8dd1e2316b8e934ba2e71a634345ee95d0d01c7ed4e31dd7edad8e8479ac15c6

Analysis

max time kernel
2496305s
max time network
130s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
20/12/2023, 07:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8dd1e2316b8e934ba2e71a634345ee95d0d01c7ed4e31dd7edad8e8479ac15c6.apk
Size

6.8MB
MD5

cc5bb643124343543b91f39bd6900047
SHA1

c8ebf5a9ce4989a3ba301a76385217780c9ac4ef
SHA256

8dd1e2316b8e934ba2e71a634345ee95d0d01c7ed4e31dd7edad8e8479ac15c6
SHA512

d033da095a8f1826ae7ae4788227b6b43bbf877f4e085aef640ed6f9b600b1356a3d4d7dab876972da0756dcbe8cc0020bc7f6707e2050a81b1faa0403672204
SSDEEP

98304:O94tF0E/rrpyJ/aYXq4vepOi5HrEdKcTUvd4Gsn63M8ynZWC812iwkzDWjNL4r3c:C4trHpyApOi9rEdCuxdJkOR4ZqJ5

Score

8^/10

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.orangelive

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.orangelive

com.orangelive
1⤵
- Requests cell location
- Uses Crypto APIs (Might try to encrypt user data)
PID:4502

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.orangelive/app_crashrecord/1004

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit
/data/data/com.orangelive/cache/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/data/com.orangelive/databases/bugly_db_

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.orangelive/databases/bugly_db_-journal

Filesize
512B

MD5
64ef2c4b81de910d937bf785e1b4d3b8

SHA1
c76aa648e2a5f6da7a0270ddb335a1ee24ea3bdc

SHA256
9bef9ace4fc43d12e59c51f83278d55f748d65c3dae599ac70ccf9170a094bcf

SHA512
40983617c5abac3071c9907b9a1b0327d9370338f0fdd4831f925550baf9734d0ef60632105aafc706921d0892927ad3e6256b5cc62a2b3f0bfc74a1117e427d

Download Submit
/data/data/com.orangelive/databases/bugly_db_-wal

Filesize
16KB

MD5
4c8aee48559920b61b712d799951217b

SHA1
02277eb9c8240020bc4d7ee6a2252372e0d2ed2a

SHA256
da38b20b44caa01cd7024b89caf2bc5f1f251150481ac56d85e0443673f0d0e9

SHA512
b5139e654608d5bc84c9727a7b7dcd2b566b18ac86598f946adc4eca0fbf6302ebe417a99315d1096d9a6fa11fae5a0c3f311f524dbc546a01e77a258eb0c9ba

Download Submit
/data/data/com.orangelive/files/libcuid.so

Filesize
129B

MD5
4298be05c423994efaa1ed62179c6011

SHA1
bc4165bcc8f6b6e5eb26ffe09f9529a4a2d5b1d7

SHA256
02644370aa3fdd74ed416ec953aaf99fd1d3c742f212aac155b638b28131cb9b

SHA512
55e2de363485b09b6334c31076d22b09c90a222fc69892cd1b116e4d2f490d9321871e894cc08cd999bb02ec2ebcd16f878569b71db97bf9cb0a3cc90a2977e6

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads