89cdbc57a27602fe2df71401485afdf572a6f8b8f0e443a50f37b92da8109008

Analysis

max time kernel
2372658s
max time network
133s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
20-12-2023 05:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

89cdbc57a27602fe2df71401485afdf572a6f8b8f0e443a50f37b92da8109008.apk
Size

6.8MB
MD5

5d8a565fff39739e7248f09ee6eaf4cc
SHA1

dba6baf457919a6eef81503d226d03c1d827678b
SHA256

89cdbc57a27602fe2df71401485afdf572a6f8b8f0e443a50f37b92da8109008
SHA512

1aa856152db09a20b40a8246a7ce98140f2aa71e41803fa605effd71f9c2b94d9d4a9ccf72099f78f2f3ac0b81e83469450bd6f7b0065f0716f6a3e3b5345fc4
SSDEEP

196608:m6irK4bHYewV+Xa7VxtWA4DYMBEfsKmnyECcCQYn+E49f:Bi74ew0X+VbSFBE05FCcvwNM

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 16 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	4617	com.maopaoke.mpk6002746.sms
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	4669	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	4936	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	5208	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	5574	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	5871	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	6169	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	6469	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	6766	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	7065	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	7363	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	7658	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	7922	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	8219	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	8477	com.maopaoke.hsy.service
/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar	12653	com.maopaoke.hsy.service

com.maopaoke.mpk6002746.sms
1⤵
- Loads dropped Dex/Jar
PID:4617

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:4669

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:4936

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:5208

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:5574

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:5871

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:6169

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:6469

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:6766

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:7065

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:7363

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:7658

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:7922

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:8219

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:8477

com.maopaoke.hsy.service
1⤵
PID:8740

com.maopaoke.hsy.service
1⤵
- Loads dropped Dex/Jar
PID:12653

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.maopaoke.mpk6002746.sms/cache/plugins/hsyCore/hsyCore_6.jar

Filesize
208KB

MD5
f455edd0fea8c45f3504256297a4a0fe

SHA1
37f26952bbf66289be798c195f93462f8793b042

SHA256
5a47e4d7128bb4c77a81c162eea83d563b9fce483a84a26e706e782ee5255a5a

SHA512
9acfb9c6ee9e26e9b35cef5b81f546cdba8d15e589a7c2b360a25c94c5797deb680e76380ce11e40878d0759577093a5b9a85876c3d44b1b68d26e8569175d7f

Download Submit
/storage/emulated/0/android/.qianlong/data/mpk_context_v1.000.cfg

Filesize
65B

MD5
2c5560765e0bbaf5549694133e1ed905

SHA1
df8fb483e6e118e382c5ae23c472cd9e5a2f7491

SHA256
691f2fa0a39c61b7d900caab91c7cd052d65a9707ba08a080efbb9fff656ed54

SHA512
8a8d47df741e07a347f9e313564419bb6e7d99856ed3aa6c2cc46e7f17640adbaef8a5be0d461c8b9be09a4dbffe7ff89c2941930248c474593beec072a23078

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
d7a49f75d3e4041a0cbede7bc0e03432

SHA1
c367f9134368a48a1a41729a34c74d38c76ad9d0

SHA256
941fb61e1ab2ce1bb136c9c2f87f0e174894bc5a2c4058dd348cb39a172adec5

SHA512
75777d9cba011c7a5508037dcce4e624c7a892c82b9a6a00e0955fd8763a12a125564bc4c9973b2d2a1eec6f482c53f6767e2a66eeca69dfc6e676abf0d03874

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
0b5721ba6114d91378aceeb37726e77d

SHA1
f2c7ce8087f5cf390f2388382e7ba6b889fd41df

SHA256
3254b59934469be9e1e339fe6d4b865a1c95af488c17d4e4307fc70b3518eed2

SHA512
e25e49bfbec4a5584eb1d31b380b5719f896f7e18580ec0aceeea1ab2e1d08e0e89e31b08bc6b79aae30b96d33bb31321cd7600f6bddef7067b63698febc9065

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
17348ab54cddaaf5e764e1d0ff86058a

SHA1
c5d528e0f0b11037713e35e9a23f39e008762a09

SHA256
e88f044123961fc88a50401b15917beca0138c00723137c498a87c8675f22609

SHA512
eaab41f39c091a589e8b901380468b28d766df7df26525b90430370508f2d5fdf8d08d60c23be178a324bf0b86276c6b1337efcac10b1a84158a9db2f43003b5

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
08159d93961b46da3e62f7d10b0dbc20

SHA1
fe5144ad504fcb6b5f930eb349ce5e9a03ddf5cc

SHA256
461fdd3a8fade1f876a706da075e2edaab70ec3f9657a6e848d13bf53b749a89

SHA512
2fdaa24a478d90b83e56c725266f1e5f47d11da3c11a0c18f3c7cbe69e957465ff14d2cd58cab4a46b5530d7d0eebed4fe065c3f2b3b75446a531575b1b5d80a

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
6ff3def10bf391b29cd4c61ce4661769

SHA1
6104ba790b369930d0bb3ca8eea793c6e74e4625

SHA256
f0935585db1e0045d1d2c76d3e88bcfdd4270c881c712bb5e57ad05f3c42f289

SHA512
f3c562d8424b5f3eb50b797c20a0e746bffd2228cf4aef09110111e535a44b9a266e44a12a9b83ae1a2dcf14f4c170552273f18784fc84d3e08953ad74483750

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
007b48cb30c3c8c2faa5d5543d985620

SHA1
b45f652ff85d70db50a967f41388708aba506c9e

SHA256
b073b02cb75b39c532a856378ebbce0317da08b9227aa0bfb7ded54b6d054e3c

SHA512
6d500fd07eafacb9272ede06fade8e8db09054179487586a8bfe4ab0b48fad8288d8cbe06bea7379d9df2b33ad2cb3c7bbba14cc70c36ae47df361e766cec68f

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
e522f9c3cc456c899f8b7571a93a75b8

SHA1
b4620f4a3e8a4961bbf3df8e667ad04d4e471b63

SHA256
1d16790fa3f84dc73c1e82b4a0505de541b8166698deb1119976b7dae942bfc1

SHA512
32aae23c0218b9ad67695775f12f453d1c9223e2f03d7defc139a882c5f5724dfc8d5758e8fb6271cbec9eeafeb65dc918d63f8c78a5d3dccfdb5c9d108b241c

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
baabde949d28c542e6228697919cdbee

SHA1
1e21a1bc6f534b4f632e14a445ca54cab55d4ec7

SHA256
8fc2dcf0b4cbc38d0d18c047c6b5bce17147256ae06f95274218000b49950b5a

SHA512
ade677a0357b1563ffa610b2a23d81cf7c239d4f20b509ce646339004da2527eae0fbb83b95cde33f984742e4b0df3bff565ed72f5afe4a825fddedccb61deff

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
7adea9da20e926411a774a7ea9700a95

SHA1
e83b296296fb2cc6972fdfbf2a7a69c55ab1b8db

SHA256
8d5f9394de2f8d530067b1f347f97213a29e8bf0606d89545638302d613e3c95

SHA512
86d7093a9e325477311f93742d20f67fdb071548479bbceef0481242aeeb4be1bea4e2414a62e97c6c6bf5d786eb2c123b612c70d6d81ce5997886418a59a037

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
c71f362b908d0d51f0189b528d018180

SHA1
14e920242e9783ceeca67ec67d7c13fa9c8bc827

SHA256
6195455b2e206f3ee241d0a2a8a220d6c3fb14727e0196e7f2e0fabcf353d854

SHA512
45d8ebece90953bd242e68668a1ab68cf5e7590edc5e07fa640c7b07fbefc094d7ef3bb6f4441b69c3cc18ff598087f3889886a4cc0c66fac1355814cc3e0c50

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
52100bae863c2def9fb366553e374164

SHA1
bce68325a146ee70eb54c1bccc747946d5fb8fde

SHA256
06047500921367f4db6e044599fff747a2574d265681f4e0600f67b07b95072b

SHA512
6419ac051fe04ab6bcf97b6f74085377c503cd5a0d08a02eb2e407932c8401914a086350be322ccc806806c274afea0bc3d7c333ceb9b5c19cbb4c44a87cf2a0

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
91893e174f21c5e5b1629b6d8a97b2aa

SHA1
2ad7eefdaf4ac1e0732514e03123932dc1b52f89

SHA256
774e2ccbdc2c5df76578510e78daaff0f70582c8db3e2f22213131c6e8b98b30

SHA512
899549df70b48cf13bb06a657a89177abc4c50dfbbbdab2095601c226f2a69583bdc2c383052d6d2c654cb1bc98a21e56ee5d70804ec86a7c3218eea9fd49f24

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
6e3d6330ba5659ad707e953c5f51f342

SHA1
2946ed02a7d18380f36bf641a8faa491a365e916

SHA256
5d95238ff7d54a1d840fa153965c17b350cca6efc5ff9874567709ba32d3a74e

SHA512
77ae268b6ebdcb897338f765e9a789c0db28d5413f3b598dc54318a0ef2367c7db788868db97be16078959f36b7f16f26d4a1326ffcb98721ca1fa82b6372a3f

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
37639a5448e480cfd3cef56fc999f570

SHA1
f9bb33ff0bd31dd436596e7d5c7bfe58edfec980

SHA256
b502e81a1452e8f34c61caf29dfa0e05cf85b690d81c821eb13bb7c7aa4e46e1

SHA512
f70dfdc954782235195870a85442747d1dbda4490e62bafc82716afedf17073471f13ff53804960ec598032427eb8476874ff02338d435ce93741d5aff6904c7

Download Submit
/storage/emulated/0/android/.qianlong/data/mpsdk_plg_v2.000.cfg

Filesize
52B

MD5
b49055d9bd25d3f8700683593ed27e82

SHA1
372ed6a15ac6d8193ae8ffd0fc59832c030811fb

SHA256
84be2e4a2d9570a56d3640026f5fd9f6e2977f0189fc5192f677aa28ff22cdba

SHA512
8f5983fbee33a8271f42c1c74796ef0326fd5e2bd55415f5f76db7e040b0306e60bc1b1b2fd9eabd5d9eb77bb557acc4853088ae62f1cf72c006fe2cf8696e23

Download Submit
/storage/emulated/0/android/.qianlong/plugins/hsyCore/hsyCore_6.plg

Filesize
99KB

MD5
f3cbddb03a142f1200501258f79238ca

SHA1
0b015d86d13129e498ae5fccad8424c00e6a63e2

SHA256
cd0c2df45f197fca49524c544c93e88d919fd955fa974288ee6065eddfb29cb8

SHA512
8df0ce31b13402278ef9d166a8ae5ff79041bae00bbee38ef1d03d84eb4281cf519ee34e1c8a475e4f0fa07890fc2323e80282fe0281389d9ff73ed814c8df39

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads