76a4a58d48110118733abd567d8d37b53c309fc497b9335ca387ef8a81b78c40

Analysis

max time kernel
2357896s
max time network
161s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
20/12/2023, 00:56

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

76a4a58d48110118733abd567d8d37b53c309fc497b9335ca387ef8a81b78c40.apk
Size

26.2MB
MD5

44d59203853d4930456d77f219698cb8
SHA1

32ab5807bfae26bbd53196756a75b56425ab85ff
SHA256

76a4a58d48110118733abd567d8d37b53c309fc497b9335ca387ef8a81b78c40
SHA512

17b7ffe6910fc94d7c5781628d7a8d7f2572ba3d48de7c285732bdad0ccd95ddb17fda03058e5081e2f4ec2a057a092ca6a4b0223305835a7abc0e2db4c1a4eb
SSDEEP

786432:32SMtPdJVR8+RboqSs+Ymd1q+3LZqRdViYCYQJG/5/jA9:mS4nCZs+YmdD3LZY1UGxk9

Score

6^/10

evasion

Malware Config

Signatures

Reads information about phone network operator.
Checks the presence of a debugger
evasion

Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.txm
Framework API call	javax.crypto.Cipher.doFinal	com.txm:channel

com.txm
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4275
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
  2⤵
  PID:4431
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
  2⤵
  PID:4451

com.txm:channel
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4500

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.txm/cache/_KStore_/cache_http_api/journal.tmp

Filesize
31B

MD5
fa79244c9fe70f6cc813c4bece0d1bd2

SHA1
becc80a0d952cd02e9ab07408136498dbc82774b

SHA256
aafeabed5f0062912cd9016f90617308e1d8e320f09ac7dd65383498dc868371

SHA512
049bff76881d28a757bb8a573d9bd75ad15b6a93e9ece52b90cf29b433aba855bd6b0c39b5dd56bd86abeeae13654aa58c29f9e9483ace0963dbe5c7c8f05a55

Download Submit
/data/data/com.txm/databases/MessageStore.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.txm/databases/MessageStore.db-journal

Filesize
512B

MD5
1312e692b93b844dbe3cb5cecc572bd0

SHA1
c0a6f25d0ce1f5153d3f669cc112de791b2a801e

SHA256
6943701a2d5dde1ef9a719d5472869a544038dc50df3060631b1b196d28c70b5

SHA512
1aa369ca449b4e3fcd99f1e56367216311cc6905a3e5045a8fabe514bdbb5c73cf964b738f498539500781d9359a9c6ae17574b862c356d3b3d0097453b33cfe

Download Submit
/data/data/com.txm/databases/MessageStore.db-wal

Filesize
48KB

MD5
b2a3eea737e628bb11cbefa8b4f646db

SHA1
1cbab0a141af360afa280210ad09adf2fc7230a5

SHA256
45978b8fa943f5925cd542b0ee350e1a0d685eccf5ee6f98cd2b8d8d14438ec3

SHA512
c937121ce4a146c9d29d465eb386031e4d4ec7ebb366d6a47d6fecd019962bd494397d00ef2625dac84d8ca2e82bb2275a437ad397be9c8810adb1ee6db850ae

Download Submit
/data/data/com.txm/databases/MsgLogStore.db-journal

Filesize
512B

MD5
3cfa0e9e23dc495e7243e57e28d2ae47

SHA1
7daed0c7cc14099a926012ff62e5d49b937026d9

SHA256
e2d6695471b4de494b633c5be7eca6f4c9c874dd7d5d07b37342d0a5b68fadc9

SHA512
aed8f61122e17e9f6f4df628ca69646fbbcd03b15ed80db21b07b1f1ac49d104a2bb66982c80e874fd82839914713530d30c739400203e2336e1af5aca179be4

Download Submit
/data/data/com.txm/databases/MsgLogStore.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.txm/databases/MsgLogStore.db-wal

Filesize
68KB

MD5
407d0ba90ffb5bc341fba9fc9ae88345

SHA1
350521e79fa84d1dd42db5a7dea811323fd7ca74

SHA256
85deda2ffa06a084fc53d3a1ba111e270071a75904e08e8da39b0b7f8c9e722e

SHA512
bc9e7d437762404078fd50154867e49661f75769c17a44b03c172eafe1fef601ea6ed98655f886cf9febc19f7d17c6c442a89c3d5445e125183fe29cf5cb9933

Download Submit
/data/data/com.txm/databases/accs.db-journal

Filesize
512B

MD5
dcb79f8a9e60fc86ddba311c76933786

SHA1
ef9a94c7bbef9d9e6cd71d2f1c4d50c33dd8cb0e

SHA256
3ad511543cd7822aa2503aedce5eb77d631e8528f3b4b774bcd430af0d136111

SHA512
f5553388516a3f28e2800beb7e0ca888a9e1d9ecdc12c1eb4a5a5adfd3378aab7954b1d1d0080e25e5ba64163eb1d0d8ed0a83680e76d3d8b5956b48c42fd25b

Download Submit
/data/data/com.txm/databases/accs.db-wal

Filesize
16KB

MD5
064d8e3aef5a03e4dbb9f35785a697c2

SHA1
6627bcb8b1560fbcaec4fdf9e8fd212da3aea8c3

SHA256
c6a5885d19709045b5bb7776a18ea68b2bd76002fa436ad6d6f673b32d1d5ba3

SHA512
248b466d69d92390d0c519ef3ee2fcbd68bb11258ad510262b31d7535c8f5aee0be9b3dce527c38fd60af1aaf2009e0609f24c6c8902736e5fd04b3918be3f15

Download Submit
/data/data/com.txm/databases/message_accs_db

Filesize
36KB

MD5
486e2bac2b3e9e1cb411d2838a4854bd

SHA1
81dd0a7537f4af319b830ae834908986be85da8b

SHA256
5644a250fa6cef16c2c802b98275656a5fc39dcf89bcc22193742d85c7313f57

SHA512
c146789563dae163e373489b3df53f22efebd32b69643992969241eb5ad5eec668de67e7cd2aaf5c3a8af57b0842115d00183825734f57643d3fdb09835fe681

Download Submit
/data/data/com.txm/databases/message_accs_db-journal

Filesize
32KB

MD5
3b96bfda2ffc0d4eee2d25c31269013f

SHA1
0cd4e59fc82b1f7fb89697f54b3c25feb9b5ecc7

SHA256
a2e60a565fdbf0cea55079d1aae2bfb3bb93b75a3ceca065e82007ab2a3c6135

SHA512
a27b2167f23477366a44d5bef6fc62b1d8d52385a6f37b7ac3546be79b38e8040712624a1a1bcd8e9514d6e36d9084f7b55e4fadd94731b356fd01fe10ed6927

Download Submit
/data/data/com.txm/databases/message_accs_db-shm

Filesize
28KB

MD5
8aa1f9b4f8f4c2f303c0ed7aaa1877e9

SHA1
67ea59b6bb5f74aa7d037a4d1ab5b5816d811270

SHA256
7d20f137b4b64a2969163ca4679b60bbc553e67c839f4f367645d699a866868b

SHA512
5e0a2274319ea95f05a89e6437655a60027ab8cc741b5f1c79fa05c1f86de26964bda3926f36e0f8402e8577c7dc90f1ad032edc5d0d1cce7cec5e6a32f71d5b

Download Submit
/data/data/com.txm/databases/message_accs_db-wal

Filesize
48KB

MD5
14fc9088600f6413321e4d2b4ac9d61b

SHA1
22c8742908f1c778d3797678fdc339aa32013bae

SHA256
6daae47e35c8ea6a4f61c84b139496f5695f1f5d49e88460764447ab80c2258f

SHA512
55f383af0a4a0483ee59713e532d133aa413a0a5705c7eb67b449b8b6a98c5d5c6c7b86587954f6dc802aa2e96b54a0f5dd92d1bf6b572f0e44ca3c59defd573

Download Submit
/data/data/com.txm/databases/pri_tencent_analysis.db_com.txm-journal

Filesize
512B

MD5
98234eaad82004d59df59eb18173b344

SHA1
ebb4a8f63cf8a2dc38dbec9bea8c5deadbc8b4a6

SHA256
3e8059903bfe1e5b721ab91e8c788cee8d2f7eab3472aeeb1b10807a11fa98d9

SHA512
641795516db3a5a0d99c3d8f1bba12cd24e8d6e5b8ee59d64c41f9cd537bd1f2ef0e09eb42c737b235af2cf5584c2f4bb018af1b5f6a2fa26cde743f85c47e6f

Download Submit
/data/data/com.txm/databases/pri_tencent_analysis.db_com.txm-wal

Filesize
64KB

MD5
5da81fc44782ebe9f6273ec515852950

SHA1
e4860a9665a5ce24853492ae5d51766af0c39e94

SHA256
dfe9e2c45011eb6c20743f0b467584a6cce886bc5f348b23e437d52bba6c8b13

SHA512
daa0cf40fcf1163fdbb5593056c421eeb20b488df0ec226c1f6224f2f3131e65e4f430b1a263d7d7084743113c33696d70394041a98858bb0efe68e6047299c4

Download Submit
/data/data/com.txm/databases/tencent_analysis.db_com.txm-journal

Filesize
512B

MD5
7fa5d61b1038ab4924fb2537b897c856

SHA1
2c3c1c06fe8866a849ca46f86d3166af28fa7242

SHA256
a14b004e98e5970fda8014159c16ab0ced5020933119bdbc0c4166d65f86f701

SHA512
9459805efbf3381c7bb2fb120fb81ead7e34d204ef7a019fccba1fe72e78a832c8afa3997490f9a850257095e7553b783fa595dbd0da2489eb04a5699a6d4359

Download Submit
/data/data/com.txm/databases/tencent_analysis.db_com.txm-wal

Filesize
72KB

MD5
48cb7951ad6fb0cae709f4b0cc401c8d

SHA1
c73e3d382df1d335773014e676bdfb1d4109aaac

SHA256
c83dce1228ef7f2a10e8496356152b2725978fe339e84c8c9e73125ac3f4c37e

SHA512
821d7e52bc215b317d0c68c11dc193e781d0473327c6570ada7ad11ce26980dcedca1eeb4442f3bf42b70e0b091f470daf3abd9aed4b5acd64d76865089437a1

Download Submit
/data/data/com.txm/files/.imprint

Filesize
926B

MD5
5b20a2901f8d8985320a9efaf648dfb5

SHA1
52d25dfe3199d33ffd25d4dde572aee6e1dd8a6e

SHA256
3454ca93be00da338f31d9a1e3cc0cccde629c4e3b07eec48dffba9bcb2dc4fa

SHA512
c82ada4600f81b3a85a2f24956c505152c1e3464a0625b049f89a4413268b3b7adf9f1aa5fea9eebfb25cad47d77b84d4180ef46cd33e91179726a29062f77bb

Download Submit
/data/data/com.txm/files/agoo.pid

Filesize
4KB

MD5
e27719bcb14ca937b6df9e709ad13481

SHA1
d9aa24cc63d464c55e5108c9f62fd19cacf3c6be

SHA256
c0005aa03faacb37d40e21e9f6c435b062f381c522e2b72319ae34077654a5e3

SHA512
4ce0293fb84f420cbbb97f059aceed0c4a5662d7ea4f69efc28331a564340381b6a3c13897a2cb4c5ad83d72c131139239a1e4f8a2e8d414969f2453fdf7b022

Download Submit
/data/data/com.txm/files/libcuid.so

Filesize
129B

MD5
a6e9c6cbb16c916606a0822e20ec661a

SHA1
ea4de34dfb55e4586903dec1d7508cec6a716748

SHA256
63d2146abd459c929c31bacfa99613ec45a10fe72d9f6c47004db3a42d863aaf

SHA512
6fbf84dc3d7f854ecbe8a4b0061923a4126a275c82ee12b8433e330128f944d1421c174b8297cdca1ff3f0f6f2aa07f3a7df70c59a3a12d687674d6a786ed5f3

Download Submit
/data/data/com.txm/files/umeng_it.cache

Filesize
393B

MD5
10886281bd86cf6023fa6cd9ef619d26

SHA1
c9ad2cf4eb99eceb34238a6d18e9f2da0912dc26

SHA256
4fcdeaca387c0bff171ef2db4478ddd0a94d89b5468e591bebe6b88fc5600019

SHA512
aa99b57b400b5b267a584dcbde2b95fa2efdded83a67f5fc9f33a10eebfbfdacb51bb49fa79fc56ea85b67441e98704aa43d7a8eaaacef1803f5986aa5feb1f7

Download Submit
/data/data/com.txm/files/umeng_it.cache

Filesize
200B

MD5
462c4feb19fc31babe538513ad037efd

SHA1
bdd262b7dbcf22b1f8b4a1089a6fbd6805169b2d

SHA256
36337e802ca6819cd980359c7eed43774c1a1cfe941b263f67c8e83f6d65e0ba

SHA512
148dc7bd204bb47ca2853f0bdd1ba1647abf13b66d44c6a1eab9fe10e133b2956f4098bcf13b01fde86c4f68a39e58f7318e8b51a7b76d10d7c2fbea0cf50793

Download Submit
/data/data/com.txm/files/xlog/txm.mmap2

Filesize
150KB

MD5
06ae8a01d80da962c7987c264af64cec

SHA1
63a497994321f254b535a846ce89f076d4e378ee

SHA256
0c5cc90b079d0d9c1ded1376357d23a9782a704a83e01731f50ccd162e246492

SHA512
8720928fbe7cf8351c9dc45cb1a9c8243939c7e3c9c6957d24dbe18c0819d05ea7475e3953018f0365461fb2987ad68d8ec9f59b03aef3adbd3e4ae8ebbd0427

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
111B

MD5
9cf726dffe81b00264c6b0c3b8d6fdd0

SHA1
6dc456bfbc1ff27d5aca403c4f2247240ae0b9ce

SHA256
78d616ad292273deb52be10b17dfeb8b05c32ded9b9aeaf59434dfe999705671

SHA512
758c7142c99a83470efac429418cfb00f66fc2bae307b9d4b0fa6299ed0bec040bc743ce09aa54642a3bfdf234ff091a40fbe37a9e9f798f52360207458cee38

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
381B

MD5
54e4b1cef7965a371375fd13aa7f224b

SHA1
89e5ae5be9af8f33da680680368ed18b864e2899

SHA256
3392dbb191dd28e68bedc02139f9da2e2025461bd0d9d8cefab74062ef0f5f21

SHA512
4d630f431d5874bb1da02d785fee1e61ef8253874d077aabab0ba4e3e94f1eb49c86dbe676ad5f052459b9b641f2ca6e8817f02d2d6c21f2904099b8e0375ac4

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
111B

MD5
618124836a7baa6beccca03df89ef427

SHA1
45b2f5a3d768e5edcab69ace3895cee658070999

SHA256
d7738d851e5a4d5ed53d3f9bb65d02b30606d6910976494641dae3235e75ccd8

SHA512
7daa57742bdc2b4e37d8b77f419bd3a20cdd71bd3bc9971b813969d6ec888359bba03af6af7c8de4e599b4b9dfb36b472b07bfdc928a682cac470b7f2372c562

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
381B

MD5
2314ae65efcb09028c1876b8eb6c57a2

SHA1
54158efdca479f6289befce38066e4e31aeae5be

SHA256
9d4ed3d05281276188e3f2081d7f70a73c7e13363052b71de655525e15febd87

SHA512
f73053ce7e7e0466c07f600b197ae095022af6eda95f3b6c59f628c81c46ba55022e637f028a9b3cdb794f37aa83f118ffab37cf60bad3e80f3f95f96d99196c

Download Submit
/storage/emulated/0/Android/data/com.txm/files/log/xlog/txm_20231221.xlog

Filesize
4KB

MD5
79a900f60a5b31699408891dcbce5b1f

SHA1
72d2fd0f1c9fefd7a66734caae0baecce03db5b1

SHA256
9dd670c143874578da256319203369259f6dcfc66aa30d958c32db932ba23725

SHA512
58c71f15dc7f653d1e6091852a66866d66881378b91895e1d5c7791de5b92d9aaab3b5ecb2282087de71f4f5081ab5f7527f508c6f791bb7d885312f4261bf0d

Download Submit
/storage/emulated/0/Android/data/com.txm/files/log/xlog/txm_20231221.xlog

Filesize
565B

MD5
8d81c16b893fb9a3ddf0fe44306c5a75

SHA1
4b99a86293f3f87c80312f441246459c9fef8855

SHA256
e9f0006d8dc100d6d68fd46b76f794cc3be05b2338047fcbbf0c1f45e953b88f

SHA512
3ebfb6eed7da6c9c063d861b50f79466efb59a7957e46a3c04746931193b70dc28010d093cb32e843b5fcbce6fdb1054e624a8aba27ebe6bc412443db8c2cf2a

Download Submit
/storage/emulated/0/Android/data/com.txm/files/log/xlog/txm_20231221.xlog

Filesize
64KB

MD5
191eff8b243d8cffc89b0d0bcb5007ff

SHA1
e562ceac66f8f962a14dfdb8ed5a556641ce4979

SHA256
c91de2e2e6092bee494b22f75c6efb079ce79368d84e669f81145c94e0ec2b46

SHA512
acd5dd166f2a90da863ca89578287bb76e554864d65eac038a916362f894dc6f5172f23c0acce6a52cac1c7eefe033b33f9f9d10eafa45f0525f68e37a1db8a1

Download Submit
/storage/emulated/0/Android/data/com.txm/files/tnetlogs/inapp_20231221.log

Filesize
544B

MD5
b75b3f2e8b42ea460d986297fc12538c

SHA1
5ebbecf2bb0951b8db3c9300857aaf0918301e3c

SHA256
512e04977403e841f6260e1d218615a0eb2cdc69c30440b116b503917653c96b

SHA512
ab23af652611c8cc0862c9d6ad846f444c89db30484e4bda46be83aca737f93d62055188c8e446450670f62b5565bc29d7f5a3b9e17da64e8918fc25287bbf54

Download Submit
/storage/emulated/0/Android/data/com.txm/files/tnetlogs/inapp_20231221.log

Filesize
150KB

MD5
8b838e5f14a5725f4a05698ecff1d782

SHA1
e454b3bec3c4a329d6be6d06652d4f4089027fa1

SHA256
87332770b2adfabcdd913a30ea14ff9248b46319002ce2139d45bda1b6026aab

SHA512
e7d9ebeb8d9ca8c684bfc67d9897a16fedc648ed6ac1bb086a15e60a84f129481983f2144c430ab2aa84a8ee4dac6b47492b64cc6dc9f885df8bdb46ce5a5779

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads