8f46b045209a925fbd6f38ca69f6c43df4e153ecba4cc35210b498ec508d26d1

Analysis

max time kernel
2427179s
max time network
159s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
20/12/2023, 07:24

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8f46b045209a925fbd6f38ca69f6c43df4e153ecba4cc35210b498ec508d26d1.apk
Size

20.1MB
MD5

de4c9f77a8f58b72d824197b578b5638
SHA1

e2fc03c1b6135765aa0c033c429c1ed14a6cbd00
SHA256

8f46b045209a925fbd6f38ca69f6c43df4e153ecba4cc35210b498ec508d26d1
SHA512

81d4c84318b0db22ecf990ef3a3aa51fd339c3921c5f5ef238aaa4623877e721357dc2618ead1447d80c1b82c84b88419a9f7fb028dbefb0b9dd2c6ac6b9d420
SSDEEP

393216:J17C/zDYsvH8/y6k/I1DfeAevF8FW8DFE+EXjyE7uYTzdK77E:77Cnnn/Ixxed0TjUtZXdK7o

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 4 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/data/net.duohuo.magapp.bblt/mix.dex	4628	net.duohuo.magapp.bblt
/data/data/net.duohuo.magapp.bblt/mix.dex	4628	net.duohuo.magapp.bblt
/data/data/net.duohuo.magapp.bblt/mix.dex	4628	net.duohuo.magapp.bblt
/data/data/net.duohuo.magapp.bblt/mix.dex	4628	net.duohuo.magapp.bblt

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	net.duohuo.magapp.bblt

net.duohuo.magapp.bblt
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4628

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/net.duohuo.magapp.bblt/mix.dex

Filesize
292B

MD5
63f77f99bd2c2b772a479923bde11974

SHA1
c7632e7d301e4463fafce85f84e9c3d7da3fdbbe

SHA256
4c76a3af64cdd2f8713ffe2733dea50dbe714d0ca41c17d1847ee5b62a7ca615

SHA512
3aae4a89d1ed51fdd911cb367eb10afe3c2264e4222085891b18a60d5412f85d10bf5c8f3c6642db70abb9aa42732bac5c42c42ee32d587100f53c21b5beb16c

Download Submit
/data/user/0/net.duohuo.magapp.bblt/app_bugly/rqd_record.eup

Filesize
355B

MD5
603ae201b0fef718cf34051b0d2e0c39

SHA1
f32b575d73c104aee61e56762a97e64da496bb9a

SHA256
0317b38937d2005ec65bab41e02066d4610d9cb759859ffe21287ae3d0456aca

SHA512
3b6b61bdfdad22644e540b2083408ac857a823cdc121bf6afcb7d727eb8287a5990a06167bd311e7c9e8d1a621bd5ff78c9829fda77527b0cc7b6cd08e13e2f8

Download Submit
/data/user/0/net.duohuo.magapp.bblt/app_bugly/rqd_record.eup

Filesize
2KB

MD5
7d678b5aa7b9ac51a3ca29c15053223b

SHA1
65b7602a755e0b58509ecd2569803b47b28cbfc3

SHA256
5b16ed65b62621fa5f5070708b85343bf169ed6d9a1e40a9382a2119047e9506

SHA512
42994ff36534ad975ca719c2743b5cb9657b71489ed56f4a30806cd87d2fe559640486299b85be0470f9e8ee1badd849cb46b47425e6da8e4cc7381adec8cb18

Download Submit
/data/user/0/net.duohuo.magapp.bblt/app_bugly/tomb_1703234224137.txt

Filesize
56B

MD5
bd0f8f8f3ad93fa07623422ec6e72003

SHA1
c3589295e7a4ddcf35bcd7a2c13bfd381783821a

SHA256
7fe875398dea7537a57a77c5275cbc8647aaf63ab6fd9148443b65df2e1d0647

SHA512
2ec3e073321262b667afbf98fe4e9f51e4c0c58baaad506b120239031f10699d699b94470bef13007bd6199df3d3b03f1eaf147c0cba5178aee7e267072b1c0b

Download Submit
/data/user/0/net.duohuo.magapp.bblt/databases/bugly_db_legu

Filesize
60KB

MD5
49a26d3ad0993e8ae2f81a273a8bac70

SHA1
73c8da7781bf92c8e1364208d63427e66e06e753

SHA256
d99a7c9f1e2304894cd96b98cb0c4075b91843a2e09f0922cac4ce801bfe2a4e

SHA512
3981a2655ba2e8ad34592a1b56d6d4ca17c192a0efe36d37e41a14843c4ab1517922548246ad387fdc05c75fde6efaa29a0918ec024483e73034a56581114efc

Download Submit
/data/user/0/net.duohuo.magapp.bblt/databases/bugly_db_legu-journal

Filesize
12KB

MD5
b771bf034d04f99bfad440133b32c728

SHA1
6a3a6a4e542ddfc69bf571129d5b4ed9a7949502

SHA256
630cbe50e634db4d5979fe581c5d31ddef2bbcab6ee929024d88dad57f643337

SHA512
f5c60e9c63d9f99ef2386d6d74e9f118b84f6e8cc72b7550926b8948b9a6acab9808c410576525de343779b8bff18635e39818051eceb026c7653aaf246b8986

Download Submit
/data/user/0/net.duohuo.magapp.bblt/databases/bugly_db_legu-journal

Filesize
512B

MD5
d75aa7a0e5a54b734f97df8fbdf51c4b

SHA1
17d951b08f65db6eb13e264aa5dbade828619fa1

SHA256
89193b32ab58288e0602a48a998494e178f0e23a3aea05d36deb375a5bf08cd1

SHA512
763e999ea31c57be772dc92c537453cd12cd79f9937922e4b11119c751a8c1e4f9e2eab7f340c07f25f51bb82d1263b5116dff4244893d40dcc2adeb6227ef4d

Download Submit
/data/user/0/net.duohuo.magapp.bblt/databases/bugly_db_legu-journal

Filesize
8KB

MD5
213e85f582414ca1c991fd2a5a2f69f7

SHA1
30472b00c77eb1b225be9b6f6e3171577100a710

SHA256
f28787ecb829522aca29316a3d8b72427365292e7db70e1dc64f715346e4f934

SHA512
c54f8b20102d8fe4cb5254e178a6622a3dd358fc392dc7403768cdade03fbf6e6f86a24a75f6d571c5bd90dacd1928a4016b652aa93bf78d41f5dc4cbb8f1873

Download Submit
/data/user/0/net.duohuo.magapp.bblt/databases/bugly_db_legu-journal

Filesize
8KB

MD5
de6809bedbbbce39e1435274cac4a44f

SHA1
5258393719cf5c86fb8a08586375c43479c2d7c0

SHA256
78b2be710c754ba04a2e47706f7ae30e2d636996c5290d037a0afe16b4941322

SHA512
56773d79110a484e4b9b34fb7a0ab002542616a3eea0a21d6e495cbe0291ef928965a7d0150d8b18f3e100a463f508f0e2bb7d094efebb48d6c13a784e759b3e

Download Submit
/data/user/0/net.duohuo.magapp.bblt/databases/bugly_db_legu-journal

Filesize
8KB

MD5
f1a545d30dd9a309c0623df64dcdfe3e

SHA1
b87c9625679c6d17b970c24638a6a5b388a8f62c

SHA256
aecdf72a03afed2499eaa40e4392551dcd78fb0def297c660ba13876f17b6d3c

SHA512
4d1ac91b2a4f5b08bcf2cddd49f48f5a0e5ab71e9c9653d931ef761350cb596cdef36f91f847bc20422d30c3154c0744ec3f5e0e70a29101742c74795fd103a0

Download Submit
/data/user/0/net.duohuo.magapp.bblt/databases/bugly_db_legu-journal

Filesize
12KB

MD5
2f0e57af76143f920caff8fda399a486

SHA1
3f0b8339cb9de807893f600924323dcc829073df

SHA256
fae7f374f7a5d7c830778ca59b5d1e96c0b20471d737138814c4aff3cdd24387

SHA512
dd7d820113666ea5d66871d3593767eb416101fe19a3451ea58da01bd6e02bdf7adac7687415b4d5577395e0541f3d2095cab0391f91cfcc0cdda05136adec2c

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads