Overview

overview

6

Static

static

6

7de9213ec7...a9.apk

android-9-x86

5

7de9213ec7...a9.apk

android-10-x64

5

Analysis

  • max time kernel
    2341893s
  • max time network
    135s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    20/12/2023, 02:32

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    7de9213ec76ff39a5be03d8d5357170e5752a3623d0ee761da55a849d746f1a9.apk

  • Size

    10.8MB

  • MD5

    028d9b293bfa471394ccfbf95540c4cf

  • SHA1

    045d3af51f4de2dbe1488b5075ab07ad9ea75ac0

  • SHA256

    7de9213ec76ff39a5be03d8d5357170e5752a3623d0ee761da55a849d746f1a9

  • SHA512

    61204e358272ea7566ace1ab2d7009c484cb9e62d2e7fa23145679361847b4a3e1f62c3c40958216782732a92cadb2c87efbd00352cd34a64b056492e1167522

  • SSDEEP

    196608:YFD9DfdMAjB1C0ayoo5SFhZWlst3uSYBMwovG71SEye4lf0Ii0XrTW1XZZLOt4fK:IFJayoo5SFhv3eUvmDw0Ii0X23XDI/

Score
5/10
evasion

Malware Config

Signatures

  • Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs
    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.yxxinglin.xzid135457
    1⤵
    • Listens for changes in the sensor environment (might be used to detect emulation)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4245

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.yxxinglin.xzid135457/databases/cc/cc.db
          Filesize

          4KB

          MD5

          f2b4b0190b9f384ca885f0c8c9b14700

          SHA1

          934ff2646757b5b6e7f20f6a0aa76c7f995d9361

          SHA256

          0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

          SHA512

          ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/databases/cc/cc.db
          Filesize

          36KB

          MD5

          ce6135aa1b1fe4f2c2db2a546d2a5558

          SHA1

          79b59582154017aadab783dc266fcb158c252940

          SHA256

          7b45f576c08c7f78220168cca4a0e33198b13e9bdc8b1da406ddb6887412000c

          SHA512

          2839075fe374c8567c839ae35ce2d33ec72fdaebf170aa7d224b555e5b0e74d4a43f2f67d17ed806dae841da883e9620d788ea052d06152678afa927307c7ce4

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/databases/cc/cc.db-journal
          Filesize

          512B

          MD5

          70dfa83a259b09279a3d78b3e050b206

          SHA1

          553c7977b295228f69615dff32842b527afd5167

          SHA256

          2d0e69e7d9f05e82413e1172fa462064ed8be9e11dd0e6d51384473107b6fb26

          SHA512

          9e0e5de75730c68f895a253ed7e9d09bec3652842ee636178f1afa6de32d969d244f324e3e6baed4f0fefefaa3b6caf317df52e4aa1989017196bb72b1856141

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/databases/cc/cc.db-wal
          Filesize

          48KB

          MD5

          b7048afa7cba7af856c4973c41d4b387

          SHA1

          0bd42f443fc168b8ac4ee155b41dbdab08738244

          SHA256

          1f254c1def66f16de32dabbd4480fccac5e1305a3bf834cc103f5deaf517a658

          SHA512

          a0e5dbf51907ca790616fda1ba6e8ff361edc556e3ac5fa3ea633b055ec7996e5059d9d6c9a538859a73e3e5fcb10e345618617886c460d5eacfdf170c7adad4

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/databases/cc/cc.db-wal
          Filesize

          16KB

          MD5

          3b8b8dc90b2b90540fe31754466ab7f8

          SHA1

          47c8241e54860210efa7fc1bf5b83bc792bed81d

          SHA256

          93811decf98d43d6dfd339318a39559a894ca1fd747b9c675172d35831e1ec04

          SHA512

          825bfe422a23d23cb103c630407080a4bea40ae89ce43b56a30ea1a132412f36b1685d30196d412a081980ea3ccb24a699dfab7b08e42ddf9d7ac4a3cab26d74

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/databases/ua.db
          Filesize

          32KB

          MD5

          d604a3bf1f8d992cc320ea5b1f7609bd

          SHA1

          247f88df0b55c7d523ea5398637711a0e4a483a4

          SHA256

          329940b4d46326d58e73c842dd099704061d0ef7338777bf31ad895f29013c17

          SHA512

          67e28f6713cb5c238a9664df128f01a89a2efb7c8c9330c1e45bc0d40ebab81fa20df5166743d84d81dc0386a89ff0329f022281c098339baa2e851ff0a1e1ab

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/databases/ua.db-wal
          Filesize

          8KB

          MD5

          f08825d2007ce121fc7436a5e6239ed6

          SHA1

          5fcd865b1957ff8e6aea64e1daf7e54424206557

          SHA256

          1db573ef39aaf6a0c7dee3aaf3c94ea8e4b4b430f04d8329526d9f33a0f8f046

          SHA512

          2e3404b5dd1520cc0b5d5067caa8097d4c6c435b92504a9e7600dc7aae1413a6e280cc87597a4cc035beec8a52c590504a185978a3398467104ba32bf63ea823

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/files/.umeng/exchangeIdentity.json
          Filesize

          162B

          MD5

          cd18362f071220c764cac28abae1d13f

          SHA1

          4dd7d69e314de802e4dee0c38f8f6f0f20c82e37

          SHA256

          7d0c25d2da9940aac41a571f1fe1f02bcaba9c2b8b0df0c324cde944e0ddadfd

          SHA512

          7f0fc568a29170604e6a9795664f9f00025875eba62e28e131f60ea2c019e0a5f388501fb47c29e3853896fce6261dbdc7f410a15442829bef63bcc17a643f43

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/files/exid.dat
          Filesize

          54B

          MD5

          8eca6f1cafc0b3b293d3d25476339bf8

          SHA1

          f0175a2a6c166ca6be7bfaf3a01e0073a28e765a

          SHA256

          cf0563c7683abbf91edcb5b3f5ed516c6c544d2f4e05534757730a157e802095

          SHA512

          76d0158b3d5861de62dd477f6421f0f60ae102752e43a45cbc26223d3d24a405db768562ed8c8c1fa661ef6634ab36763a961aec534c297dcfb8aa33f691c098

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/files/umeng_it.cache
          Filesize

          498B

          MD5

          27ae11118b909ed4366a739dc5270539

          SHA1

          260401d8be4762d799700dfa331e0ae95e269c03

          SHA256

          c42439bb554e7841ff2880114ca66788b324482b9da5d54f8bc1a919cdf2808b

          SHA512

          890c56210361c288ff1b89a808243508f25fc64574aeab0cc4e0c2aa4236a1a5dd4f9013fce3e1e795c81f4dcc6c41504a141926601b70e7cd619d5f76f98c73

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/lib-main/dso_deps
          Filesize

          156B

          MD5

          ecb7e71bd805004c47fe1b28a104bbd9

          SHA1

          3417ac0bf5b52218c02108e0614a61ec6a01264d

          SHA256

          2df8ec5ef89a33c6f28a59f059ef8e54a53d76fa51d5d15d102362633a025fb5

          SHA512

          e23fcfe12faf7488bcdac3a90543b05d10288223f109ee0717ed5b051058ee33f81eac38b6c06432d3068e10ffa234379095cabf6ac902181d13f573f875a46b

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/lib-main/dso_manifest
          Filesize

          5B

          MD5

          c06857e9ea338f3f3a24bb78f8fbdf6f

          SHA1

          c5a0a2529d2deb60fec041b4fbd722a2ebe31702

          SHA256

          957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

          SHA512

          29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/lib-main/dso_state
          Filesize

          1B

          MD5

          93b885adfe0da089cdf634904fd59f71

          SHA1

          5ba93c9db0cff93f52b521d7420e43f6eda2784f

          SHA256

          6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

          SHA512

          b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

          Download Submit

        • /data/data/com.yxxinglin.xzid135457/lib-main/dso_state
          Filesize

          1B

          MD5

          55a54008ad1ba589aa210d2629c1df41

          SHA1

          bf8b4530d8d246dd74ac53a13471bba17941dff7

          SHA256

          4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

          SHA512

          7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

          Download Submit

        • /storage/emulated/0/.DataStorage/ContextData.xml
          Filesize

          111B

          MD5

          29ce512c31624d5182a8c851110255f1

          SHA1

          a7fc4d397d7f194e51220813e36ea19196e35401

          SHA256

          f32d9df47d0f09f7b1edaeeb306bb1814eb02122369409abae733e868386dd16

          SHA512

          ced3706cb682e1870c8a23cbf32a49d10b8e7c83f77055218b3f657db8caddff782f9e6fa3acea8953e0661e40d571dd021a8cae4eadb0e6fd7082094261c475

          Download Submit

        • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
          Filesize

          65B

          MD5

          9781ca003f10f8d0c9c1945b63fdca7f

          SHA1

          4156cf5dc8d71dbab734d25e5e1598b37a5456f4

          SHA256

          3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

          SHA512

          25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

          Download Submit

        • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
          Filesize

          111B

          MD5

          12c9bde22612cf23dedda1f9c6c79a9f

          SHA1

          44bfaa7cc9e1adc4226606906f4026c8593078b5

          SHA256

          30003c78268ca4c22003c6e71fa431040e09882403ef52f84f134cc16603f259

          SHA512

          ef48c2e13c8e685aa7b009c95d01f75b510da685d2699a7abf8abcc3a02bc5cf4058dee8384d6d75dd6b8bd78525d27a9c545467c6acc4c3b11edcd87ec575bd

          Download Submit

        • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
          Filesize

          381B

          MD5

          61546e406c599a5e83f454b1efe533e5

          SHA1

          0b76d5da9b4bdd2c94f4835a32b4fecab5487725

          SHA256

          baea8e93268af5b645b09a91c4cc85a5d08808e6c559ab8692ad895a6e83e8b1

          SHA512

          a244a8d32fb9ba8b3c05d82d0118a8742a555419b4a85ea36c9cf501061e41d069f74ac56485dcd6dc8d08d876245d8e3f606977fc45402ba06f10fd1c761e85

          Download Submit

        • /storage/emulated/0/JXCP/aff/com.yxxinglin.xzid135457
          Filesize

          8B

          MD5

          4fa7e26102afc285def55883c283d885

          SHA1

          ce1709a188ef1213291453f4751e3c5c5d048301

          SHA256

          ec600619d127b4524746c2668a7e5bf700042643d25951f1e6feb99bac4a4423

          SHA512

          c0191d0e19a0ececfb137fc102a7ce92b1f3b9d65c6e8e21f45cb9e9527b17b6a6e0bf68ef0216b69c3e0795556de29ffd7944d3dacf847b2b5f0e2813a5d3a2

          Download Submit