Overview

overview

7

Static

static

6

775d1ccbf1...28.apk

android-9-x86

7

775d1ccbf1...28.apk

android-10-x64

7

775d1ccbf1...28.apk

android-11-x64

7

libsells.apk

android-9-x86

7

libsells.apk

android-10-x64

7

libsells.apk

android-11-x64

7

Analysis

  • max time kernel
    2282877s
  • max time network
    154s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    20/12/2023, 01:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    775d1ccbf1a31456251b0eb0397d66522d211aee7cde0567d116d777c944c328.apk

  • Size

    6.5MB

  • MD5

    6f4e8cdd87a81e5f525a927910172270

  • SHA1

    bfa0fee19c1a4b781af6fffe334c83f39dbe5d5d

  • SHA256

    775d1ccbf1a31456251b0eb0397d66522d211aee7cde0567d116d777c944c328

  • SHA512

    f345f2f2476c04179a7642dfa2a3cbf4305340116619fce33fa3b8ec422b3da428b5abad8ccdbcc2f01025cac51929ff7a868f896c455fb69247d8adac4d5beb

  • SSDEEP

    196608:HDC4kLGadmKKPdyuYnCuJFbN8xeITZenaI1KXKzps9b:HDsGa0yxCueM+ZtYK0u9b

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.arquanjing.apps
    1⤵
    • Loads dropped Dex/Jar
    PID:4979

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.arquanjing.apps/.jiagu/classes.dex
    Filesize

    2.2MB

    MD5

    3f80d78f898c1aae881bcce81a3d2f8c

    SHA1

    4bdc8d516bb733382ef429ed7dee834f6f43c801

    SHA256

    5e947c675ed4e3d8d322899753f4d047f2168697256de3add6c52044e81700a0

    SHA512

    521828365477a73acbb17ddd54179ee753570faaea876a94eea5698a81334b53f4e874683ecf8eca77d84ca73b0eb8e32fcb450edf0db1a6c540d2bc41dea055

    Download Submit

  • /data/data/com.arquanjing.apps/.jiagu/libjiagu.so
    Filesize

    558KB

    MD5

    98736de515958ae37ae93a0a0e997098

    SHA1

    72d0f9d43f7c9bdc9f19d13834c0872f5652c0f9

    SHA256

    335091dfc73a9f792cb720389c5d94eb6642764a38d70d4b6b7a8afd34038421

    SHA512

    cc4974ce398bf7f4a20160ad30e4c4b5821ff0d7f2cc9fa0aead73ddc036585266edf429add276b53d6db8dd24a344d709469b9c839451deead6b621e70c92cf

    Download Submit

  • /data/data/com.arquanjing.apps/.jiagu/libjiagu_64.so
    Filesize

    569KB

    MD5

    64f0958be2a8e6862b90faacb40129e0

    SHA1

    389c618137db70dbf84adffcdc3c5d4850a5ff24

    SHA256

    4f38bee50f32a8c64f4f9c671b7cece34d4a1cb926087fec8ef505327d4edfaa

    SHA512

    793cb7104013b7841c38e4aa14f4d9246aefa61aa9803160e6398c4115a2df5c6af304bad045c687467547deaab3bb77272a675b0d673f81f2df3dee2d1fe94d

    Download Submit

  • /data/data/com.arquanjing.apps/files/.jglogs/.jg.ac
    Filesize

    32B

    MD5

    624db59584a6586c81db255cf3cc117d

    SHA1

    9bf8e0d4286fd15ca647df15031c11d9bcfa184f

    SHA256

    2ba4bf41190a7b0279a567a8bf3a327251e1eabfe6be99f08c87d99220ae6326

    SHA512

    874c0393fa725e7d187c9bfab337e0a98d27325e490142eeda12a29493065dc58b0cfb8743a0aaba9a4307c7b8e723cd02e3f60427edc5624bb029ec570960dd

    Download Submit

  • /data/data/com.arquanjing.apps/files/.jglogs/.jg.ic
    Filesize

    32B

    MD5

    5d953b53da1e10fb5441403f20241d55

    SHA1

    7b3cf7d84f61977849fddbfc5c890e59757a7c47

    SHA256

    9717fd4a0a5e760c6bfe1f1a918e15530674111cd31536be0c09bd16db2237d1

    SHA512

    df0b854fbc1c46e1e61a203d5933305919bc5bd0c0d72141d48c9084a3e1da0e0d7f122fb7ae99386d207d98d04fb7a0c80ddd47799b6f2d7298cc7d501af9dd

    Download Submit

  • /data/data/com.arquanjing.apps/files/.jglogs/.jg.rd
    Filesize

    32B

    MD5

    6dd38a80202a6e1d25b866abe0042119

    SHA1

    772b222b01ca199215e16384c24cc696c087d9af

    SHA256

    4dc233433101a59b0a076f924e7009642dc9b9b96fb16fd82add045280ba39d6

    SHA512

    f86098aa3f1a1eaf5a0f553716c46142a1882abc666308077a6963fac9b133267b6acdff150eaf8a6e5e90b915cff7de84d3180f5d45c611fd39e9766177d6e5

    Download Submit

  • /data/data/com.arquanjing.apps/files/.jglogs/.jg.ri
    Filesize

    307B

    MD5

    2808b58aff8191e8f4f139c5118ed757

    SHA1

    7b6363b1eee98efae1c5d74f959b23f1a72ed4ff

    SHA256

    3e3e4269d2ed026159545a4e87fd73d51660992af3cd464ed333ba42935a6476

    SHA512

    10a797c0c5d600c6b49311ba81de64f28bc9ddc98822e1c3a12e503cc854c33e5ff451aba902feae37b273910daedaf8704e2fa5971a43b03b5da80624405e9a

    Download Submit

  • /data/data/com.arquanjing.apps/files/.jglogs/.jg.ri
    Filesize

    314B

    MD5

    48bdbeb16aec20658b841bff793eb059

    SHA1

    03a4e98c8a14d94f4e83ce3cced1d229ce050801

    SHA256

    2869a19e01cdfe91835c4049609e3f5768e1a084c52fdbf8ded2cf3dba6bb41e

    SHA512

    77376e99a72605776a86b69a797942f967da2d0096643214b69f945dc42bdfd07a79268c2af513aa9c42741e770235d4e16f62d9980b9409f86ec10ff0f32b98

    Download Submit

  • /data/data/com.arquanjing.apps/files/.jglogs/.jg.store.report_pid
    Filesize

    32B

    MD5

    dbeefaec03bfa8ee26a168b4c98014e3

    SHA1

    f826a005e586421145cdcd292c2b759f460c4e33

    SHA256

    f2c2bc552267d9f87b213758eb15afdb5439ae32c67d9cb4984c0fe9d53d5942

    SHA512

    28d386d502db4c263c1b697a33c2409925b577346a947390d39c6bded0461331641f6ebdd5b05e7fe860e0b2c2d622c2404f3e15c47614a58f2559055784e17c

    Download Submit

  • /data/data/com.arquanjing.apps/files/.jiagu.lock
    Filesize

    27B

    MD5

    704c612d4082ff8f46ec1e18e3a34f22

    SHA1

    22eb640227fc8bec499b1dfcd9977daa0bab72a6

    SHA256

    4dbf7aab1fe1b10fa9494209670796bdb65a76e780cef0f94c60d83181ac4e8b

    SHA512

    cf05a593ab32adc4827e82c457b169aeae84720a49bc6ccc6fab305403d313a328fddda77f5dc6ea911af3e48a33fff920ef04b3a1c7f513d72f95b4d5fe4359

    Download Submit