77d63060d493f226f3e40d486e802e6ae31146d497fcc67276acae3ca2b194c9

Analysis

max time kernel
2284514s
max time network
153s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
20/12/2023, 01:15

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

77d63060d493f226f3e40d486e802e6ae31146d497fcc67276acae3ca2b194c9.apk
Size

6.8MB
MD5

8298208429588691e0aa60d70b903793
SHA1

bc06e48571ff01186432cd9647ef97cf01faccd9
SHA256

77d63060d493f226f3e40d486e802e6ae31146d497fcc67276acae3ca2b194c9
SHA512

540517fa2f27b552c7af13e4a08c50d33d81f0178201cf0453a1480395de6445fe274abc07c43a2712d01c6a3820b1bc8df5d739efe8e2fcc2f8c7749e942269
SSDEEP

98304:j8gWCDBBHeti3LL8IQ6oxeIahE7rXBL1EDEsw1+A:YgWqB+inPQa2/XoDEL8A

Score

8^/10

banker

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 IoCs

banker

description	ioc	Process
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.fun4.daan

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.fun4.daan

com.fun4.daan
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
- Uses Crypto APIs (Might try to encrypt user data)
PID:5107

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.fun4.daan/files/tianchao.db

Filesize
2.6MB

MD5
9bdfb010e2c4ba35988d2192cc7e5e1a

SHA1
4610770989992f1ca19c183843dd6d1f099ad052

SHA256
6e2a53d1d3ccaddcf9c2e00529c0440accc135b4698e71a0f499126b1daa972d

SHA512
5497b3b45a96d7d3ac062d9a4ff201d323c328ac872fb4c04442d6fcafb9ebeac31a194538ca6bc2e0d56a560c6f64d1ab756c83547854f7bef25fce8abcb3e1

Download Submit
/storage/emulated/0/Android/data/.class/android

Filesize
33B

MD5
0f44edbc45401773c96dd5e2a39ba212

SHA1
116c913e3b6f4f77f9549426bf6e4a4d279396d5

SHA256
745fd71594e73895acc4a7b052c1c08184aa5239f3edf22c152826c49953fa28

SHA512
b9ebcb18204d3b6a6e18cf1f140eda5bf40026e893415488d5d69c7288002512955ba6d9b2811609d48e1d3352f7c58fea88188d1b47747eeb6339dbd4a3b471

Download Submit
/storage/emulated/0/Android/data/cache/AppPackage.dat

Filesize
11B

MD5
ef5a099a6c515fec182b87672603cac0

SHA1
535d92a97122333c14fb4c4bbf714046a6d397fd

SHA256
ffbc689860a52d02a473fd9d9ec9ed7853f1f328a54fcab7808db3a6bfccf1aa

SHA512
0683b615cb3a55ee4d9ff4a3661a057cc6b721799b3bc11cc5baf26e295782bacdb4a266625bc7777a7bf719f9b836ba94ba2a2ec7348657cc334aa11c53db3d

Download Submit
/storage/emulated/0/Android/data/cache/CacheTime.dat

Filesize
13B

MD5
f66f732b85133b048e55cadb661c8f95

SHA1
7a1d2c30d1301a1b5f659e053c77749d276f2384

SHA256
2d29f5251972f92aa417e5774143e14fa1d5e4d6e0ae1cd933b246e41fef08fe

SHA512
55cc2b5fd6cc3cf5254f1e13516f835516bd47ee03766ec5b59d640e89bd6c1d85692d8e75d2e2a534e7dabc332cbba8f6b24fe5b96282ad43a62752486f94af

Download Submit
/storage/emulated/0/Android/data/cache/UnPackage.dat

Filesize
14B

MD5
c641c152e0ed87d3f16e312746c43c0c

SHA1
d6bb08ae80b37502f35a93b13fa4f2a87ebee352

SHA256
4ae6d1df303129023705684d7f39ccb85c014fde4f7289c917e73a6e27ff95e4

SHA512
88c9f5e60f2715931427112e337f3a5edf9cf39f5615df9e35dcbb41f3110d51f940729f52ec8fae0f3c56ae63d08e3be9ec308441c84f6c8dc3ba1a6eab204b

Download Submit