8c383c9b4e4b6840844803e85bd883898a6ad6134562ed2f52499f42c4ea0ad8

Analysis

max time kernel
2382872s
max time network
132s
platform
android_x64
resource
android-33-x64-arm64-20231215-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20231215-enlocale:en-usos:android-13-x64system
submitted
20/12/2023, 06:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8c383c9b4e4b6840844803e85bd883898a6ad6134562ed2f52499f42c4ea0ad8.apk
Size

7.6MB
MD5

b72e36bebc62e948db59551bdfb1a939
SHA1

6cd6459612ef0c9e60e75a6f421b9b5ae39d715c
SHA256

8c383c9b4e4b6840844803e85bd883898a6ad6134562ed2f52499f42c4ea0ad8
SHA512

c8f505c9a5c72af00187043d1ff80bc1f51c9c888bd237b103f71789a48825b5bfa948967450169496d474eef7231550267bfef740848c301261a72859013f5f
SSDEEP

196608:UCspEaYsJb27eGYt4yxiCJ9ZZHp6fyBEgbrEINOB2:UZpEalb25C4KJ9Z9wyBxrE2

Score

6^/10

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.ifreespace.vring

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.ifreespace.splash

com.ifreespace.splash
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4218

com.ifreespace.vring
1⤵
- Acquires the wake lock
PID:4314

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.ifreespace.vring/files/umeng_it.cache

Filesize
231B

MD5
49555a1e2bb9d1c83afc84e95a932e2d

SHA1
73886a7813e76ea96be81c8a4687218097109964

SHA256
328d4485b3ad4512a12a7342c3f3cb4a29282190014918b4f60471cbede96711

SHA512
66aba50c7c163f0d43208a30abc0957338a8d1a3b34e18670a7eef31fbecdc63f57101d4b5119c13dec9bc0ef2dda98e24819f03374bf6d6b7a71637913e9d39

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
111B

MD5
9a6a6b3f08d39626f43f35b342fa689b

SHA1
3bd4027e756ca1550c14d54ad5812dd09fe9fb82

SHA256
494fd111ed41163123d091a80e975fa1bc48e52afeb9bb4fa7eb98272a0ce6ad

SHA512
b48e132d36a585c61a543bc13019c1949aa966107a43580a4f1f402faa7c773363bf5410cffc05218db2aebc3d5b88c146a4665e7f2fa69bbe7716d8157a415f

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
111B

MD5
0cd3345c310fa1aa5971ff94744af67c

SHA1
d8b7ba26508ec9ee743f284273d39117ede19a71

SHA256
9221d0e9bc9a966172251408106e60a4d8384cf6b65a95e131faa8fc35a9b2df

SHA512
51ad45ee9b137618d5ad330a0ebe3a2a5d4713a847e5838561df19d699db755d599e47513c683c141a9480f732ab830dd171b61270f2defa2a6c3f3a070de991

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
408B

MD5
4aefc41f96ea39d4c962c4ba19d55f96

SHA1
46d79d690adf61a574e2fd7bfc87ab6175a8ff94

SHA256
aee99e1a93abb674d214c00bc28cffb3286b28d1c12d51b2b4905c54d7ea5bd5

SHA512
aea6717915c2220092514ecfc10f684a4fd26d2da8cb1bda42744ebcf0ba65f26605832578a4ea25337e3adab4665f7e008dd652bf003d148ded7761c0576f0a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads