Overview

overview

6

Static

static

6

a33997d143...2e.apk

android-9-x86

1

Analysis

  • max time kernel
    2901210s
  • max time network
    147s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 23:48 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a33997d1437f1232360fa80f8f4c201f4ade865430af09247236ad47e7d7ca2e.apk

  • Size

    9.4MB

  • MD5

    97bb8edf2ff861bb3d6a2bdcd3bbd33f

  • SHA1

    329b90a5fe863124bae1d5d70760a5e1620d9256

  • SHA256

    a33997d1437f1232360fa80f8f4c201f4ade865430af09247236ad47e7d7ca2e

  • SHA512

    844e98447bc6b320db6f1d92b6b44b92e8af7d922eba3779236612eaf6fc92883a043709b5ca645fb88499cbe803105ca7349055bf9bf4eab897e3175a4ff96c

  • SSDEEP

    196608:VgpgZi5a6dOz4X2t+7SgrXOmpZuGYlN5mwkxm9LvEwpbx5qf97woQbLke:VguZi5agE4Gt+mgKgZuGYlywkxmpcEie

Score
1/10

Malware Config

Signatures

Processes

  • com.zhige.friendread
    1⤵
      PID:4250

    Network

    • flag-us
      DNS
      semanticlocation-pa.googleapis.com
      Remote address:
      1.1.1.1:53
      Request
      semanticlocation-pa.googleapis.com
      IN A
      Response
      semanticlocation-pa.googleapis.com
      IN A
      216.58.204.74
      semanticlocation-pa.googleapis.com
      IN A
      172.217.169.42
      semanticlocation-pa.googleapis.com
      IN A
      172.217.16.234
      semanticlocation-pa.googleapis.com
      IN A
      142.250.179.234
      semanticlocation-pa.googleapis.com
      IN A
      172.217.169.74
      semanticlocation-pa.googleapis.com
      IN A
      216.58.201.106
      semanticlocation-pa.googleapis.com
      IN A
      142.250.180.10
      semanticlocation-pa.googleapis.com
      IN A
      142.250.200.42
      semanticlocation-pa.googleapis.com
      IN A
      142.250.200.10
      semanticlocation-pa.googleapis.com
      IN A
      216.58.212.202
      semanticlocation-pa.googleapis.com
      IN A
      142.250.187.234
      semanticlocation-pa.googleapis.com
      IN A
      142.250.187.202
      semanticlocation-pa.googleapis.com
      IN A
      142.250.178.10
    • flag-us
      DNS
      android.apis.google.com
      Remote address:
      1.1.1.1:53
      Request
      android.apis.google.com
      IN A
      Response
      android.apis.google.com
      IN CNAME
      clients.l.google.com
      clients.l.google.com
      IN A
      216.58.201.110
    • 216.58.204.74:443
      semanticlocation-pa.googleapis.com
      tls
      2.4kB
       6.3kB
       14
      13
    • 172.217.16.238:443
      tls, https
      858 B
       40 B
       1
      1
    • 216.58.201.110:443
      android.apis.google.com
      tls
      5.7kB
       9.9kB
       23
      21
    • 224.0.0.251:5353
      3.7kB
       11
    • 1.1.1.1:53
      semanticlocation-pa.googleapis.com
      dns
      80 B
       288 B
       1
      1

      DNS Request

      semanticlocation-pa.googleapis.com

      DNS Response

      216.58.204.74
      172.217.169.42
      172.217.16.234
      142.250.179.234
      172.217.169.74
      216.58.201.106
      142.250.180.10
      142.250.200.42
      142.250.200.10
      216.58.212.202
      142.250.187.234
      142.250.187.202
      142.250.178.10

    • 1.1.1.1:53
      android.apis.google.com
      dns
      69 B
       109 B
       1
      1

      DNS Request

      android.apis.google.com

      DNS Response

      216.58.201.110

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/data/com.zhige.friendread/.jiagu/libjiagu.so
      Filesize

      475KB

      MD5

      f0f9ef36b67807a253b5932f865eae7b

      SHA1

      6a8d66c6efa2750b54cb763f4ad044bba4154e0d

      SHA256

      646dcd8290a30e992553186392239da39ce7c8e7c2fd87b3d6a880551782db75

      SHA512

      e7ea65467e557e4992e746d808cae3e2d16b42187b1a94326c47c689cef9fe21a2a9d2b312c60c8ff40e128dacbde84cd6b93a191ae38496584a45fe60c04548

      Download Submit

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.