Overview

overview

6

Static

static

6

9ab889c623...75.apk

android-9-x86

6

9ab889c623...75.apk

android-11-x64

4

Analysis

  • max time kernel
    2706232s
  • max time network
    161s
  • platform
    android_x64
  • resource
    android-x64-arm64-20231215-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
  • submitted
    23/12/2023, 22:52

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    9ab889c62339ef40dad72ae4a48ec6eaa4a28a4c7c13e3dde777ee9b1c3e5475.apk

  • Size

    6.6MB

  • MD5

    a3084c10db43e925ffc9c0c1cc50f467

  • SHA1

    9ce223d2c205633e4bdb3c41401f263991f9823b

  • SHA256

    9ab889c62339ef40dad72ae4a48ec6eaa4a28a4c7c13e3dde777ee9b1c3e5475

  • SHA512

    b389ede9be51c6e76e2f7012e1c7584b92155440058c07a1709fe9ee618d90c12d034934325980056cef2f73c39b7d2feafd34786ed9aa1cdb43ec20eb0fb155

  • SSDEEP

    196608:r/q897/66Kq7tfGFgUkMFnZh9F0TwzlhJ:r/q6/66VtYRZh0wzlhJ

Score
4/10

Malware Config

Signatures

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.wandoujia.phoenix2
    1⤵
      PID:4616
    • com.wandoujia.phoenix2:update_service
      1⤵
        PID:4860
      • com.wandoujia.phoenix2:accessibility
        1⤵
        • Uses Crypto APIs (Might try to encrypt user data)
        PID:4981

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • /data/user/0/com.wandoujia.phoenix2/databases/142b8011d30dff4cf4bf0dc97fa951f6_aysnc_downloader.db
              Filesize

              12KB

              MD5

              f41f531c07d4141546a531ff9caffdcd

              SHA1

              9dcac5aed06972d0ff6bd4cc1f1cdff85b36d3f5

              SHA256

              bb8dee5b5c3779f175abbd142722eb0022b98d374783aa80145b34614a4de646

              SHA512

              e0c8d1a820cb4c098e45776e8b50ea8c83944ef2e3f005cb0acbfc07688974d370f78100ae022f62564fc4c12acfdc43b710c18ca1c30f4f575bc08b9b12d2d4

              Download Submit

            • /data/user/0/com.wandoujia.phoenix2/databases/142b8011d30dff4cf4bf0dc97fa951f6_aysnc_downloader.db-journal
              Filesize

              512B

              MD5

              984a616901deec43e0122c34ff7beec8

              SHA1

              339cc74a6a7598ddb7c58774ec31e6e2aae3c860

              SHA256

              b303c1c019217f5d1b548fc385fd888dee437b1e1215a2259ca47b57122196a7

              SHA512

              beac9b24a24bdd1110f886f238e4c67d43e85d44721f361c8acffb81d60f9abb52b2924d3ca48bf4a97ab97c0a1cf145ba68282ba7adfa6623a76138eb74f5ba

              Download Submit

            • /data/user/0/com.wandoujia.phoenix2/databases/142b8011d30dff4cf4bf0dc97fa951f6_aysnc_downloader.db-journal
              Filesize

              8KB

              MD5

              bca78f665106eadf9d48d13a404770d8

              SHA1

              fe3df0063c5340a5c0cb784a407669369c92f245

              SHA256

              42c53790e5c419ad0d154e2dd1003ad637cf8eaef2da4811b729991c23cfc62c

              SHA512

              30cd79b801de77bc02d0c7708bd07b7885003e25902fb8709a99094f5812d5da2b7179406c4632a549d642a801ef088a126e7575865a641968c3d067879ab8d3

              Download Submit

            • /data/user/0/com.wandoujia.phoenix2/databases/142b8011d30dff4cf4bf0dc97fa951f6_aysnc_downloader.db-journal
              Filesize

              8KB

              MD5

              115e87c33d760ace24c6911da7cd8e1e

              SHA1

              720393895342f9608df2dfaa72d2e35ba0d2a78c

              SHA256

              190c74b9b0b433f4235261b11ff01416ac693bcd6f62f624e5106dae1d285549

              SHA512

              4b7e8e7b5addf6d7dd070fc85ee91386a1b4dbafc8054a4c5412b8d49402858504e63f5fb61643fdb5b92dad2f4c60c117e7b704c5530a66582967d4bd723c89

              Download Submit

            • /data/user/0/com.wandoujia.phoenix2/databases/c4d3d1e0e4ee9b329ac0e10249826edf_jupiter-log.db
              Filesize

              12KB

              MD5

              171aedf968e17a2744d2585715606cb9

              SHA1

              bbeddeb3b89fcf809619c35b4a318a80e7d5b029

              SHA256

              d2ab452d9360848f46af866b870b5c6fc98230b09c72b89cb1a4b2778586678e

              SHA512

              78a0f517ee3d21c153dda6dbfec4187ebaee9d520d7b1b63f358bcb125d08aea53f26943907a56fdeba40161d9fc7e4fd63f9ae3154dd2ad887ba0162738285b

              Download Submit

            • /data/user/0/com.wandoujia.phoenix2/databases/c4d3d1e0e4ee9b329ac0e10249826edf_jupiter-log.db-journal
              Filesize

              8KB

              MD5

              fa230b93c14d797b57810fdf5885c181

              SHA1

              1447355777cffa3e9a2561b56b2d251c4f898d19

              SHA256

              71d2cfefa02ac15a15088d2a67c08bc0a16fcb1ab973110525c7ad3e1e76781f

              SHA512

              3bfa6952a333887c555ba722ea605915b9fbdce2a96c8cef12fd13a0714c9cd054941c6ba91326726b8eba299805947464fc792a99415bc7865f6caa9c583c6c

              Download Submit

            • /data/user/0/com.wandoujia.phoenix2/databases/c4d3d1e0e4ee9b329ac0e10249826edf_jupiter-log.db-journal
              Filesize

              8KB

              MD5

              bf80a9c72e0ff0a77244cf59b0588633

              SHA1

              392d1a63c436dc78d288a9df18fbeb71a61afa2d

              SHA256

              adb686340c6bacb8fd53b979a58f5a272ec90dc1ee7256398974be37c98fb3b7

              SHA512

              a049cdf0d30c13f86681b003c5b74d0a0df9ed6a9efdd819b5d59eaffdf865ae1a8dd54f62b11cd6cfa5a70f6020fca389c5f42aed6e39446cf687bc4de7636f

              Download Submit

            • /storage/emulated/0/wandoujia/.config/.udid
              Filesize

              8KB

              MD5

              a5cd986e4bc22f626bb9c60f70f11f48

              SHA1

              243d3243636aed327ffef8ed5fa70f96848a6663

              SHA256

              0ab6799891bf44fa7c25c8f2959a6abe7a8c7ac3a88aa2d763880599f57ca3e9

              SHA512

              f64cf63bfac3f8f23d2b1f0057d7b83d8b2af0476ccd1284ba92bee36600872d3d621460b6822e68fbb27d134798496c3a5df276d90bbe53fe6e878d11f1cd80

              Download Submit

            • /storage/emulated/0/wandoujia/.config/.udid
              Filesize

              40B

              MD5

              af3509d688c422b1a78b58e2819e69bd

              SHA1

              0166b744740c168049280cfc125bad90cd3d4df1

              SHA256

              4e0ae12704d1c19f79061cf23b867a1ff47b466640f2364553fd6180300cbc20

              SHA512

              93f45e076f1efa360c4740f19a85d73ee44be0502e3d7f0c7547a5cf10c7a05e6f1504dde9c16c41843fc6c00071e906d5a9518227ca474e2c247465d49f5a11

              Download Submit