886c2aadb795ee46649beb64fe6f9a57f96074b4f00a98f34e0e97de5883989f78357bb9486318fff0e1ede60011ccff1449ab5ddcddf6fe4c8fdc4537

    Download Submit

  • /data/user/0/com.yxxinglin.xzid534567/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNzAzMDY5MDI1MzA3

    Filesize

    1KB

    MD5

    298c51afecf3875e2a7bfc961810a6e8

    SHA1

    d75ea292d5b6830771f14afa2e23b990637ee7cb

    SHA256

    685624161270d7b55eeeafbfaedb135c1af1a60817e74f4d5964b6ad19bb7093

    SHA512

    81b4b1e3baee80ece3c85b36bbbf18b09756a6d64553feffbf2bdaa71ce6c5878dca2942eeb3c59b5dde132fdd97d1efb248a6e8d3cdeb844b8159b87d2f2e94

    Download Submit

  • /data/user/0/com.yxxinglin.xzid534567/files/umeng_it.cache
    Filesize

    352B

    MD5

    4700caffb01565df98fd2e9f61282584

    SHA1

    4dc19b84ed3b9ab02857d3d4261211f8773e9af2

    SHA256

    c27863e4ad3a4e0aa8e7adef718c3f3b6c5700a32938d829e975ac7a3839bd94

    SHA512

    91cd9f5ac9346905a2bf3a85e86d817a235337fd3c47919d26a28d3fbb42fe31154686faae7f140937c349a7d806aa703b62187ec2b128ba40c1452c137279cb

    Download Submit