88e1a438bac9a2311a3cc397d0b9b6798e19ebb829b6170a3e67edd75fdbcb14

Analysis

max time kernel
2459893s
max time network
138s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
20/12/2023, 05:42

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

88e1a438bac9a2311a3cc397d0b9b6798e19ebb829b6170a3e67edd75fdbcb14.apk
Size

5.2MB
MD5

ee82d5b29a9967daefc8b5f9d9f8de86
SHA1

e549a48438085be0c91947470306b3bbd97f902e
SHA256

88e1a438bac9a2311a3cc397d0b9b6798e19ebb829b6170a3e67edd75fdbcb14
SHA512

d2556c72c7f7622833f1c88ae485d10255580a797c681b23c7a117a81d18d0f841e93d65955ab383bcdfdd12641e4e10cc25ddadb45b868f57dcb72e5ac24171
SSDEEP

98304:V41nGLiNsTeJ2dz5YluKU9k+452206ryzU8tG6r87S06rF2d2GD2PqCXoCX:VUnGistdz9KI/q70TGg0Yi28xGoCX

Score

4^/10

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.csgbb.guandu.manba.tyy

com.csgbb.guandu.manba.tyy
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4239

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.csgbb.guandu.manba.tyy/app_crashrecord/1004

Filesize
235B

MD5
07b463dc3dd921acf277a79d3820bb92

SHA1
d88ae310e6000241a99aa46e6c0d33d15e902a8c

SHA256
cb81102a394ebd4f33b09b0f6169fe1eedd5176f4b429f7a902e03397f2f5a7b

SHA512
4492325dcb7ddf4760453205211b16342da21ab2c8204f43d40dd864a38ecf2f339d28706c3252b955aa2276fe871235c53cf513a7d43d6b9e17e131fadd7cf9

Download Submit
/data/data/com.csgbb.guandu.manba.tyy/app_crashrecord/1004

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit
/data/data/com.csgbb.guandu.manba.tyy/databases/bugly_db_

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.csgbb.guandu.manba.tyy/databases/bugly_db_-journal

Filesize
512B

MD5
12974fd4e676b80dbe8bec5cae8fbd7c

SHA1
eb87f6183c17bb17bab7021c1cfd2396178b5620

SHA256
775624799b22f04e01ab54cc3c002443334bfb7f5bf14119977535e65258bf46

SHA512
d51c155408ead7217cb1f15e0421f006161b52e85cf78bf3571685a41bf894f5f351619228abcb0c8bad883e05e7a4bbefb217da3b03a13644cda6c9569df2fc

Download Submit
/data/data/com.csgbb.guandu.manba.tyy/databases/bugly_db_-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.csgbb.guandu.manba.tyy/databases/bugly_db_-wal

Filesize
68KB

MD5
c5323a8c939392310937e2c09cbe03c8

SHA1
d81934442955e88828a6c04d2fb6e9c6bbdb92c2

SHA256
b176c66fde857a76419b61bda6e4dc47864e6221d96c350c69d9ad98385407a2

SHA512
5d63842636ada0e6d3238532945da63dfcaacb50be856d5356902fe450b695645f237b9f031b9667960f2704b6a90de2957693af3f89b9a57cde43e1a10eaf36

Download Submit
/storage/emulated/0/UcQkDir/qk.dvid.txt

Filesize
65B

MD5
de6c32002aa082cf39f6f54e8f2cc1cf

SHA1
0a5d839d522ce0ccf6f10efb522720e9c4c3d35d

SHA256
397f009c1b23d5d4b74bce667ba214f50892b1f75bdd080ce144f24498b40d99

SHA512
b1c6fff19ce580fdfaae0d5ae83af232ba62ddd208334e237add26773dd8dad4ace1d8c47b3f85a0ca06a1d54ed6280212c0d2e61f411058e0042964f332d883

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads