Overview

overview

7

Static

static

6

8161f45488...20.apk

android-9-x86

7

BannerPlugin-1.2.apk

android-9-x86

1

BannerPlugin-1.2.apk

android-10-x64

1

BannerPlugin-1.2.apk

android-11-x64

1

CommonPlugin-2.3.apk

android-9-x86

1

CommonPlugin-2.3.apk

android-10-x64

1

CommonPlugin-2.3.apk

android-11-x64

1

FrameworkP....3.apk

android-9-x86

1

FrameworkP....3.apk

android-10-x64

1

FrameworkP....3.apk

android-11-x64

1

HandWallPl....2.apk

android-9-x86

1

HandWallPl....2.apk

android-10-x64

1

HandWallPl....2.apk

android-11-x64

1

InsertPlugin-1.0.apk

android-9-x86

1

InsertPlugin-1.0.apk

android-10-x64

1

InsertPlugin-1.0.apk

android-11-x64

1

TAEPlugin-1.2.apk

android-9-x86

1

TAEPlugin-1.2.apk

android-13-x64

WelcomePlugin-1.2.apk

android-9-x86

1

WelcomePlugin-1.2.apk

android-10-x64

1

WelcomePlugin-1.2.apk

android-11-x64

1

default.apk

android-9-x86

1

default.apk

android-10-x64

1

default.apk

android-11-x64

1

libs.apk

android-9-x86

libs.apk

android-10-x64

libs.apk

android-11-x64

Analysis

  • max time kernel
    2367203s
  • max time network
    135s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    20/12/2023, 03:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8161f454888d52791a72c9ef2a00f1186638fdc2320bda79a6808b1c5b4fc720.apk

  • Size

    19.8MB

  • MD5

    df1dd85cc5cc6fa69b00bb6c2ca8beef

  • SHA1

    f5322467a876eefe2053c0a4182604c47a8eccfe

  • SHA256

    8161f454888d52791a72c9ef2a00f1186638fdc2320bda79a6808b1c5b4fc720

  • SHA512

    9108e9ebbed5f9d6dbfe67826789737371f27f3abe4ae4ba927ae94b2d5080f7784406aeecfd08e719a9f4e461e202951dce5c8377740eef5eaa60e85414aef1

  • SSDEEP

    393216:D61WyBu55GqCzec2Yb484sdrwuzcQ8kcIIx3++GFfrPni4gUuc0IF:D6rBu5gzR2Yb4od0w8gm3+XukuH4

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.yx
    1⤵
    • Loads dropped Dex/Jar
    PID:4504
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.yx/files/dlibs/libs.apk --output-vdex-fd=50 --oat-fd=51 --oat-location=/data/user/0/com.yx/files/dlibs/oat/x86/libs.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4534

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.yx/databases/youxin_db_-journal
    Filesize

    512B

    MD5

    26f728a4f6552b62bd34940ec79ad29b

    SHA1

    16b78a89609198d4f92a35a7bc6f0efdc757767d

    SHA256

    fb5ee6dfbc97806d2b2848eb3c425749eeb8459fe947fde9530ca08d46dc9a93

    SHA512

    deeb251e98235d7a1c45d4f604123af8d9414c05afc2f773d50850464a20fd5b698855846b7e4f63a2185be09f6d79c447f4cfe8d1e05fbb8c9a198b73ec7c28

    Download Submit

  • /data/data/com.yx/databases/youxin_db_-wal
    Filesize

    16KB

    MD5

    a19c3ede1f96726800e37ec45feae544

    SHA1

    0c46cd1aae925ee4bb07dca35610fcd2c8c0ac42

    SHA256

    c600ce9fd81f1e501d09209a5425e97201174d6971c995bd64d0e342028ddbb4

    SHA512

    c00ca0ebe0511b74ed02671c519a68e27e337adb3c500a4f6f9cc9d32611efea6b8607a921ff96fb2fd4e579baccf03728cbd00c951a9c4e676ac09d7685c437

    Download Submit

  • /data/data/com.yx/databases/yx_new_messages
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.yx/databases/yx_new_messages-journal
    Filesize

    512B

    MD5

    c2859f55737845f920342e7e88640488

    SHA1

    eb4a6b1ccd346b3de17706db75125a27b41a72c3

    SHA256

    ae50e573980df1201092554d289ae2e9802a868cbd8166d7b28574385d020d11

    SHA512

    96423135f77075d3e009b72f153ba842f625575fb9c85e55d8599df97b5b03757cd344390b493a935aedb013de11892741d97a2141227655ee86b968b99e98fc

    Download Submit

  • /data/data/com.yx/databases/yx_new_messages-wal
    Filesize

    20KB

    MD5

    f55e56504b779899aa0784c5749b11d5

    SHA1

    db1329869796b9ffd9a9cfe4342b8f667205239c

    SHA256

    2a72724de88d3a489fc80f8ccb859a7f49dba814c53cbcdb333b7a9ebbc6cb20

    SHA512

    2791f4975428dbae0791e1339168927da11f1c6c7b542db6369d6154f6b1cb03b30be9ef7e672565b7958847d5a5af30599f24f3a76cfa326e4f21e69fb51963

    Download Submit

  • /data/data/com.yx/files/.imprint
    Filesize

    902B

    MD5

    25a74b839ece5f9186e8e732d184752d

    SHA1

    dcb151282ad03182cc67962285938bea8c433f66

    SHA256

    7b152555117aeccbcaeda3494277307297f18c4f7d433b175e7677340a045e1e

    SHA512

    6f43edd1e7071c992e1581b8aee7d634d2b6df7d34c6cc031e8a933ec78b0a662151cd6c5ea5d61ac510080095fd5241c285448edea305fb888666140f52ad44

    Download Submit

  • /data/data/com.yx/files/dlibs/libs.apk
    Filesize

    577KB

    MD5

    b4f679b77e031c9460d85ea26621fa12

    SHA1

    f6282849592141f1fd339c52ca7fb72824661f2a

    SHA256

    2dd853bfd99e7ef72c7a9aa20f7cca2cdf31e60bc3d791601fd66b12bbed7674

    SHA512

    9f70afccd0aeeef7b793419dfd6a874590b89abd94f5dbf3d5dbe40f908e82e1a74211100809f1d37368e278a246ffa8f372db98717aaf74acf1a69c8c4776d0

    Download Submit

  • /data/data/com.yx/files/umeng_it.cache
    Filesize

    310B

    MD5

    08795eabaea49ef81021746faa85fbf7

    SHA1

    edcd8eb29446d3010ff78b02bf22d9dfa9ef67c9

    SHA256

    72531df955efbde2383cd37ca3200e93b0f9494e4ad03362663e7d82f91d285c

    SHA512

    8d5379af1bd2367545df4394cdacbe1697516b91efffbd3a9fdd743c1a3566e92b1f3e9f05d985c62f29a0405302e5221e5d05265ca06eaba03f41d66f14db9a

    Download Submit

  • /data/data/com.yx/files/umeng_it.cache
    Filesize

    158B

    MD5

    eecb9007ef75e8e3ea53c349f2870e5f

    SHA1

    0aa747b575001acff9b767557d25278ced92f9a8

    SHA256

    8b5f03a3766077f8980f834430023b108c4f271f5462b9693ee1d9afcd128a7d

    SHA512

    616db577674bac0fb7e749c822b1c970d123c7104064195672da0621185db0a5306e7bc840466264060ead2a5e0b9239b10ccaa780f9f1d9ff7d1e84461e81d6

    Download Submit

  • /data/user/0/com.yx/files/dlibs/libs.apk
    Filesize

    1.5MB

    MD5

    a46b39351c06711a0edd1151185d5fbd

    SHA1

    4b7be61b5ef59b6b9491006971243fed7272231a

    SHA256

    16ee44f567153a3b561544a6e820aecd19d2723e52b0589bedc86ad8fb9045b7

    SHA512

    5cf577449cd0af40beed1dfe62193a15587932aabf0b9acfff7a4ba099af4b050a4d1a7db2195f3be5bf8d69ad184f4e8e0d20959aefd9ea48060757249f5bcd

    Download Submit

  • /data/user/0/com.yx/files/dlibs/libs.apk
    Filesize

    1.5MB

    MD5

    6c3d97eb58a7f62fcc14f94ffb4cdf55

    SHA1

    a108977830381f5311836a4d609e8218a8d86f43

    SHA256

    dcf42eb0ee8ccad293272840ebdc6640e5a3e9da782440ef8eb8da7d93387247

    SHA512

    3a67aedbf718662fd90c4ca3f5b33b7af3cd9cb2821d02aa1e25187ff10fce33ce6b34ca28398044a3edcac14737a3fc5b77a938575929afcaed6f56df456127

    Download Submit