8cac2e2295b1a7b59ddd1c5bd4fdc3c014492b56b32e7da0315ebcb9a09a2fea

Analysis

max time kernel
2489978s
max time network
130s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
20/12/2023, 06:45

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

8cac2e2295b1a7b59ddd1c5bd4fdc3c014492b56b32e7da0315ebcb9a09a2fea.apk
Size

19.5MB
MD5

4f2bedbdd993a38763a1c625a2b453ff
SHA1

39c6c93ec312321a589148a850d86062385aa943
SHA256

8cac2e2295b1a7b59ddd1c5bd4fdc3c014492b56b32e7da0315ebcb9a09a2fea
SHA512

2e9d5afd4427f42e814f7b8f5951c050979313381a0dacd14b2c62a72814084fb02fc0eeb56a53025278d6e3b256dfdbcc92665b9e777545bb89cc06b0b070d6
SSDEEP

393216:xPIR6q3KSb5rjY57ar3th3HG4PIR6q3Krh2qnuFIUhO0h665EwZ8N3/u4nlC:xPgE7Sdh3HjPBUqnuyUh5dh8Bnc

Score

4^/10

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	xpt.com.qfz

xpt.com.qfz
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4267

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/xpt.com.qfz/databases/MessageStore.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/xpt.com.qfz/databases/MessageStore.db-journal

Filesize
512B

MD5
4c20a41f81a6600130f57200e14f2304

SHA1
dcdd0cfe9cb6578f40d5eee710d2de8e76a1798a

SHA256
3f9e87b20e921557eeab7d8349e39a0584266eccc883609c69f20b11971cae6f

SHA512
f8930f4b412e038132198a2f11f3b0e62a09d43dbba43003c544fec31b2c1d43a417b1c9b6afee48594671a1c53f2c9554e693a0ad1af9d30f9225708b902430

Download Submit
/data/data/xpt.com.qfz/databases/MessageStore.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/xpt.com.qfz/databases/MessageStore.db-wal

Filesize
48KB

MD5
8abbd80ac2549a4a943a709d647aa7ca

SHA1
9174f2fc4a05e930290c60c39d42ae5e048636db

SHA256
377f2b1521535844e47e6835aea467ae40429caa5564ca577e238bfef74e9296

SHA512
d0b68b592ca69cef26fbc84a45871f84911bce4c34bc603a7974fe893e4a9536cb1e9c4c9d297da11f60ada34d29b40dd73165ba025895ea1662fdbc08b6ba3a

Download Submit
/data/data/xpt.com.qfz/databases/MsgLogStore.db-journal

Filesize
512B

MD5
f97fd3e08c658a618b6762d0ed2632ed

SHA1
9264861e4e8b7f3c55e3e3f00e0aceb31af0e8e9

SHA256
4880eaf7017955e6b24b1727147e1dac3326eb6f0c5b702644395b08201279c6

SHA512
0b15e59e8d08db75cc0c058e5d6a9e63f673f394de163a7d1f6a1983a9f567a185a7b7b1a220bcdd1bd09a9e5cbef2fde0113882a23b91590f76fc8e0b341c7b

Download Submit
/data/data/xpt.com.qfz/databases/MsgLogStore.db-wal

Filesize
16KB

MD5
89db3817ad596495fa4931640c8b3063

SHA1
13c45926cf0540f33969421b0f32d00cc68c95aa

SHA256
dad8851e152a1443648d18db61004e490c305b4753ece915f6a4bc985ec59be2

SHA512
400639b2a2f5afca09523c9340d078d95d3d7f287940097849c037233d1e0a20e1557f8dc0aaa1ef3b0ffbd32538f746814d0b7da20a5babe56c592c73190988

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads