Overview

overview

7

Static

static

6

8da08fc543...f2.apk

android-9-x86

7

8da08fc543...f2.apk

android-10-x64

7

Analysis

  • max time kernel
    2420188s
  • max time network
    154s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    20-12-2023 06:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8da08fc543f752d51d052b594cc1eac7c07931b884b2a1fd73ad1a5893f3b0f2.apk

  • Size

    6.7MB

  • MD5

    dfde9095bff2d828758e700400f5dbea

  • SHA1

    9c7d79b9edcb0f4fba2fbba9ddfd3f20a332b755

  • SHA256

    8da08fc543f752d51d052b594cc1eac7c07931b884b2a1fd73ad1a5893f3b0f2

  • SHA512

    f3832cc36eab083bce2a7fb7c624a061fdd9daa341df0d32111256d275ad378e37f0fdc8249158a3bc253f9c54c365fa433e9b6bbe42f647f12f487c676323c6

  • SSDEEP

    196608:o/zOyebAJk2HsKj5EmQj2pyQT6EIjIWRT:o/Syeb6Tj5U2US6EeIWRT

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.hxyd.nmgjj
    1⤵
    • Loads dropped Dex/Jar
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4911

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.hxyd.nmgjj/.jiagu/libjiagu.so
    Filesize

    485KB

    MD5

    1da618896802fdb4b6f17c92703424f4

    SHA1

    b48aa81ac014a5a7f6e95e618e4f951ee12d34c3

    SHA256

    2cbf986b5e1357e00347d75d6f631539c0f368208079df36bb44603ac4e6973f

    SHA512

    620a06d8df24597467318582a12bce45e2e2cb66069ffbd6fa27ac5a164c58398ddb9c2348e6ef443272a22ca85fcfa03439d0f0f22109a93708d562e0737cb6

    Download Submit

  • /data/data/com.hxyd.nmgjj/files/.jglogs/.jg.ac
    Filesize

    40B

    MD5

    b8e57197899eb611338e23e50bed9ab3

    SHA1

    b4d0dd6fa037c659af0622f69005270ba1e880b7

    SHA256

    97ed1eab74685edae031a1dbe192129bef01119643769b3953c2d339ec582df3

    SHA512

    662571668f0e394eebba137f5df71eb0c425cc320aa470e604b2a5772c5ab3d48fc0d1c2ab7d54aeee4bf37fdb94361aabafdd2b12b212516434a308ccc5044a

    Download Submit

  • /data/data/com.hxyd.nmgjj/files/.jglogs/.jg.ac
    Filesize

    32B

    MD5

    1071b77a4873ee99c412ee7528604b54

    SHA1

    66e5a54acb3740090a581b2d098e6cd6231025cc

    SHA256

    7c9a23a19ddb6d7e34e0299d0542ee1cead97b7ec9cad8004d7c842ab218b5b3

    SHA512

    e5877b7fd32c2dc87880002814b31e859829602da3f6caf8a15a6730156e84cf1ade8b5744a9283a0e00d3a92fe6043fa0b6e2e425b775204188a15857137ce5

    Download Submit

  • /data/data/com.hxyd.nmgjj/files/.jglogs/.jg.di
    Filesize

    340B

    MD5

    e04214b4e41c1414acf85657f4e99ef6

    SHA1

    f115a32c12c2a56c846a644f28826d2a002be6a7

    SHA256

    05c920f2dc1c1426e899eddfc8aac8a1e0f799ae6666239560387df9e7147b19

    SHA512

    f5e46e9ab73c1deb074691f1ab8b0534d6230f03415275cce8a611a2a119d2e70e1db7163a8e15498d0a7e47cb8c3cc1215600939073c4ea3a55411df5310c9a

    Download Submit

  • /data/data/com.hxyd.nmgjj/files/.jglogs/.jg.di
    Filesize

    340B

    MD5

    b3cdb79c8558aad172729beda124b9f2

    SHA1

    e9c0fd4d3e1fb2014e6d088e814b58eaf5470229

    SHA256

    fccdc012a8ea336ddebb3987302a6d3623dfb304ae0cfe5b5f0b87a04495be32

    SHA512

    5293da0d3da4630ddf34405752d112937043098b3d0d0a678927f350694be90ba4455e8d880f78e4f43d8a67cb58b8a73131ebdcd4791823103b8a259644edcd

    Download Submit

  • /data/data/com.hxyd.nmgjj/files/.jglogs/.jg.ic
    Filesize

    32B

    MD5

    27673406dd1dc3312ba60609f641ec7c

    SHA1

    c1ac2913ac450ec0a0389dae55cc3932999c1cb5

    SHA256

    31a036ab70f69c926739d8706fceb3cb730d5231bef99a7c3aa736ffb46339fa

    SHA512

    a4a251b8d376f82ecf103aae784d019f4bcb415de2c7ef0cf717c07455d1e0c9be96eacb4a7eee3ed9a488223b9817f85fbc240100ef73bd57da846be2a43676

    Download Submit

  • /data/data/com.hxyd.nmgjj/files/.jglogs/.jg.rd
    Filesize

    32B

    MD5

    10cf8fee60d4e3e615717d100251fe5b

    SHA1

    e008b94af0c66135591c2c954447f7cabb073ee3

    SHA256

    1e59eb0e087f907951c5bf8fcd82086680023aec8cd2ba51a1b2f747abd51a6b

    SHA512

    a7c9413323d24ab4678c965485d9cc46f81d3ab807de43d95472fe43e203d3e05fbd301244f4a045d4128d9b366e0e4dafdfafc501eb5f25f754bd231823fc87

    Download Submit

  • /data/data/com.hxyd.nmgjj/files/.jglogs/.jg.ri
    Filesize

    314B

    MD5

    472244fed20c444add015eaf383623a9

    SHA1

    dbd282502db06ade3c9ad50dd9b2f946d5c54b62

    SHA256

    a6a2f022062315e6e1278ebf4d6839920a791549a4dcad531a72ab03784eaedc

    SHA512

    fe055cc27b957916933f6a4e256aa9006eac5354d481173a8dd3f346f092f7d916fbf1b831dfa7b0f59917b182d556deea1b49080302f17a093aa57828b3fd6f

    Download Submit

  • /data/data/com.hxyd.nmgjj/files/.jglogs/.jg.store
    Filesize

    127B

    MD5

    84740a5bcb0131c19014b7024902056f

    SHA1

    0b013d6bc6d70eaba15efa479eaa2fd686831c23

    SHA256

    ccd9cf7ba66d52c64c58e5f18cf1978f7c9e92fd0711262682565a162b69ed9f

    SHA512

    d1c8c4569dcb192d1b1492c32465a35cfc20f98aa21c14ad5eceabfe40eaec8accc46c3143031758540aae2598359c0b50b1e95673015db932a4ec7c75b33291

    Download Submit

  • /data/data/com.hxyd.nmgjj/files/.jglogs/.jg.store
    Filesize

    32B

    MD5

    448e391c59eef34ee1defbe4dee4c41f

    SHA1

    df1f890987371d7d8e6963c68b787856e42bc146

    SHA256

    55612e17689f4bb05f27e18b4f6d06ffef92a6a8893a5cfdd3d5b99a6028b549

    SHA512

    ce336ce895ba861dda7da27e8869dea065eb3c3403cac55cdf1935409e5ebc95b495370f87ed7416af20af533b15615472e333ae9f2fd2713040f526835399b7

    Download Submit

  • /data/data/com.hxyd.nmgjj/files/.jiagu.lock
    Filesize

    27B

    MD5

    f9c1b75cf7684252372092ff1ec03ae0

    SHA1

    f7567631a6db4c512bc58673892381e8ed22e91b

    SHA256

    2d37eaf865cf6f5f3edf25c67296ba6edb0dca51dbcd57314d0366cd74e807d8

    SHA512

    dd1acedff866a3e6a71e78e82e8fd49e2d9c5a7412e178bd6cf28f264e19b9d29a157af5999946605b2b10f1f73a9357628365273a555b44458b35c7b030aecc

    Download Submit

  • /data/user/0/com.hxyd.nmgjj/[email protected]
    Filesize

    2.9MB

    MD5

    e2e7f2d4ecf012afa1c1e411507a75f8

    SHA1

    031facdc93c82efc4cd80d868a30a8cd627011b0

    SHA256

    e7196d9498b40f4172bdb6b2bebae919a878e7d6631ed8174643c4cbc7a3553e

    SHA512

    af5967061aa82a6d788929fb05ad80000423c28d378feeedcd1b5a2af04a196404d6bc66af39f0d1126c37823e3fcdb92692a07d49e557539c44b4fff8fdf973

    Download Submit

  • /storage/emulated/0/360/.deviceId
    Filesize

    48B

    MD5

    4c4c5285293d5141f582aefa4e038669

    SHA1

    e01852a72e5a8e6f7d63a21426b515118196047b

    SHA256

    36c5c63f39ddf7a6a9c01946e4f78b95790aa734176802e793e95724a1b5b731

    SHA512

    097aa673273e307f7bfb7c08861ad389d4b5f7fae55d972a5c1636aa66d0b8d23b5eb9b696cefe0e5b942f23969dabf0147397aeca85fb9a4d75e0473104e399

    Download Submit

  • /storage/emulated/0/360/.iddata
    Filesize

    32B

    MD5

    8b2066ee3b593bf1abfc21dadd80c166

    SHA1

    0671f047a6d8645a83196c637a5bff52af3639a1

    SHA256

    b0567f4fe70c2acd3d2a764d752494050d5a5eaf217b406f2f0407312e67dd6c

    SHA512

    b991ba34699358e34a77435596b1b9c55f8e1580e363884e77095cc3dc71bb36c0deab7c29c2147b133a31d8a8adf665095fa79b86204960de0c89bc0469a392

    Download Submit