Overview

overview

6

Static

static

6

936f7d873f...b4.apk

 

936f7d873f...b4.apk

android-10-x64

6

936f7d873f...b4.apk

android-11-x64

6

Analysis

  • max time kernel
    2439377s
  • max time network
    164s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    20/12/2023, 08:13

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    936f7d873f358b3306defa175397906d3e908e63d02a6dbfa326feac8cead6b4.apk

  • Size

    2.9MB

  • MD5

    de2f512251d00413144464dddeb18b03

  • SHA1

    7125091970d8c76dc24a8986eb9d29c4449447e5

  • SHA256

    936f7d873f358b3306defa175397906d3e908e63d02a6dbfa326feac8cead6b4

  • SHA512

    eeefa55110a92b77114ff6c43c586f952bb63a7969a6f8abe8365bd89e9a61d0d29f90a0a4451e1f45b70a9bc595979ad5d39ab3231a32baf5f6a19aa19e8b14

  • SSDEEP

    49152:AOGQalvGmIe0rDflmjpwrWt+xgIgGPoH1YKWo/ykdszJYo0:AOyvGmI7rDflmlw6t+hoVYtRwsz6v

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.xiaofang
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4960
  • com.xiaofang:push
    1⤵
      PID:5067

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/data/com.xiaofang/databases/UmengLocalNotificationStore.db
            Filesize

            28KB

            MD5

            000875e1a2106f82b0f0ead4e052747e

            SHA1

            5cf90b842489c3e12c9faef7ddbdf20d009a4291

            SHA256

            f338cd34759dc56064be9758b8f028b0013f70bb2e14baa81de9b1085842062c

            SHA512

            1dfdd9f99426e7592ba7958b5f37cd95c2cecd45bbcfd8823506718e5a48b73f691f5f5755618994d8fbe7118caf6c45fadecdac26763530b405be6fc39d4eba

            Download Submit

          • /data/data/com.xiaofang/databases/UmengLocalNotificationStore.db-journal
            Filesize

            512B

            MD5

            ba1e963bbda9a05bb13c4fcbddb90a56

            SHA1

            32a42b7ce7a3e6da0391fcf8906de9c3932da569

            SHA256

            cb255a853a098e9560bcb269ada8ae1eae72b754c79ccc0ed2470cc013d30aa2

            SHA512

            8eff8dc3c81dcf931673ce116d4e50cbf6dfc8268c006dc3b2c7fe350b31c8cd866188fad40bcf33114816d9d15f2ca583f3dc10dce2c018a76c5a931f9b8d24

            Download Submit

          • /data/data/com.xiaofang/databases/UmengLocalNotificationStore.db-journal
            Filesize

            8KB

            MD5

            c71102606ad8d614f33c31ddf4a6f9f7

            SHA1

            096cf6e21d294533b978134b6b196f8d4a9b4886

            SHA256

            3b71ecdff56851ed9984eb625ecf1c3b3b63860a832356094e91a0830861e47f

            SHA512

            bbdfacd3cf5764166b70d9a71cf136eee1878fea8e10cdce71118352df2392d2ab1bbd6054e587b376116d656477cf9db0f92dbc483c097d0562a48e8a53bb23

            Download Submit

          • /data/data/com.xiaofang/databases/UmengLocalNotificationStore.db-journal
            Filesize

            8KB

            MD5

            dd358cd59ba040820862419d81b18a9e

            SHA1

            9a5e2098ed7cec714cb056fb88762d157f359f66

            SHA256

            d00a4fe5de364bc944705167fbee893ff51daef0b47a18db7d8a85ccd95cea49

            SHA512

            f2616b02398d968f8ec89e088e13dd232fce4d7ab97b8f1f3898534152801e67f75efff0fc42e8c1f1fd456669349a32e956c4ec4cac313a29d6d2d8732f5d3b

            Download Submit

          • /data/data/com.xiaofang/databases/xUtils_http_cookie.db
            Filesize

            12KB

            MD5

            6da302a2e5fc0263420684f38a00e3fd

            SHA1

            9e1c35e91c3b84600dd8ebc10e072ccb91b5895a

            SHA256

            a9b2f6227429fd83edc4db9e62c5e3f8c45b55598f7b10c3132d6b339283c8d2

            SHA512

            6e91d3076e4f382a5e4119e6429b90bd4d604c858acb4914e8b67226f4ad0626e29726e09d12965f075ac6aebc49eb22faf0f5c6a286913aad9515887f91fa1b

            Download Submit

          • /data/data/com.xiaofang/databases/xUtils_http_cookie.db-journal
            Filesize

            512B

            MD5

            085915a755ce0132d50821708c3ec17f

            SHA1

            5934e9e9c772aece33afdc2d23a2612c9b920c23

            SHA256

            4f7624accf20e41fd0753232f15b1a7de5554ff6c9be34422fbed52d586afa29

            SHA512

            9cb097aa881d19b25608c9bb46ed36561092977c006330a2c075157c2ab5739f16e21066a0d8a92992b93513614e8ff57fcd962239f0e21ed4c1085fdac263ad

            Download Submit

          • /data/data/com.xiaofang/databases/xUtils_http_cookie.db-journal
            Filesize

            8KB

            MD5

            63c5201e0c087f7c42809d0f632582e7

            SHA1

            8d17db590a0e31f972a6242b751659e92bdafbae

            SHA256

            6e5ac73580e2fec01f7fdd1acaba5577ccbab57f47aa67c941513886d6b0cdd7

            SHA512

            51ff7af046411518fbffe1de54ca00b795614d53913cb0808a3e3738c91f0bb548d850c102f880c24b308d921f3e9e450a3cfe883f8e51ec5e7c49f07ef19ace

            Download Submit

          • /data/data/com.xiaofang/databases/xUtils_http_cookie.db-journal
            Filesize

            4KB

            MD5

            b9ec084defb11b04a704c4928276f07a

            SHA1

            b4724ce84068cc20b09842bc97508b37bc43979f

            SHA256

            9f7393f40e7ab985769958bfd4a2ba22a6c24032572b03a0f2330e2f861f2642

            SHA512

            4f4ea233d382c99f087c06e0dd242076c3d0ffd07996474d772ff8d21ef13c385890fb16b56d7c7d77530538ea63473d47fc4e8c8a271294cf53bfe44c592166

            Download Submit

          • /data/data/com.xiaofang/files/.imprint
            Filesize

            855B

            MD5

            43d04e971b437c17c34bbb8e312907ad

            SHA1

            9692d7b30609365b8d806c22c9747d7bbf5651d6

            SHA256

            65b8851248da95c3afb735c6c93ce4ec02bf1a481026c95f518b08d08762a37d

            SHA512

            519657e35408d82bea8442b82058739e6252b78f877f8e8d1fd4735936cb8c4703ad6fdc3ae464a8579210aaa09598df7013fcae418eaad18ed1d66a9836a555

            Download Submit

          • /data/data/com.xiaofang/files/.umeng/exchangeIdentity.json
            Filesize

            162B

            MD5

            b76fcfb09ffc2ea916cd5ec305aa4d90

            SHA1

            6f77346410ddaaaf8c797cb5a40277912bd29d95

            SHA256

            d4494e4210df76967387064b9ba061d35921d1f844838139ea194f33a4e62d85

            SHA512

            8834be5bda009c755cf2d5d97f213a04fa04256a6a11935bb8601ec171e4b52c7a4657e2658604cd4847920369ad2753999182782f84b483d51151bed63a551d

            Download Submit

          • /data/data/com.xiaofang/files/umeng_it.cache
            Filesize

            328B

            MD5

            c496a676f1d8a0e5bb5e82dc46d924c3

            SHA1

            0cacd4209dbf285bb9dd370f5ce5d5297c437067

            SHA256

            13308e12661bdab0f99946e07e17a70b3969118c2612b7dfe8f81c804ead3650

            SHA512

            c6b8e7475e8b07d02f3f8224e4067167d134642e9d739cb1e2b2f0556e1c073a800b578355c336c453ef49f9c51855c7cb721a1af53013589f4efd3c4c2328ec

            Download Submit

          • /data/data/com.xiaofang/files/umeng_it.cache
            Filesize

            167B

            MD5

            4b33c85dad058519291db3ebd3fe0dd5

            SHA1

            6bb50c4acb9a6f6d1aab24b90b862d5e2fd565d7

            SHA256

            89c0bb7d3aa8ec941f7a8d3be6c94843b32d360f0a26520226332aef31274724

            SHA512

            88192402bd80e50ca3dfd99ed83fe952efb0c7c509e85338eb943ca264cf611d0db3b1bc0736c9a8fc1578ca94eab6ca9d53d85de1ff36ac1fd369918506656b

            Download Submit

          • /storage/emulated/0/.DataStorage/ContextData.xml
            Filesize

            111B

            MD5

            62738150eec05e58561b968930832e91

            SHA1

            267bd3d5d4b4d8483b4415b568c6104387b2a76d

            SHA256

            f3b0f4dd76ccf427951a62bb814238d430dd8f2105e4bc866b2d9cd93e3ca78f

            SHA512

            1dbb14df53214b33502393d602d8a0596510fc68d856515ce47b433abfc3976efad45ee5dd2711f74daf011ac6db6823c7aa33337c6236d90e9c552a3fa749a1

            Download Submit

          • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
            Filesize

            65B

            MD5

            9781ca003f10f8d0c9c1945b63fdca7f

            SHA1

            4156cf5dc8d71dbab734d25e5e1598b37a5456f4

            SHA256

            3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

            SHA512

            25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

            Download Submit

          • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
            Filesize

            111B

            MD5

            12dbdd7f161c56aa8b513946c3478501

            SHA1

            2eeb4d6b91753b959fb8e847630dac1c20a2256b

            SHA256

            e4d70aefcbefa20585159459f615421b2867ef2e89f94f5443102e0ea1f115ce

            SHA512

            6f913879e9ed405fd95480bfef294ebbce9acdd37c1a959e4d69577bdbc868fb262e6470ab91a6d11e620206575c278f0726f830d560db0107945a60c1ef27bd

            Download Submit

          • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
            Filesize

            408B

            MD5

            d51fe70f8680b95b7ed7df06f01a3ec0

            SHA1

            2a72b311775037b66c4d548bb069404a4ca351dc

            SHA256

            c804575b3998b8b1339d6dcb73855de2bc225a00d82726543d5dcef14ed8752e

            SHA512

            5c8e672011d0f52fd44a85cf15d6badcf55ef834b8c0fbc2ee0f0c1fce1251906ecb20f056e751c5d5d182f885a2de816869519b619c43d7fbeb860209860e37

            Download Submit