Overview

overview

6

Static

static

6

80c4a3b265...88.apk

android-9-x86

4

80c4a3b265...88.apk

android-10-x64

4

cmcc-sso-3.1.4.3.apk

android-9-x86

cmcc-sso-3.1.4.3.apk

android-10-x64

cmcc-sso-3.1.4.3.apk

android-11-x64

ipos_ii.apk

android-9-x86

1

ipos_ii.apk

android-10-x64

1

ipos_ii.apk

android-11-x64

1

Analysis

  • max time kernel
    2362711s
  • max time network
    136s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    20/12/2023, 03:27

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    80c4a3b265aae28e2c9c2a823e0a6db4d4f20513024b9bbcc08577a83d0d5888.apk

  • Size

    26.6MB

  • MD5

    7cb2987bc771ee2444359ec7db6919f6

  • SHA1

    babb8f68263db5f8d5bd46cd6dd3eac70c6af4b6

  • SHA256

    80c4a3b265aae28e2c9c2a823e0a6db4d4f20513024b9bbcc08577a83d0d5888

  • SHA512

    dd5fe2bf21e53651d9a1e734de66847eb16dfbd6357b54a7937a6deb3c2d1c482d4b4426b49ccaa9ff53415d20c6bd35bbb35659ee59fd074c01e1b39aad67fd

  • SSDEEP

    786432:1h0L4nkhOmGlmobUSk8RvhRK7hxCNVor5GpT7l3N:n0kkABmMbk8MVWRN

Score
4/10

Malware Config

Signatures

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.vpclub.lnyp
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4245
    • chmod 755 /data/user/0/com.vpclub.lnyp/.jiagu/libjiagu.so
      2⤵
        PID:4272
      • chmod 755 /data/user/0/com.vpclub.lnyp/.jiagu/libjiagu.so
        2⤵
          PID:4338
        • /system/bin/dex2oat --instruction-set=x86 --dex-file=/data/data/com.vpclub.lnyp/.jiagu/classes.dex --dex-file=/data/data/com.vpclub.lnyp/.jiagu/classes.dex!classes2.dex --dex-file=/data/data/com.vpclub.lnyp/.jiagu/classes.dex!classes3.dex --oat-file=/data/data/com.vpclub.lnyp/.jiagu/oat/x86/classes.odex --inline-max-code-units=0 --compiler-filter=speed
          2⤵
            PID:4362

        Network

              MITRE ATT&CK Matrix

              Replay Monitor

              Loading Replay Monitor...

              Downloads

              • /data/data/com.vpclub.lnyp/.jiagu/classes.dex
                Filesize

                5.6MB

                MD5

                c2a1d75aa2d9526aa70a7d3e5add67ec

                SHA1

                271b8179054810c8b37287ec140620f9f7f7b5bd

                SHA256

                e8e0d7db8521e02297a3d77216daeb57a560a6c8f4681eb31bb047d4eda62cec

                SHA512

                f5e418baf5c81acbc3e01d4f447362289158b0435f779a3667fe938f1c0b3a7ec092d1f9cc9c65af8198b0690c6204d4f39311d46e943cc685e5a9b47e3856ba

                Download Submit

              • /data/data/com.vpclub.lnyp/.jiagu/libjiagu.so
                Filesize

                363KB

                MD5

                acd3a64e22c56dc0628edd7615a74ab4

                SHA1

                ec22ef7fa9dca4b475af2724d483bda140370ca7

                SHA256

                c57cffd4175fcd618f29d48eeba1b8b30e2bfd4ce9e05c6c5b0bc4378914d008

                SHA512

                ec93027efd827742d3f9db70c4d4aba51e817191ff888aa2337939f2ce518b98f1c1f7ed3d49d25d3bff47738f68ead6348b1b309c54a17e18c4460cc2142e3e

                Download Submit