Overview

overview

6

Static

static

6

8aa20ec9e0...a4.apk

 

8aa20ec9e0...a4.apk

android-10-x64

4

8aa20ec9e0...a4.apk

android-11-x64

4

Analysis

  • max time kernel
    2826832s
  • max time network
    170s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    22/12/2023, 12:01

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    8aa20ec9e00293ab2dd2239d3ba1b1a4.apk

  • Size

    784KB

  • MD5

    8aa20ec9e00293ab2dd2239d3ba1b1a4

  • SHA1

    c3f27e2ef83783c04751f893365178c638ec130d

  • SHA256

    de1c5fff8e231afa72d5d73760e75eb3ab98ab38fcdb29dd8c1b8ef2a032b0b8

  • SHA512

    e3c58b246f376fd1d5efaa6f596a99a952470ccca067b5b1fa2a187cb98b83380f7be1463ddc01ceb6c0513afb62bfce10852e3c998a13c2368089fcdaf970ea

  • SSDEEP

    12288:pN1DHj2iBYycDsF2Y1O2Ng3lyOstRVO8Jt60oL7USkefTULtLuLfQ4kKkEW5e:pLbYycbYwqg3lyvRVrjS5TULNucPm

Score
4/10

Malware Config

Signatures

  • Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

Processes

  • com.kingroot.kinguser
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4485
  • com.kingroot.kinguser:service
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4601

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/user/0/com.kingroot.kinguser/applib/libNativeRQD.so
          Filesize

          21KB

          MD5

          fb35a9c54f9bfaaa92b484958345618d

          SHA1

          19e40f9a3e82c7f75c4fa889a530a5c0821e9c52

          SHA256

          5eaa4cc58121a49c40f18ac5b2e712b7f54a5d1c167de59449699860214cd826

          SHA512

          39fe04502221989ba21ef859af8ae9c8b908ce10a4c8d08597d6cdbefc775119e65e46a77f28720866bca7d59890efdc4cdf5152ef0bc03aed647b1b81d4b5bc

          Download Submit

        • /data/user/0/com.kingroot.kinguser/applib/libsuc.so
          Filesize

          26KB

          MD5

          717857f8bd397f139f7979733655a5c9

          SHA1

          62f66c7af734e739c36308e3f7e5e90b5c7feffe

          SHA256

          2201b98153bb9bb92e1fa51ab0ceea74f5a35474e452b6bb2334a8a46ab92254

          SHA512

          989da16b7e9cdd5732cfe6deed3942f141567b6f8122e25a85a109781981d131b7374268ec9f59f6031d81926133cd634d48b8b7f60a5807ff1e070ec057846b

          Download Submit

        • /data/user/0/com.kingroot.kinguser/applib/libxy.so
          Filesize

          38KB

          MD5

          0a0c1d7c4f93ad3e2fba6b304325ec11

          SHA1

          66fd00e2db47cc06c2783395a994949e1c4042e0

          SHA256

          8b5060a4ef46482c218a2ab12a659372ed7732852d8590ed7eae73003216fa27

          SHA512

          7e69908068ba92c3c10cc3fc66be2ffee9663cbb6c564a88bf5361243689b7f058bc7449cf4bda63c6afc1fcb93ebbb994bc88babda5d5ef3967e944338a25b0

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db
          Filesize

          12KB

          MD5

          f41f531c07d4141546a531ff9caffdcd

          SHA1

          9dcac5aed06972d0ff6bd4cc1f1cdff85b36d3f5

          SHA256

          bb8dee5b5c3779f175abbd142722eb0022b98d374783aa80145b34614a4de646

          SHA512

          e0c8d1a820cb4c098e45776e8b50ea8c83944ef2e3f005cb0acbfc07688974d370f78100ae022f62564fc4c12acfdc43b710c18ca1c30f4f575bc08b9b12d2d4

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db
          Filesize

          33KB

          MD5

          5f8a776efdfef58f6bd4c799b68a151f

          SHA1

          f5ace0738a6662df4faee58b906775d7aace83a0

          SHA256

          63812f8d4f5808468f38de67203fc8ead84d216662051689e59d08967a9802a6

          SHA512

          d47c46852c6f6c6446167fbe015f528a73e27a00c73de4475ee013d898369e241506c4595f6b6b4a7c1458acb2b8383e599d8f20b71b226ff4760e31d721b94e

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db
          Filesize

          2KB

          MD5

          702a0fb1947d63178dc015ea27a9309c

          SHA1

          8942d30ed7a8a29ddcd060ba92b5fba6718eb240

          SHA256

          2ffeabb41553040495309692c2645c2708151241736bc0e17a5a93b21ee2be04

          SHA512

          3080d119b71af328485736ef9356c9a2b170681a55b4d2a7bd45fa5d90cedf912f90cc7b4797fcfa21789825b392e0ce8e6fa1d229514094a0d0bb0659affd63

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db
          Filesize

          16KB

          MD5

          b84e1ce210eb2268adc22e1676950389

          SHA1

          05a5821a2e0ba9d9dc3eb1419529ff67f5824d65

          SHA256

          87f59f09499eba8306a8a797749b8e67989b91162d670e3f7dcc1b2412e8cdd3

          SHA512

          4cba2071742505f004c07283ba44f3f5ce1f6358bb8bc8a8803ceed69d13adad4715724e4035adea053dbeee97817973c2f22d213f258ad9b6ab520b7a00b0df

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db
          Filesize

          69KB

          MD5

          f7f5f10c5701da9ea84a5808061f778a

          SHA1

          a53bb6f82064a4775921a2ba9ef55de3aece94a9

          SHA256

          9100ca35b899a12cf5f977a41ed8f0d8ffa63c7f9c268af6bf56a0376f2f6c65

          SHA512

          3a475ae42a49059609fbe3cdf47f7a3eb246304cf7f6bec89d2774b6b759282448788ed846b41be5a4197c6e3e4a793ccabbca9d376c8cb07373c743ce3c2092

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db
          Filesize

          36KB

          MD5

          48f43aebafc6cb357d3f834da01bf3a6

          SHA1

          2f6dccd1f4b0c5e1a82940cd71378e64580e2217

          SHA256

          dfe3ea63ddb571a87f0c7c82f53792332cfdbf5ca0af0c8268bc5db2b30fdf04

          SHA512

          2d183ef47a98609a288ba836d60eec66a7a801c217792eb97adbd820ee8affd174b1b9562d0a853d6b7b774dd5ec7abd5709ffac45e9ad42e649e10fd26dabda

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db-journal
          Filesize

          8KB

          MD5

          a3319619505d78d47c7b6c7733c4e3d0

          SHA1

          3eba613071dc14b12156d0ade7b608f9cf874937

          SHA256

          637db0a28d727e3058cf1e60679b0915c5a51913d3e8d2ad244601c4a8f9678e

          SHA512

          0062732655e92c91cfb70c8088e9fabd79c9fb4fc1f5806861d28b32bd5988326b993f4d53fc07770bea449437c375a3ebefec2ad7dc6c841e41f38808c8b67a

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db-journal
          Filesize

          512B

          MD5

          56f1f3bccd998db7edf12fb6f0cb3d96

          SHA1

          16f7d0b6b7a0fe2c7f696c3724c956ffe8badb38

          SHA256

          f492f91a1e20b10009a8f47fb74b8bfcf71323f2c0352234521051dc26880385

          SHA512

          6185db36e16471d021f3e949e67b4efc4b1d192af5eed49e5a5c616ffb4cdd34a4b7f74bcb2fda6446b955b701cbd146246a758deabbce56d97c4a2e76a8f67a

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db-journal
          Filesize

          8KB

          MD5

          14a8b85925e8e2871ccffb9107ddede9

          SHA1

          d282b32ff49bef3da907ac19fbe50ec79b2409f0

          SHA256

          04dcfe24cdc18a5166a7cc61dbb31fc15670e5d30a511cedf52e649e113eca73

          SHA512

          2d4cdbdb2568156249795e066090ac0634631997c3fdcde1976934822016ba8a0c00212b15300df5bb04fb44a30cb36331f9d20244efe45692c01d2a99023454

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db-journal
          Filesize

          8KB

          MD5

          d64d4ddce8664979eb7cc81e1dd6e0bd

          SHA1

          845f53c6f5b470da6d0f3add5e14c4af63fcfd1f

          SHA256

          f0822093a411ff453f0cc4dc36cf30b5b8466d5a899aef46f81a2bb82172515b

          SHA512

          793be2c5a99288fbfafd12b5a2fbf13ce2c0b2977194b97381cf8f213c2d94c15d95303d04e467759c9c207ab8fda8d6537e1de162421ac21fc8eac57c19e957

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db-journal
          Filesize

          8KB

          MD5

          786e3febe1331d7a580c226c1e4281cc

          SHA1

          ce10da3c14361e0f3637add5d736e38f9ed916e3

          SHA256

          dd66b6a2f6c5013ee572e5bb3883472c33fc0775d5989ddb656d57753ab551a3

          SHA512

          3ab132952594e8ca8fec99a07325a653863617b50cc749fc0943dc19436b55ae83d35a93ffea9c72c816198e0cb86e5c334e840692610f5849c0ac55b0790584

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db-journal
          Filesize

          8KB

          MD5

          f92fa881fa3b9463f38e42e868d57d53

          SHA1

          7ac9a45b77cd3fdec41c227539eb491d4798e561

          SHA256

          d9254c61b817a6f562d6080580f27dc26097f77fe9b9c35a45bd661958839e39

          SHA512

          c108aa6316d512424de13e53b548bc21111ee7f63e5f2728fd4473c90cfddc17490ee2e832d7a5795758dc7d644d907cbd59e95f30a1eee026069322d0f2d552

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db-journal
          Filesize

          8KB

          MD5

          98931815be64889210f31acf51f84aae

          SHA1

          b0a08e2de6a1f60ae8c84eec1dcae8eda658d7b9

          SHA256

          09eaaffaf519ad157082e329215efb09a795b2e6e1da4a12289b0811f0053a21

          SHA512

          96f1af4722a2bc5c37804e85e7ae7ffaee06ad53e339b9e7f7c4bea8e45ea50045c081c8a977e57f1bf3951884837354c891a93553ea4d03de81cfad97e9cdb4

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db-journal
          Filesize

          8KB

          MD5

          bc02092a25a35f9d32ffe8b714de128e

          SHA1

          257c87a1aa341aaf0102ebee40a5371d7c291e48

          SHA256

          3e45ef765d11100495bdae438d7ef1fe490d7b8a54c38877b94ea889a82c4505

          SHA512

          40b55380936b8c3de7d5a9d1cf6b5b70d290967e40181503a1f8af583b9222057d29434ed49795535326510431182c71fc8acef301ed276fc35800af2a464f14

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/eup_db-journal
          Filesize

          17KB

          MD5

          4cca5354e2c91503f5c3424454d91148

          SHA1

          cdb70244d4fcb6b872c59113bf1221382e09b9df

          SHA256

          bcb47edd6f2206366c097154f2486d84bffe788fc19959fa0c1808f08894a692

          SHA512

          85a68a53c0210e762251cce1fa467f104575901afb87f6b830efec99f91fe4678bb52fb6ea6ecb05af94ffd25d9bd069befb6bd164f16dd8984b2ec576e2a4f4

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/permissions.sqlite
          Filesize

          24KB

          MD5

          ff9b8f52b3ab3d10af650f8df179f27b

          SHA1

          41303d7afd03424d78ea619a987ce13402332f45

          SHA256

          477000e08b161ddf05e708ab61350e157fb1adcaa5d27b468a430eff3ae6c9e2

          SHA512

          127121729263abcc242669481a4efe80636d5b62d0eed34ecd0718de4c8ea90cae39a75fcd6e2a4e5d89d5ed733d61b0c4c05c8fcb717c301ce4cf5bd4e22b91

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/permissions.sqlite-journal
          Filesize

          512B

          MD5

          bd662a6bf6368a71f8de1d45abf2671c

          SHA1

          ac1146db340660c8dbbf9060b285d460ef52b5b3

          SHA256

          2bb7c75d156317945003ccfcdd803922f71d152bbc75d0c7381ba65e171bf9a5

          SHA512

          2057117d0366894300f6336b509fd1095113b4254587fa0421039deec491f6271b12aa145df01638e669444a0f6ae2249b58c4540b8d5e8f5e2869aea5be34ad

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/permissions.sqlite-journal
          Filesize

          8KB

          MD5

          dd105af78e0be524d394f4a25b7a6a67

          SHA1

          ee1485cb04872b274065824eb67687223de7049e

          SHA256

          f37da004a26c1c7a70fb8884f23f8cc063f639d5fddb17e7983ba7ed835a6e75

          SHA512

          1aaf7d1cd7c91c64ea39acaa6d966ed8fe21749f17b0d694efa74669a698bf547e5226e0dbafebb0c43faa0d4e4253a94eee5e6a779f9bbb925016c69c15da3e

          Download Submit

        • /data/user/0/com.kingroot.kinguser/databases/permissions.sqlite-journal
          Filesize

          8KB

          MD5

          1970cf7a7ba5d152f65605691db112a0

          SHA1

          8ffad5eb3d3443780d94b2c6f468f2b6941b2143

          SHA256

          a8ca8eaa110adb406924a947c5d827a76da58ab4237ab2ecac309548a15a6e86

          SHA512

          8e19e8b14dd92da7bb4e0e39c9a6e3cf06129fe7c6c9e7222b8560f442c5237dae6c4e6c6a800d62e2731e7f5066b8175ad79ca09f7fbc1af52904dd459f1898

          Download Submit

        • /data/user/0/com.kingroot.kinguser/files/kulibs.conf
          Filesize

          160B

          MD5

          cf8067582ff31e66d0463c683e75aafe

          SHA1

          0bfe45a969085405e19dc526eee25b3979902aa0

          SHA256

          c79f4bc1905b3e22148d707b9d099b9ca9b586b1d0a3236b1cb1ed366903efc7

          SHA512

          92d5d45cbfa01c3ceeb4d9052cb38a21dff925833917702cfe32c0dad616850af5a5accc1b1ccfe4b86380acdf17132e5b1595727860a954d16a44df87218836

          Download Submit