8c383c9b4e4b6840844803e85bd883898a6ad6134562ed2f52499f42c4ea0ad8

Analysis

max time kernel
2507713s
max time network
130s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
20-12-2023 06:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8c383c9b4e4b6840844803e85bd883898a6ad6134562ed2f52499f42c4ea0ad8.apk
Size

7.6MB
MD5

b72e36bebc62e948db59551bdfb1a939
SHA1

6cd6459612ef0c9e60e75a6f421b9b5ae39d715c
SHA256

8c383c9b4e4b6840844803e85bd883898a6ad6134562ed2f52499f42c4ea0ad8
SHA512

c8f505c9a5c72af00187043d1ff80bc1f51c9c888bd237b103f71789a48825b5bfa948967450169496d474eef7231550267bfef740848c301261a72859013f5f
SSDEEP

196608:UCspEaYsJb27eGYt4yxiCJ9ZZHp6fyBEgbrEINOB2:UZpEalb25C4KJ9Z9wyBxrE2

Score

6^/10

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.ifreespace.vring

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.ifreespace.splash

com.ifreespace.splash
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4261

com.ifreespace.vring
1⤵
- Acquires the wake lock
PID:4302

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.ifreespace.vring/files/umeng_it.cache

Filesize
294B

MD5
0e00d844ccdc1767138e610578a46a77

SHA1
5a787e3747594f173b6460ef0d24d1407be3d5fb

SHA256
26f3745fdfd31e261e8f4c1666b91fc1c6ed69c9527b17a9afb1f6996fc70e3a

SHA512
b5f389c63a6bad89b6311f265ec93906189ea565d24ccadc7d63104fc2d3dee4718a024a4f9e343a16900dfb6e38fe0da483ec195a47a892700c61b1e0e401e2

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
111B

MD5
47b09581504f8110eec4cf7349707dd3

SHA1
eac6d12b7cde86b9648720f0ec37b742ae9bcb67

SHA256
73becadc83a77544c41ebd74473adc87f59d8f30ced53084f54b5e9e27f1b0f0

SHA512
b9c35d449cea4eda0a3defd9d0679bb9e5bdc2114e3ec5a96d88942ec555070ab5baea73473ddfbd58e2b075efa96f120740c0036976c3e5b780b67b1e5ba571

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
111B

MD5
13cc601bc4f89ec9f5d60ddd6ae5ef60

SHA1
54980b8aafe19d57fa0e635b2009a4cab1f0a4e4

SHA256
07d5c2b60271cb6ae4508104884b4f11fa218526ad6cb625de00dc26ac827121

SHA512
22a959c3d2bee7fb8e6d284660c9f7ca024dbb940d678585d1bd574cb32853efda74311c9f5895912dcd77f6ad8799c54e41a0bc0576039586f9dc11588a82f5

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
381B

MD5
c03b2d8e290189824a2b0d7d0267f047

SHA1
9b491c335e078eef3fe1db2a4c090a8a897ac7dc

SHA256
f5a876746ee8a3f2d356593f6edac6d5f3c7f5684bc4b418adfda983d413fa24

SHA512
4af8def291187140a097890c9c8d62ece8bbbf74aff257238e50f4bafea21abe20da7f011ee1af65309dc0861d528a954a156977a93060c86f794d721d1b74c2

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
381B

MD5
62fc25d302c061c297c503bc1dd6c6eb

SHA1
9eab05af1208a6a1e48f6864201a84d14d050822

SHA256
da77c57a67635660d6f41f6cc0e622a1cca2772fc2475ba3854aa333b4ab76ad

SHA512
8ba373306c6505191b76f53b5b71e596497687ccf5eb5f4a2e9f86f7ef11022bb483e0fcaf7bac683bbf7e1889753d54a975193c495c82da5bd0df73e6070d1b

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads