Overview

overview

7

Static

static

6

816e99ebff...d0.apk

android-9-x86

7

816e99ebff...d0.apk

android-13-x64

7

Analysis

  • max time kernel
    2342509s
  • max time network
    144s
  • platform
    android_x64
  • resource
    android-33-x64-arm64-20231215-en
  • resource tags

    androidarch:arm64arch:x64image:android-33-x64-arm64-20231215-enlocale:en-usos:android-13-x64system
  • submitted
    20/12/2023, 03:37

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    816e99ebff4cb8d63d2e6490f005eda26843adc954b82d231d490e5525cac3d0.apk

  • Size

    23.7MB

  • MD5

    92584eff03e6f2b1149812f0acd13833

  • SHA1

    1ddd69940de089573950cd0ad631218470d143bd

  • SHA256

    816e99ebff4cb8d63d2e6490f005eda26843adc954b82d231d490e5525cac3d0

  • SHA512

    1b6dd285da8cd0859cd335138ecd05de1b356a4408d892de96663f7892628e69d156f3952ab5c3f107b3c3b290d6edfe597b129d2bab2d2ed1163177b09ab351

  • SSDEEP

    393216:S+ScCR/cK6w9d0e8GOY32sUnojGptagBttdjcErLN7P9zuGqkR05b9s2B69cXT:uxb6w30e8GOJ7nojGpYgBttdjfrh5zDm

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.yuexietong.teacher
    1⤵
    • Loads dropped Dex/Jar
    PID:4281

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.yuexietong.teacher/.oabugaij/.fsgkea
          Filesize

          1B

          MD5

          01abfc750a0c942167651c40d088531d

          SHA1

          d08f88df745fa7950b104e4a707a31cfce7b5841

          SHA256

          334359b90efed75da5f0ada1d5e6b256f4a6bd0aee7eb39c0f90182a021ffc8b

          SHA512

          d369286ac86b60fa920f6464d26becacd9f4c8bd885b783407cdcaa74fafd45a8b56b364b63f6256c3ceef26278a1c7799d4243a8149b5ede5ce1d890b5c7236

          Download Submit

        • /data/user/0/com.yuexietong.teacher/.jiagu/classes.dex
          Filesize

          5.1MB

          MD5

          0f8b1703495820fcb241ff2cec5ae23f

          SHA1

          ba022e79ae23d211690000298825ab23a286931c

          SHA256

          0237237d8fd8599a62e62e746cbb70f393e5dc1317c3d1e30d99670aa6769908

          SHA512

          04b11516a9250260bcfee0c5c0f87afa3307b627d560b9368bf226ecd24052e4caea3e75aadd71767b53dbf26806ce358df171d710520c0d89bf670704b17ba1

          Download Submit

        • /data/user/0/com.yuexietong.teacher/.jiagu/libjiagu.so
          Filesize

          558KB

          MD5

          98736de515958ae37ae93a0a0e997098

          SHA1

          72d0f9d43f7c9bdc9f19d13834c0872f5652c0f9

          SHA256

          335091dfc73a9f792cb720389c5d94eb6642764a38d70d4b6b7a8afd34038421

          SHA512

          cc4974ce398bf7f4a20160ad30e4c4b5821ff0d7f2cc9fa0aead73ddc036585266edf429add276b53d6db8dd24a344d709469b9c839451deead6b621e70c92cf

          Download Submit

        • /data/user/0/com.yuexietong.teacher/.jiagu/libjiagu_64.so
          Filesize

          569KB

          MD5

          64f0958be2a8e6862b90faacb40129e0

          SHA1

          389c618137db70dbf84adffcdc3c5d4850a5ff24

          SHA256

          4f38bee50f32a8c64f4f9c671b7cece34d4a1cb926087fec8ef505327d4edfaa

          SHA512

          793cb7104013b7841c38e4aa14f4d9246aefa61aa9803160e6398c4115a2df5c6af304bad045c687467547deaab3bb77272a675b0d673f81f2df3dee2d1fe94d

          Download Submit

        • /data/user/0/com.yuexietong.teacher/app_crashrecord/1004
          Filesize

          228B

          MD5

          10781fdfe7b25da814ea06db78b48a93

          SHA1

          5a4a71ecbdc1c84410da7588615a9b9bbd5b7363

          SHA256

          f5416a0a3ba15fa56c1110ddc5e6997621ecf82b91252c96c10e573770d7067e

          SHA512

          72a78ac168db40251abd501da4e16ca93bb14be67f705403c27d82e409a1f53ca964f0c762d571ccec27b35ac3092382529ca11c424b6150360a25b96a51bf10

          Download Submit

        • /data/user/0/com.yuexietong.teacher/databases/bugly_db_
          Filesize

          12KB

          MD5

          edb655088d1ed9f33f9d0d499b7a3ef5

          SHA1

          565c4f4e43179dbfc285cd6331dc8ac75a901af8

          SHA256

          bb9e45aad35b43e895393e7a66e4ead6a5f728f90b7627e3c741d391bf65d4f9

          SHA512

          98cbf923880de82921c38973fbc6d711dc39884428d1eb4ead33658a5a7f163734e5121823d5b043ca44554d19c5b6f966674ac7291513944a94cec97d5be599

          Download Submit

        • /data/user/0/com.yuexietong.teacher/databases/bugly_db_-journal
          Filesize

          512B

          MD5

          346db2e441eb48e481fec1f68bcae0fd

          SHA1

          8f3758e025d1e9781e860358f62ada95d7d4ff7c

          SHA256

          3cae1250900971d4a9ce5416e86247b2f90b79154971ea09d8a86e6c821967f9

          SHA512

          0b99dc0d7bcc08d15e8c1b812dc47c7ced0621fe3125bedeb4c56788ad359c18cf0247e599bea960972ad79685c360a0d8b872cfe2c93a0992ce95d11a76eb6c

          Download Submit

        • /data/user/0/com.yuexietong.teacher/databases/bugly_db_-journal
          Filesize

          8KB

          MD5

          c34ec2875429dda10e32c1dd9b53f4b8

          SHA1

          0a480ad8b11fe8cb811a4608e6046ebab21f96f6

          SHA256

          8d7ccb8e093aadce466e9bdce466b3f204df9667fe6cb8d2edfb9da38a3a14d9

          SHA512

          79a39064ecef982665c61e6506cf919bb57020b00c23ee21bd4a1bbb3c2268ab25bcef4ff57109ab332ebc158c9fe24712f6cbd6059ded27ecbf08b575df4d82

          Download Submit

        • /data/user/0/com.yuexietong.teacher/databases/bugly_db_-journal
          Filesize

          8KB

          MD5

          9aedba008d0dda719ff4e13f0ee5c08f

          SHA1

          b8a54544605a5c4a3edc141e77a8e10d281078fb

          SHA256

          3616896899bb227275d69969dda23285f143235f250a972a4055edf2dd759e56

          SHA512

          4a4dbf970e75677841548a8dc0654b1bb8cbd4e85e178810fd97858f5a40b75b6e2dba745b9db4d850647a434054ebc9dbbfa4395889bbccf7df28bf54d6cfc6

          Download Submit

        • /data/user/0/com.yuexietong.teacher/databases/bugly_db_-journal
          Filesize

          8KB

          MD5

          39de17192a28e0abad45f74b596078a5

          SHA1

          23833afac069c7d7eb2a2eeacaba5675f4bc7a0f

          SHA256

          e30dd34e98f5043e8cda443f616a5594df73c5074a5dbc74441fa3bc0bb5437f

          SHA512

          a339ec35df806bdf212c364663214756aa6528af080040a98abbcb07f0d97a6278addab369f97a34e20ec4e634de8810245b868b5f6943674be7d3ee8aa0ec1e

          Download Submit

        • /data/user/0/com.yuexietong.teacher/databases/ua.db
          Filesize

          12KB

          MD5

          d89acee9fbf356695093f2724f643ac8

          SHA1

          22d2f857dfd38f9df961569715333e53fe64ee36

          SHA256

          4e1313b40c676cdc9653aecd74da0f6212f5d84ef960e1e8bc249811bdeb5783

          SHA512

          66448f754e7932dfeb98d20cddef9fe318b3a3aff17c2c47d065db78c5f830208febed67faf30a41977bc62cbd5c7a6e8205da054ff296843a75ca1b463f420d

          Download Submit

        • /data/user/0/com.yuexietong.teacher/databases/ua.db
          Filesize

          32KB

          MD5

          149de2504c2e84fcac815cb178e95e05

          SHA1

          72949ea3640fb5dadee52603849256b83fe574aa

          SHA256

          65dba2a332e711df5d2c921379fc9ea03bb50d50c80c8fa37380f4fa0139f67c

          SHA512

          b8626f594ae2cb8e3b9767aaedde60a978f955a0f5bcfe82de9c320bfcae668abe418b0ffc89dedb536a460405cb700a3fadcd340b01b3ea1c3a95e749d9db5d

          Download Submit

        • /data/user/0/com.yuexietong.teacher/databases/ua.db-journal
          Filesize

          512B

          MD5

          87067bbb7712a46b97195a0324c4975c

          SHA1

          92b4f7f23e0946461f2044e2e1063e558f9b28c0

          SHA256

          58f996d6179d102c3352a341806e2cb630ef1744cc8d4e1a8765083fd32a945f

          SHA512

          9e31e4ab9eeb55a5bc3c00f009f28b82049490523bf07f9b56ad5a292da35ae6ec0ecbc9dac48c2301be0288c03bf7cf111e6f4a7a70e26afb8d6986d3936272

          Download Submit

        • /data/user/0/com.yuexietong.teacher/databases/ua.db-journal
          Filesize

          8KB

          MD5

          17fdd79a0bb9ba7a148c5af47b8725cd

          SHA1

          37bf9ac6545e1a0ef26d910aa3955c1a640e495f

          SHA256

          0e5b77a2b05047776d4f2853d665f574707d2af27b2cf7b954108ca01602d3b1

          SHA512

          5f290699ea5bf6ff1021865fa30738c5aad578a7c4e3f6c2000c2d3224ecaf82224dc5948196c61cbd57016f8c53815344fbdd3311e8f34b4524e2896e852b9d

          Download Submit

        • /data/user/0/com.yuexietong.teacher/databases/ua.db-journal
          Filesize

          8KB

          MD5

          6b8a920a37518889a99e71c2b7a2b12f

          SHA1

          627d4538b90acf46ca4acdae224aa72bbbada8de

          SHA256

          c1f2a5fb49fce88884d2b45d314a1e24065486606b82eca816a409eee5819208

          SHA512

          d63f5b7b3c6fd50a8b3d5835b2ebf95ac1c63467c3ee164f40a7a5433698e832ab091fa1b8de600b0b4907e7d210eb03d0918a95f387d23a26f17ad83cf2ee23

          Download Submit

        • /data/user/0/com.yuexietong.teacher/databases/ua.db-journal
          Filesize

          16KB

          MD5

          b5ca94e309f62ddf3374406a0c4cc723

          SHA1

          cc6d6ac9ed3c39e184ffad9b2c2a94800184e665

          SHA256

          28a3b59cf0aeb3ac813f020f8b3b3c3fe0039a68700b3a3565d1d89e75654711

          SHA512

          d46a1a447362237a8c52728999f69ef7021c4ad6fa3260976ab62ca3905818c072202589e275f430566f4d3aa1671d60a65dfa6802cdcf0849f7299e43a378c9

          Download Submit

        • /data/user/0/com.yuexietong.teacher/files/.jglogs/.jg.ac
          Filesize

          32B

          MD5

          523810b024142d3f6faadf4e0293ee54

          SHA1

          005b336ee00d5d09f6f08c1f0811822d8f09c1e9

          SHA256

          8f6646a6c30a16f9ea61b55c1019e16a0bd9143e3da9e06dd828e4e3163a2cea

          SHA512

          7d12f307418f2fdcd30f588eb52a16261a0bc864dee51a211470fac55bb36eef0cf884e1ce9c728f68adf3538401a84b375d7ec33a13e46983c1868922ff2988

          Download Submit

        • /data/user/0/com.yuexietong.teacher/files/.jglogs/.jg.ic
          Filesize

          32B

          MD5

          3a455c0703faadd2812af8e78f0aa612

          SHA1

          efd4cf79b61c2f7f21d46326493c82f804c16b88

          SHA256

          ba45fb82f8e1c15e45f20f10d6945027b3bd1def4c6295c7cea7dd921062be9d

          SHA512

          81840311fda67c610f5a0781cb147a35b69d4269d15808b7612cc557624135b07ed4a47efb4300e265a56685e92eac913d0aeda2016645e688ce36a7d768dd33

          Download Submit

        • /data/user/0/com.yuexietong.teacher/files/.jglogs/.jg.rd
          Filesize

          32B

          MD5

          0f8ad32f8cfb8a28a357d4107bcd2568

          SHA1

          8aec2979dbb58d40a3570e97593c29cb6a71849c

          SHA256

          7acd12401ba7f19f2d04758e5f03cbec47776551ed7c9ddfac96d1dbc41284f6

          SHA512

          a13c83f4d1a9869696abfcf450281407f070eed6421c19a92135a9de98c9b7244212f7ea58914ef5e217e99b412268902d263621764d4d020e74c07a201fac22

          Download Submit

        • /data/user/0/com.yuexietong.teacher/files/.jglogs/.jg.ri
          Filesize

          307B

          MD5

          1aa45ac90bc1d450422eb9d111fb918c

          SHA1

          d8fc196e0c09d77fbbfd2bba80559654d0dad09c

          SHA256

          eaaebe5d87b1b946ab96df17aaa3625c052b2023492e764e5e8338020aa1b21b

          SHA512

          37856734ef4c902beb1348a3855cd1fae7256b33f3bba97761469f58c7060765baad561bdb13217f82ac6f0150b8134bfe034f825bbebc63f0b1cc9bdb5b2ef0

          Download Submit

        • /data/user/0/com.yuexietong.teacher/files/.jglogs/.jg.ri
          Filesize

          314B

          MD5

          e87980a0a63bccfb337ca67b570bc548

          SHA1

          0bf71fc5efebbf370b6e17dc54a369fd29d164c4

          SHA256

          d89174d9cfbafcf63aabdc3480f96b778c1bf602310f6ae4c87b70a38e6b951b

          SHA512

          bf79ab6a45aefe1e460d3d2667021863269cd71c14a792f6867326b333d4460a69aa8552b521bc6e3ee12328fdcd88a1443e9c2c468998aeda211c8334b69d1a

          Download Submit

        • /data/user/0/com.yuexietong.teacher/files/.jglogs/.jg.store.report_pid
          Filesize

          32B

          MD5

          d5ffd511d4402247ce0757a87a5a5b12

          SHA1

          83e853c4bff9c6311f0d9c0f5cb7cfe246f1eb98

          SHA256

          276076418e342e530a92fa164dc6af7ed26f3923b18948f501164d87800555e0

          SHA512

          596ebf5e037556b22975fbd95a630b510f4d003e72603b4e15404e2d836e60535602560fd992e2bb4f5f325084defcb124884d200bc8c96e87790f593d6f084b

          Download Submit

        • /data/user/0/com.yuexietong.teacher/files/.jiagu.lock
          Filesize

          27B

          MD5

          09313390a3ba30b9efd7ad43b030b3bd

          SHA1

          fd77bb47fd853e99916ec140398e35fdc05504af

          SHA256

          371fa68c5bee74a74e61cc38b619b8b68defb0b971501c4420c689223ff9089a

          SHA512

          5b8287691afaac562e5a929d9eaad8ad3c492ade0c5fe45e7e92c0878f5ef29809db3eda55c17451744ce7ea7c7c7cce35a70ffdcc7b82e1aa0833083fd590e8

          Download Submit

        • /data/user/0/com.yuexietong.teacher/lib-main/dso_deps
          Filesize

          416B

          MD5

          ffda711f563b95d7cc47283ef2aa6563

          SHA1

          cdb1a4ea4d3c25997fadf13c46a4cf00c3bf52e5

          SHA256

          6c0235efe358d46e96294fbe3b336df7b3347ae7e0b53e52d4800a3a2a54f03f

          SHA512

          73cbc1465de9d88237315519aa34c0b63f86e2580215ffe03318329e9b7af21a030c17b54bb00e94804cf2e709585e0f66c38991aeeb4b7438d769f2e3f47a53

          Download Submit

        • /data/user/0/com.yuexietong.teacher/lib-main/dso_manifest
          Filesize

          5B

          MD5

          c06857e9ea338f3f3a24bb78f8fbdf6f

          SHA1

          c5a0a2529d2deb60fec041b4fbd722a2ebe31702

          SHA256

          957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

          SHA512

          29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

          Download Submit

        • /data/user/0/com.yuexietong.teacher/lib-main/dso_state
          Filesize

          1B

          MD5

          93b885adfe0da089cdf634904fd59f71

          SHA1

          5ba93c9db0cff93f52b521d7420e43f6eda2784f

          SHA256

          6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

          SHA512

          b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

          Download Submit

        • /data/user/0/com.yuexietong.teacher/lib-main/dso_state
          Filesize

          1B

          MD5

          55a54008ad1ba589aa210d2629c1df41

          SHA1

          bf8b4530d8d246dd74ac53a13471bba17941dff7

          SHA256

          4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

          SHA512

          7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

          Download Submit