89cb2a12b7378f63f9056027c49400e3bb073ec813729abbd6b3da5a665fe456

Analysis

max time kernel
2490234s
max time network
136s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
20/12/2023, 05:58

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

89cb2a12b7378f63f9056027c49400e3bb073ec813729abbd6b3da5a665fe456.apk
Size

4.1MB
MD5

580996fdacc486f4311fcde681d900d2
SHA1

9d205cf1d818bed8373397a35322a9218ed3735d
SHA256

89cb2a12b7378f63f9056027c49400e3bb073ec813729abbd6b3da5a665fe456
SHA512

fb413e000cb52947ee89592c1e66718467afcd3f85591042f680adb922b0ddc7d7d4597110ff9fb96d7750330f86d5a3dc5759a7335e4d9ffad7ab99fa4e3a90
SSDEEP

98304:9fVr9XuOOTqkWUrNw1JfMFlyJ+UpSj1VUrvkCd9F7kbhf:Lx+zT/WUOfyC/IVovtkb5

Score

6^/10

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	cn.com.gw.pipi_zuoyou

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	cn.com.gw.pipi_zuoyou

cn.com.gw.pipi_zuoyou
1⤵
- Acquires the wake lock
- Uses Crypto APIs (Might try to encrypt user data)
PID:4261

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/cn.com.gw.pipi_zuoyou/databases/downloads

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/cn.com.gw.pipi_zuoyou/databases/downloads-journal

Filesize
512B

MD5
27175efb4696c6008429b8064560a5e1

SHA1
65c9bffa76d91822bbe871e5c842454cbea5a371

SHA256
10e415ec530a649f5c205891f260cf4fcd41c0c0e72518146d8238bae5af9525

SHA512
76e35cea46f7ef7d6554846c2deac300bebc80176c421aea2552cada84078788aa079031813b5add1829470b22bc71effbdec83004818d7bdccc5dd652adc6b8

Download Submit
/data/data/cn.com.gw.pipi_zuoyou/databases/downloads-wal

Filesize
28KB

MD5
edd0afbbe49eb9b180c02d8a6ec4fdb3

SHA1
538a86f0cac2d7fdca2f0ca6bc9cc01107716654

SHA256
190c1c993d38f68edacc9d48cb703c38786d4e5ed731d39d950b77a5bfc28be5

SHA512
2cff3fea6645b73f605149d7aa42a12ec418a78cf81def8c12e84faf55e080e9b062d45e816a624a814b11b9e71649d9d22b856ef410a9e4d9605b84a477d922

Download Submit
/data/data/cn.com.gw.pipi_zuoyou/files/mobclick_agent_cached_cn.com.gw.pipi_zuoyou

Filesize
100B

MD5
bd61047ab0aaa2d9c248ee3205c48dfc

SHA1
44d59cc0d68e0a9db0923bcf256a722f18a15dca

SHA256
872e11a32e6ca62a567bce860123ad9e9f80b34029e0c46622441fd1d1aa0bcd

SHA512
f8b87dd2007d2d5510ca7b455f5508e2e013e17b678081d3f283ca00feb168da49a5dd06ff5669beb256006b01e0b6a2c34c4d41a3b3258ffbfd2109ed17fad8

Download Submit
/storage/emulated/0/Android/Package.dat

Filesize
22B

MD5
c3be9c7209cd25a66f89931875e46441

SHA1
c4ab31c94bd0d5e56725dfd114e0553b31826402

SHA256
86b5802d532b45857870841db219d0e9eb1a419040dcc2d6286e77c56de45003

SHA512
4b24ddca631a91838484a1a4ea909b27018db7dc6f407e6c6efb49a9db644ecd34e9def480d80f605d27dc4e1193b52d3707b0dd9d520632c12d54ce21126e73

Download Submit
/storage/emulated/0/Android/data/cache/CacheTime.dat

Filesize
13B

MD5
fc8b85caab63080ca0e8291b5b82c296

SHA1
5f0d28bb76304ca9a86b6c92e20b8711ffeb2a57

SHA256
52a5cb67c38630b8c9878630e91f7a872de9252604f55b0787f0c63839d6c797

SHA512
eb2ff2d3bb6019dc494445d3d97dbb19ad3c0ced94989eca7435a40909a7a73614d0a637823bed5125b94f17f730677a97fe68c7304ab7810ec3f65f6610ee34

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads