0bf76d7d24c41fa00144abbf57c2b85d26cd53d06287ece316f83c7322497ef9

Analysis

max time kernel
2864860s
max time network
165s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
23/12/2023, 12:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0bf76d7d24c41fa00144abbf57c2b85d26cd53d06287ece316f83c7322497ef9.apk
Size

6.6MB
MD5

a4a1c2abcc1d706fa513c04bd2c08718
SHA1

b3a9937595c28e1078d78d5732c1161c1e76046e
SHA256

0bf76d7d24c41fa00144abbf57c2b85d26cd53d06287ece316f83c7322497ef9
SHA512

5d654236c656ebc2a75a4497900df9e62d7369af3f734dd386b1db7bff648837dd88ca0b1dbddf6bc45d276a744d8f53c0e4f022dd80c846fc4858a14855b90e
SSDEEP

196608:oWRPMJC++kqGjICuQUs3kj/xznzWmcobiYSagQl:NRPBZksCr5S/x3WsbiYSa9

Score

6^/10

Malware Config

Signatures

Enumerates running processes
Discovers information about currently running processes on the system

cn.com.vapp.nxfs
1⤵
PID:4655

.accessibility
1⤵
PID:4840

cn.com.vapp.nxfs:x
1⤵
PID:4928

cn.com.vapp.nxfs:x
1⤵
PID:4976

cn.com.vapp.nxfs:x
1⤵
PID:5176

cn.com.vapp.nxfs:x
1⤵
PID:5215

cn.com.vapp.nxfs:x
1⤵
PID:5256

cn.com.vapp.nxfs:x
1⤵
PID:5315

cn.com.vapp.nxfs:x
1⤵
PID:5352

cn.com.vapp.nxfs:x
1⤵
PID:5457

.accessibility
1⤵
PID:5522

cn.com.vapp.nxfs:x
1⤵
PID:5614

cn.com.vapp.nxfs:x
1⤵
PID:5663

cn.com.vapp.nxfs:x
1⤵
PID:5710

cn.com.vapp.nxfs:x
1⤵
PID:5816

cn.com.vapp.nxfs:x
1⤵
PID:5854

cn.com.vapp.nxfs:x
1⤵
PID:5891

cn.com.vapp.nxfs:x
1⤵
PID:5927

cn.com.vapp.nxfs:x
1⤵
PID:5976

cn.com.vapp.nxfs:x
1⤵
PID:6021

cn.com.vapp.nxfs:x
1⤵
PID:6096

cn.com.vapp.nxfs:x
1⤵
PID:6163

cn.com.vapp.nxfs:x
1⤵
PID:6200

.accessibility
1⤵
PID:6320

cn.com.vapp.nxfs:x
1⤵
PID:6365

cn.com.vapp.nxfs:x
1⤵
PID:6403

cn.com.vapp.nxfs:x
1⤵
PID:6440

cn.com.vapp.nxfs:x
1⤵
PID:6478

cn.com.vapp.nxfs:x
1⤵
PID:6521

cn.com.vapp.nxfs:x
1⤵
PID:6574

cn.com.vapp.nxfs:x
1⤵
PID:6612

cn.com.vapp.nxfs:x
1⤵
PID:6716

cn.com.vapp.nxfs:x
1⤵
PID:6753

cn.com.vapp.nxfs:x
1⤵
PID:6787

cn.com.vapp.nxfs:x
1⤵
PID:6822

cn.com.vapp.nxfs:x
1⤵
PID:6857

.accessibility
1⤵
PID:7098

cn.com.vapp.nxfs:x
1⤵
PID:7133

cn.com.vapp.nxfs:x
1⤵
PID:7335

cn.com.vapp.nxfs:x
1⤵
PID:7378

cn.com.vapp.nxfs:x
1⤵
PID:7437

cn.com.vapp.nxfs:x
1⤵
PID:7474

cn.com.vapp.nxfs:x
1⤵
PID:7511

cn.com.vapp.nxfs:x
1⤵
PID:7616

cn.com.vapp.nxfs:x
1⤵
PID:7651

cn.com.vapp.nxfs:x
1⤵
PID:7687

cn.com.vapp.nxfs:x
1⤵
PID:7722

cn.com.vapp.nxfs:x
1⤵
PID:7780

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/cn.com.vapp.nxfs/files/.jglogs/.jg.ac

Filesize
32B

MD5
1a3870353cf0d6162dfa75f31e38efab

SHA1
c1056134e3578c83b942a942ec9643de3d8855c9

SHA256
545cef6017985ad41eacac7896f5e794f9d35da10cf5742453b53947aa1a04e4

SHA512
eaa22032ec9a3e8b33fbe482cdac5c933d32662920b31b071fc22e2323df08c0994ef2ad1aec28da737ce4272a9ff768f28d854dc264f244231e138dde564d22

Download Submit
/data/data/cn.com.vapp.nxfs/files/.jglogs/.jg.ic

Filesize
32B

MD5
8c1e8e4a7f50ade65552c388b5e9ab52

SHA1
7f3672dc4711710fd6b8bf48d2384c998983fa6d

SHA256
2b9daf931f0964dd60dfe56228109e77e7d2321ec1205ebf20a017fcc3767ba0

SHA512
5035a74c08645dbcf7e1790ebd4dcbf461d5c2d1d96d6537800c00738d2efb783915f194a95110aae4a8f5fe28188a07ecdf7746bf0dbba618d8a3f479045c50

Download Submit
/data/data/cn.com.vapp.nxfs/files/.jglogs/.jg.rd

Filesize
32B

MD5
d7f8be5cec3347290d4a9baa57cf1a31

SHA1
5a60ca43273c7a60d14d59b25c1badd3a8a5fdf5

SHA256
1816e1a38b8d91482e4d647c7a796846f519b2dddc0113bb9bbdf3f021ba9274

SHA512
90904cb025482131fd9ab14163fdb4f6876083d9d27dc14fe3fccf796e8c63f52585ccfcde7447d063b8da5cccf06c15dd0faf9211ab3bc7395290c4a7af9a55

Download Submit
/data/data/cn.com.vapp.nxfs/files/.jglogs/.jg.ri

Filesize
307B

MD5
84424b507dc15eb418f442646ab3eaab

SHA1
a3b1a865eaa6d90b2ee02af8ec9d481775c3e9c0

SHA256
77ccf078f79160ae79ef2f2e9ee26b2a2ed74d811cdb4c29e9e2ca5d12d1cf05

SHA512
ee769bdac78ab9e7b292abb8e7c5a87b6f34befb56448599898fd5889a145fd2a66aa1b85bef6e0fb6b87e488f2dc11c84e20560073a585c516f2f2a975f5098

Download Submit
/data/data/cn.com.vapp.nxfs/files/.jglogs/.jg.ri

Filesize
314B

MD5
c3bbf81d1609f04285c5aa123348728b

SHA1
857c3614d8ac2fb26037fb704e04b7044e113435

SHA256
7763ba6895b22cbc7374b55932796bdd3e16c7317ed9c8a83865f9e2ba2c851e

SHA512
287a110ff564b8d59c6511cd0632e2a749e7758f45b6f4a403c0cb8f1bd3a76e50e4ba09b4b2cd1eba2d8ddb632d8141fa71ecce62f4728bfd6087900469e753

Download Submit
/data/data/cn.com.vapp.nxfs/files/.jglogs/.jg.store.report_pid

Filesize
32B

MD5
ede14a176d93345420a2dbbf6bc4f885

SHA1
c6dbac8c43dcbd87aa072d40ec335604a8053e69

SHA256
997e450f76259e956ec434368319181c4196fbc02af5c3a31daa5b033deeaec8

SHA512
7cbf6f79484eb8549794e4e53cf39c6e8dde48f306d0e695dd95094572399cef24ec406c1fa4bb8f80eb150a2552f80024bfa6f197efdddf1a86988824b02cfd

Download Submit
/data/data/cn.com.vapp.nxfs/files/.jiagu.lock

Filesize
27B

MD5
821f69e03745aff7a89e48cb463d9ba0

SHA1
e868c2e099221346d52e2f612c10d529af42d4ce

SHA256
6e48f306dd8b950e21a5ee439adf0858c4d545334baf2dd47e068ba2a6055953

SHA512
bfdd6e07c1fdf580611460d52cf5815e0b1ff4014f902816e2f1eb0d9ab91da5c8cbc2a4a776f5b943ee1d3f601b681b8ec730a5e6098a395ad8f713779fa587

Download Submit
/data/user/0/cn.com.vapp.nxfs/app_mtajcrash/20231227101068.v1.crash

Filesize
14KB

MD5
7b5cbe7bd0f7f97314a42786d930886d

SHA1
2224e502021112fbfa9fb1ac7ac18d6061132845

SHA256
3bd67263d17a8f38915c91b4d77c91dd3e12f89401256dffa758c8a96c09f48f

SHA512
61a0af48ce13e1fca090e748673b0222e7459434c0f2310ab6a344a33f52aa1a01f2372b6cfad200fd8ca78e5cac5735c1e6e98263b86a11a088ea26a59b3903

Download Submit
/data/user/0/cn.com.vapp.nxfs/cache/ACache/1374311312

Filesize
47B

MD5
6c79244b6e1d76840a9afb2f1c4256da

SHA1
03418be7bdb2d14ba2b3221df7929cc78b71d517

SHA256
750cfb1cebae040819d5b8124ed5e7290381c4ba73b9978647ea9afea15fd692

SHA512
60c29b53a9e52e95c9168a7b152c58dfc2ab06bbee4bed31f3401f40af93828e5a4dc1d5a2099b6cd8669d1ad08efaf2be88a2f61932b16594b640ed7e5a5719

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/DK_DB_NXFS

Filesize
16KB

MD5
46b46d43db96bc883e8563598cf671ad

SHA1
3c1a66a48fad013e686911d2c526a5a03ed5ddf1

SHA256
68dda250fb323b71d90034ab3c0fc77b5400bcc80a6c6cb3cb8f4214f0399354

SHA512
b2ac7f5e811706e19ec1d693f79624a693a36254633504c30de49c62b1d534f5e238a3819da3855f2d485c04d2a8532dcb773c19065a5ea7d6932d51b476e76f

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/DK_DB_NXFS-journal

Filesize
512B

MD5
baa73021f9e44eb07e8c58796da6f760

SHA1
72aba2cfb242fe54f12461973e95b8aa9a6da3d7

SHA256
d7cb1f6c584c61c733acb6f3ca01c4a43075dfc5d4df4bcf0dd962bf26005288

SHA512
85b3fe907fc4a3dda74414412df5caf9a62f7eb116977c14bdf55cbc84db876d0d9b058383c89cdf50da32843ad18c1764def384288df049b05890db33691041

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/DK_DB_NXFS-journal

Filesize
8KB

MD5
9e0d0aa1fcedf2e1074cb209c17a8599

SHA1
bbace6c1741ad7d2a10f22b84b71bf1a79394990

SHA256
cba54594d5d37a1b18c51d4c55834aa78b2ec7568cd71e5a6e28cb99d88cac49

SHA512
30fba7b2970e1b78aabbe178de79a549d2cd8245bc014b06785a4aad23d0e500f690dcfd57c264b827a341d222b4e0dc4ddc578b05400a328e19fa93c22c0c9d

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/DK_DB_NXFS-journal

Filesize
8KB

MD5
670a4d026358b5cdc1a94f76d6d37afe

SHA1
a398d8f37e372d79d4f772f165cd265d5ee88ea5

SHA256
8bb19140d629843d8ea858080ba4ed97cccfae0b4cb4f905e455aad8203ee036

SHA512
78563530b0f819d707a8113c9f7c72025ea4d2173bbb03387943fe230c8c0f82cd3c2cfcb3084ed1d0ac8db081674d38b31e48ca8d1a687dcd42663f6c06d304

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/pri_tencent_analysis.db_cn.com.vapp.nxfs-journal

Filesize
512B

MD5
840212c9e52beb1e669fc4d8030d2107

SHA1
875ad9cecacb41559dd08aaff527ffda8e885849

SHA256
9c44a0b484b8c6f4a5adcdfb0a7b4d13d68303ce6313bfc93c16f7a1a467f600

SHA512
85f5556cbd10124a093eaae57c38682b4f8ab177e2a6d91ceab59fca271c896cc5733c0b3d5a83b2e6cacba88ccf82a306acfeeb46bd011683eb5d2be5495eef

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/pri_tencent_analysis.db_cn.com.vapp.nxfs-journal

Filesize
8KB

MD5
df61f6ca741f6a68e970cca6b78dfef6

SHA1
86a4fce36099040d95585dfb56b1bfbb92e1f4dc

SHA256
287111a7f890789801e67c8ddb427a03915d3e0f117b695011fc7713e90e5147

SHA512
9ae3aa7dd0eab3cdd24afe78c75f529e76c2763a50c002b6da3e7121b9efe242006501c5b9f05b1ca673232f440db25376147c643ed63b746200da84e2557d5d

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/pri_tencent_analysis.db_cn.com.vapp.nxfs-journal

Filesize
8KB

MD5
e6a14c6981b59c4cd4cc347344c5b65e

SHA1
a2a1ad8d0bc249410ee773c343632222479ae4e0

SHA256
00aa134de68159114111160ace6678653f7da416e941365e2943b6afec213c72

SHA512
2854b999350c5c37ea08513ca4527c63b66ebd2d9f7311728af88026c5d85133e5b5dafb6a2a80dec65fa9e739472c454ce02b55a9e6526ca98b1ac9e2e8096f

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/pri_tencent_analysis.db_cn.com.vapp.nxfs-journal

Filesize
12KB

MD5
9264360bcec018b09b89c13f8e1d13ef

SHA1
8e2541c15f180c27bb79da707ff3f0c3b30da440

SHA256
572e664309741f66cccd803595c6536d157188156c4498308e7a4400d32a05b2

SHA512
ca737d79147a67d90a1f05ad33daf37af30c98cf2255745942fa05bdb9a121227113192a0083c309c866a004d8b5d1be9a860fa13a70c05c14a612d6b4316da7

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/pri_tencent_analysis.db_cn.com.vapp.nxfs-journal

Filesize
8KB

MD5
79987ed818ee3b1617f8497542c4362f

SHA1
a1b5356843dd53c05dc6346dc5df5b5c2f1d9bbf

SHA256
4cdcb826c6118ceb7af2b6482be51ddfce6f8bd0ecbe5a689137de2126014f51

SHA512
6075a37041c6ef24cac62f9028038192317b402c0f173ba66d960a84bc7fdff09e894345e2865b037c4264c0ab30ddcf2f2390275badfa16d61bd18f3b443ebf

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/tencent_analysis.db_cn.com.vapp.nxfs

Filesize
40KB

MD5
45176c3d17a8fdc95589913768ba3156

SHA1
8522ebe8e827b1468d1d6759b870f59c3c5691a2

SHA256
f66593ea341b34f023b4afe8c5b65726d05c721cbab7099c7239081a522ff1ab

SHA512
1e3efc725c736fb1c063d8714f3067a703be164f946e8d7fab0de42ea3234b34adca20dcc4da2f4bc8522e35e52ca42d4a48ef015bbce387bfd6a34e0b0af0ed

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/tencent_analysis.db_cn.com.vapp.nxfs-journal

Filesize
512B

MD5
2df3890dba71519bbbbbb294f2a06d54

SHA1
a825ad703df1c7f17549879dfd7613f32787e9a3

SHA256
dabee9bab0ce1aa26bc0ac5a55b2f59c552935a83c40227a6798d81caaa26c25

SHA512
fa7ba724bff0dd5c32a95fb4dd0e1012ee4a5ad443a9265933e0d2e91b3117b693b5d27fea084f64a04407f2dc74f6efb30fb124650ffd1aee2e46db32b25f0d

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/tencent_analysis.db_cn.com.vapp.nxfs-journal

Filesize
8KB

MD5
b9076773a773e922ef890801fdcbc0f0

SHA1
bab47a5a99ebf214069362f3b3c31c0eac3a1ee5

SHA256
c13b032b0510b175403028b6e789c73ca142d948507e3c01df1597dde59fd633

SHA512
0f4dedfd6d7e7b95fab4ffb8881233e9c229ea11bc1161eb793a05d9f7b20f52ed9d163437225ea01ac202eb40005047f1bac81efb044682521b45ce250a7f5a

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/tencent_analysis.db_cn.com.vapp.nxfs-journal

Filesize
8KB

MD5
6f16fdadfb2d8d691b867ff1ff34f8e5

SHA1
5675dbda6a88ed2ec25a7bf709c243c3a306128b

SHA256
e3267ced836f76a9f9b4b5c4f6b10ef05b92f2b9c5e115caec78a4a9bbd8fd41

SHA512
51a691edb1838e380287bff7ec556e11002793ca2ca27cf626f012f06116b7aecce9cd3eb65f2ed262322e76147a6abf82eb73f46e98f6fd541c91d141cca2a1

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/tencent_analysis.db_cn.com.vapp.nxfs-journal

Filesize
12KB

MD5
4c7c4319a6b497d236565221a6fb1c6d

SHA1
2fc82e6c51632cd5c14a7748197a981e39b92dab

SHA256
a535b01bca725509ed00630d5a4e5a77c8d97f08d8bef021d9f9b14b0d4cb79b

SHA512
1661457149658175a0d2792b69a276b7781634f44e1c3e5fb1dbd74722521988dd1430ea1a2c26c1872f5961c3f27478900b716fcb1b3babb8143a69148d249a

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/tencent_analysis.db_cn.com.vapp.nxfs-journal

Filesize
8KB

MD5
98008ff90814d7092f969cec77700a8d

SHA1
6ee0e83ea11568cc72b1fd96fd09f58da9821137

SHA256
8e42c060bc227aa8bda1120a17804ba32ec19a85340746b3d8d4a201a445ff72

SHA512
9230c37d299f945787da2c961f242ba5d15c37d02fbcc00dc67268d61f5920cce88db9c38ccab42c0ccfea391af1d0be623680d2315c672a022a8b89632ae4b3

Download Submit
/data/user/0/cn.com.vapp.nxfs/databases/tencent_analysis.db_cn.com.vapp.nxfs-journal

Filesize
8KB

MD5
91deb4ffe3d7ca86d017ac158c3fd923

SHA1
a6f3f78c85382104c9ebbc56526b9f7eba48d203

SHA256
7250803318e4346bc38221577de2ef0c04455b480f8060da0ba64358450fcd84

SHA512
0ee481868fcf3ed4fb6870e528da32291c735c7297ac50b0d81c1ba509d3520de875afc65ed3a13553a88d07596bd3bcb3fac6b3995f0ce6816895b484419f17

Download Submit
/data/user/0/cn.com.vapp.nxfs/files/com.tencent.open.config.json.1107927737

Filesize
1KB

MD5
f526172de1566b34fdcea744710d9559

SHA1
000cb54d9a008a807a1c5a3fd2b2e7cb41e7939d

SHA256
8572be02b59f4d514000939ec04a9b4e2380c55265256b724a617d8d0f4c6940

SHA512
dc81f0fe345b18c96b1638c67b9ef4c5e60059dfc4a02f3c30a23645d4847abeef46cf467d044c42597115c48052ce0e8ea24328382114a544c5dfd039a95e7d

Download Submit
/storage/emulated/0/NxfsCrash/20231227-101016_cn.com.vapp.nxfs_main

Filesize
9KB

MD5
e426cbca20267ee7cc989026b839f275

SHA1
f98ddc374f329467a3f6e3fee93aed604fe16fe6

SHA256
51be4e373329574dba47947ea333b897fc7b95534d1645ba964ba0d364d5ab99

SHA512
10e4c2e81f2c295885874141b6658501e3abecb566b67d2235cca2437009523faf90f50373d56980e216ee776b2aae52c8297501bc3b16b77fd218fb7afe5356

Download Submit
/storage/emulated/0/NxfsCrash/20231227-101110_.accessibility_main

Filesize
2KB

MD5
466e2bfe6ff68da67ba89365bccfe087

SHA1
06e32ca12f05aa17dc5dda3732d636fa281ea6a2

SHA256
411cbebb03456a22a742326912d51da2ae41515ef7614dc63b5e7ae9316ca38e

SHA512
30c2dae496dc9dd275830142e19b61262cbe328745e3cdf8be53379f5757e3b7f443464eef2c30346de6076cd06fd0f429cb7cde0f972c3d6b2f3f53b8cd3665

Download Submit
/storage/emulated/0/NxfsCrash/20231227-101149_.accessibility_main

Filesize
2KB

MD5
bfcf2b922fa8e323cf7ce63715fc610d

SHA1
db3672e586e8bbfa60a74a54655bc18ba07f2c08

SHA256
2942e4ef22c1d3ef760eafc3d6d48d9dcc395243a5890b9b02f42ca89239d3d8

SHA512
7e5427679d19622907cb66b9d81d483352528e7975b3c7c618a5bd36fe555262deee565a6a5b9f105ec57434c9ea85087701111d05851b87691b01e6d7202aca

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads