9309a95218c0669be93f57b72d0fae94ede0d97ceb5a3180c28e2038f8f7dbe0

Analysis

max time kernel
2781028s
max time network
137s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
23/12/2023, 21:39

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

9309a95218c0669be93f57b72d0fae94ede0d97ceb5a3180c28e2038f8f7dbe0.apk
Size

13.3MB
MD5

8c4e1ceba7faf35a973ad5ce46730255
SHA1

346373b978cb769ecba7066d0399674b554712ae
SHA256

9309a95218c0669be93f57b72d0fae94ede0d97ceb5a3180c28e2038f8f7dbe0
SHA512

2bdaa999044ec9a58a1c7abbcf93c6ae5b16b262678e24b5857070cabf977ca76d4c10b6e884dcb5dfd516d27867ac6eb5248d84334a977c4462969691c2c412
SSDEEP

393216:RMoC120xO6CELziXqm7wolSay/Fob0rrrjdP7W7ENP:RMoC19RiXqm7wolSayFvrjd5NP

Score

4^/10

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.haoquanbushou

com.haoquanbushou
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4230
- /system/bin/sh -c type su
  2⤵
  PID:4283
- logcat -d -v threadtime
  2⤵
  PID:4349
- logcat -d -v threadtime
  2⤵
  PID:4364
- /system/bin/sh -c getprop ro.miui.ui.version.name
  2⤵
  PID:4388
- getprop ro.miui.ui.version.name
  2⤵
  PID:4388
- /system/bin/sh -c getprop ro.build.version.emui
  2⤵
  PID:4415
- getprop ro.build.version.emui
  2⤵
  PID:4415
- /system/bin/sh -c getprop ro.lenovo.series
  2⤵
  PID:4440
- getprop ro.lenovo.series
  2⤵
  PID:4440
- /system/bin/sh -c getprop ro.build.nubia.rom.name
  2⤵
  PID:4465
- getprop ro.build.nubia.rom.name
  2⤵
  PID:4465
- /system/bin/sh -c getprop ro.meizu.product.model
  2⤵
  PID:4493
- getprop ro.meizu.product.model
  2⤵
  PID:4493
- /system/bin/sh -c getprop ro.build.version.opporom
  2⤵
  PID:4519
- getprop ro.build.version.opporom
  2⤵
  PID:4519
- /system/bin/sh -c getprop ro.vivo.os.build.display.id
  2⤵
  PID:4545
- getprop ro.vivo.os.build.display.id
  2⤵
  PID:4545
- /system/bin/sh -c getprop ro.aa.romver
  2⤵
  PID:4573
- getprop ro.aa.romver
  2⤵
  PID:4573
- /system/bin/sh -c getprop ro.lewa.version
  2⤵
  PID:4598
- getprop ro.lewa.version
  2⤵
  PID:4598
- /system/bin/sh -c getprop ro.gn.gnromvernumber
  2⤵
  PID:4624
- getprop ro.gn.gnromvernumber
  2⤵
  PID:4624
- /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
  2⤵
  PID:4649
- getprop ro.build.tyd.kbstyle_version
  2⤵
  PID:4649
- /system/bin/sh -c getprop ro.build.fingerprint
  2⤵
  PID:4674
- getprop ro.build.fingerprint
  2⤵
  PID:4674
- /system/bin/sh -c getprop ro.build.rom.id
  2⤵
  PID:4700
- getprop ro.build.rom.id
  2⤵
  PID:4700

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.haoquanbushou/databases/bugly_db_legu

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.haoquanbushou/databases/bugly_db_legu-journal

Filesize
512B

MD5
0888a352b8e3b735d476855a27e53064

SHA1
fce18d65dbe93bfda67660aaef235a0dfe3be700

SHA256
c24a58ba7433c2196ca71cf6940db0d3d050839ce00670cd178854939b65ae3e

SHA512
fb234c1dd6b6ac0c7fc5ad9ee7e80cbbe70532644c702932f434e347e6c52ed58ba6a2d3fee89a4b1012bcb84c0d5e2a8a56b3759cfc2c05973f230b346514c1

Download Submit
/data/data/com.haoquanbushou/databases/bugly_db_legu-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.haoquanbushou/databases/bugly_db_legu-wal

Filesize
92KB

MD5
05c2478d5f6c729b07bfed1edfb85187

SHA1
d86eb5c6933e9e82ee28419fc0ab43cab805913a

SHA256
213957613db9788e14d40b67c5bb6bb9b557e09f523ad851c7a05933b2fed396

SHA512
68664836cafaf3705c3cf24f77f1b75bed270bee67e8762e99726515d6054ee74cbfe366c6ade91295d017e87476e6ee3607293359fa6e74ea12dd6046bbe4ba

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads