Overview

overview

6

Static

static

6

02cb981679...c5.apk

 

02cb981679...c5.apk

android-10-x64

6

__xadsdk__...__.apk

 

__xadsdk__...__.apk

android-10-x64

__xadsdk__...__.apk

android-11-x64

Analysis

  • max time kernel
    2848241s
  • max time network
    163s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    23/12/2023, 11:27

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    02cb981679cb5fbb49504e71127cc381edb871d1de402030d7e205cd7473fdc5.apk

  • Size

    4.1MB

  • MD5

    b2b84895de7ef99f517ad4b3d14636ba

  • SHA1

    cf96bd5342de7ff8619300b6caadb0d178815f68

  • SHA256

    02cb981679cb5fbb49504e71127cc381edb871d1de402030d7e205cd7473fdc5

  • SHA512

    c087e9e0afe683bea421d53b48d59d0895f7dc8f4cf821a398da0a59f9577bdd37699c7ffb3f840db15f85edd990986beac1ecfddcebc67cd11784889189cf72

  • SSDEEP

    98304:xazNAVnURRx72vzxS4xyc2wirB8yMyZq6i3cIfyo3eu:sNOemzjZGuyVZHqVfy4

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.sqstudio.express
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4985
  • com.sqstudio.express:push
    1⤵
      PID:5045

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/data/com.sqstudio.express/databases/UmengLocalNotificationStore.db
            Filesize

            12KB

            MD5

            ea628e04765adaf4238a5dcdff4bbd51

            SHA1

            a801947619ea8c368efe9c006a324dc6339ac60b

            SHA256

            885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

            SHA512

            c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

            Download Submit

          • /data/data/com.sqstudio.express/databases/UmengLocalNotificationStore.db-journal
            Filesize

            512B

            MD5

            d01cb1ad1a8eba1da5770709c6efa045

            SHA1

            41aa19e39ce7dfefe2acda9bc36ebb4839c3b582

            SHA256

            907747e2fe6581eb75eeec5702c0d05d60646d742f8afc44bbd7147e71ece2bf

            SHA512

            06c7949edff14e7eab4e22bf78ffc5a7c770d49165e3950e21e5192f9369431cbb560dcb7262acbc67f4119dbf62a24e8472a6a1542fc23cf598ae490db0b1ce

            Download Submit

          • /data/data/com.sqstudio.express/databases/UmengLocalNotificationStore.db-journal
            Filesize

            8KB

            MD5

            eb98b96dfa7d46a51562a22d0a8afa31

            SHA1

            63f48867dd7aa23833a016ee2f0a065475d1839f

            SHA256

            872f5c94421dac06de339ee61f3dfbfa1668b0c454229fa3aeae73746b484b15

            SHA512

            06b5ec7b5a2c2da244924b8a8acbea25fbe07b8b8257bf225e6666216eaf3ca0d1276942c7a6db518f4cdde7c9c349520da74c2d9a40c1228c036d6cdf4dbbf7

            Download Submit

          • /data/data/com.sqstudio.express/databases/UmengLocalNotificationStore.db-journal
            Filesize

            4KB

            MD5

            bc0025c3b3599d3bbda8e7c9b91fbb41

            SHA1

            9531dd3f120b6ea0a895fc1cc7b4e8adc1bad5ba

            SHA256

            5033a5d3b485cb83d1da4f04ab1231e2b12137963e75351421913ee6ea31d58f

            SHA512

            d0a3136883b68b1cb4cafceabc7e4b3149bff0e35d0912da6d039299f7af831c623b4506e8bd4431ed54c275cb3b792ea1ad362430929b23c89a0ba4d4c90850

            Download Submit

          • /data/data/com.sqstudio.express/databases/cc/cc.db
            Filesize

            36KB

            MD5

            67c12933d1e0e63d9801a6aa43092ce7

            SHA1

            b6936908554e4a1986b8eb08289e2d3545e8ff74

            SHA256

            abda5dd4cc2e7dbb951637c4b49d6990f9f34411fab4dee1a387dbcc8e7eed40

            SHA512

            db8b818daa3ff4ec7678645f84bf8b45c809bcbb758ea78b28982d071572655bba2d20e6f1ca4f0d057ab34fa655c5bc40457dc65050180351a2fc04a47175dd

            Download Submit

          • /data/data/com.sqstudio.express/databases/cc/cc.db-journal
            Filesize

            8KB

            MD5

            9b15b79edeec4890d8b7d9281d65bc33

            SHA1

            a8e8f498660e4adb37e74ac5f28b91ea74720097

            SHA256

            55a4a7bd1e3a684d1e3b40777c78e37bee991a2adbecfe3ef236e9144044ac24

            SHA512

            e1ab0de144aaed8dc49acb0627ccad15ef693299bc2ddadacb081bc629c5026ce840517be17f516f668ee001012277787ac78cf0f1bb67d05c95a184574a4721

            Download Submit

          • /data/data/com.sqstudio.express/databases/cc/cc.db-journal
            Filesize

            8KB

            MD5

            173f9345ef71fe7f696a8fce11622665

            SHA1

            cb3fb6a27391bf4983160bb16efe3b051f8474df

            SHA256

            9d8d718091d976237ac776269b809f288d6bb657c7d552e8d52a182563b4cd9a

            SHA512

            b9b54787658d0ea70f09e97be487d49d3b03eb170085f25b7a617be5a0e43910ce104a5962caec4024f76987545f201333a377c71520e0af19624488b64f939e

            Download Submit

          • /data/data/com.sqstudio.express/databases/cc/cc.db-journal
            Filesize

            12KB

            MD5

            f0dff37e43de04e39dc9d24ce4328016

            SHA1

            3b9535202371a452d51c1fddab1cb24a4be2378c

            SHA256

            82ef2b0c5679dd03ca6e5e675f211a08458291fe7cf2ea033a22d938f77dffcf

            SHA512

            0a0b91595ea77f69c0e459ffb7d53bef31bf316073f1080414d5656cdffe074d0863824c81023cb46be3574ec2984f6b245823e84da4b1895cd60306c405471f

            Download Submit

          • /data/data/com.sqstudio.express/databases/express.db
            Filesize

            28KB

            MD5

            9458dd6a9e95aee6fd5201170a1aa749

            SHA1

            068d4bee2fdfef7fcf82f406e723a1fd21768bba

            SHA256

            d73d3695463234d45c7a7d0aabb78ae8cee4de3f7c90536cab211a99e683d8a1

            SHA512

            7a40057240be18afe6491be513209dac2f76c61e4e9c36b0353a7a75a5b440ddfa2824a766c5a695dc8ce267d5219e37d470ce57b78439ee8a12216e07b274fa

            Download Submit

          • /data/data/com.sqstudio.express/databases/express.db
            Filesize

            28KB

            MD5

            cb1c31b36f1ac897ec7b91d6aaee4ab1

            SHA1

            8d7ce69949233f5ae3f0de49b2c0958b2a318a59

            SHA256

            dc1a41debe735a15522e4f3f77ae0feab247b15cf82a659bb51f7988d4e64238

            SHA512

            faf7e476e6480ab6f911ee4091dd44d5e427c29b442f00452e223d01f523b3ac9009ef2ef87ee9b17b058c5071afaff0ec59364393e0c68690195a59772c9844

            Download Submit

          • /data/data/com.sqstudio.express/databases/express.db
            Filesize

            28KB

            MD5

            336c3b38e7a0266339f4d0d31d54c940

            SHA1

            cc8a5618a52b276afaa6a5de62fc62cf1546948f

            SHA256

            04ceed36b01d9676e5844f9a98b06513f6a8edb4cf5effe9e18c5b004c113a83

            SHA512

            1283aedbe00a051cd928cc34949ca1f1a4d9502285f0cfcd2f1f85bcbbe48c16441a59229aa7d7f98d913e366ab1f4579a56b89a5ee34c2f259d4a171e6a3033

            Download Submit

          • /data/data/com.sqstudio.express/databases/express.db-journal
            Filesize

            512B

            MD5

            d61795ae7411f68e8d709b46f1af5241

            SHA1

            7f9e263e6659c8ac9ca3b6d9e94bc85d85897aac

            SHA256

            623b335cc489c75883c5d1ac989c72d0fbd4e5bfcd259f9f723fb554cbce277e

            SHA512

            e206c3bd09ad5a92577d908b137bdc316c1484ba6b1c9722be8fb848a4b2010a0b60e8ee5de01fdad25d4b909da2ef47074e9648410e20515ec90f61a77f19c5

            Download Submit

          • /data/data/com.sqstudio.express/databases/express.db-journal
            Filesize

            8KB

            MD5

            e053757a7f3ced2803518116132f23c5

            SHA1

            c87bb7e2c2389b3cee9908abb8a2a2363620b713

            SHA256

            9ed5bdf6f5b13b48db97dadefab7e545d5816ddac0cf52897b3131a7670ec539

            SHA512

            e86f767cb3d84d0f33c1d390d9b60dd312445efde6032db7fb6360a2d71746b17dd5df24291dcbb7adf534a171d5b959d3221ed872bdf926b01e5b600453eea3

            Download Submit

          • /data/data/com.sqstudio.express/databases/express.db-journal
            Filesize

            8KB

            MD5

            e6be77bb87887300b9526c657cf487d6

            SHA1

            fb262faa7b09873cd505c2998510b0a140401ba0

            SHA256

            b8a35889422e26d923299ccdd226542f94b40b4614cea1bae5259b1467345318

            SHA512

            7a94fae9236c5ea82d7e47a80868a391e744d845e91409b41b1ba69d08ad1d9ac822a1c3d3e615d5548c022235e9031975d4708ed0fc68171293a372954bb6d0

            Download Submit

          • /data/data/com.sqstudio.express/databases/express.db-journal
            Filesize

            8KB

            MD5

            f1e95ea631284d28498e23f340222fe2

            SHA1

            ecb9022f22f2adf41c497898af79c73edb68b7e7

            SHA256

            e5d283579a46fa387252389de94b98730ba284040b25a9f4e5433b2effb5b699

            SHA512

            7ee6b48f24903dc7f93106c847ef14a9b696a3519e284cc1163a450d70b21123cee3d8cbaf6fa059fcb0e7ca58f6d52a7b3f910ebe2982c6f08fdb661202d724

            Download Submit

          • /data/data/com.sqstudio.express/databases/express.db-journal
            Filesize

            12KB

            MD5

            93887da3dc75f2eca90b7475aabfa036

            SHA1

            a9b8447ea8e45891047752af2f575b4f324fd4f5

            SHA256

            f6c446695e8da284f121a110a792b0f95da0517c324aaed747bf1f998557e27a

            SHA512

            74e1df5a32f50e8e64366ad9b7100afc96a322306aa82e69c6ee04ec0582508ab82901e7c05bfa9d70d6a60202ce55b5d0d0d4871c1c046f01ba0027c709ca7e

            Download Submit

          • /data/data/com.sqstudio.express/files/.um/um_cache_1703655290784.env
            Filesize

            1KB

            MD5

            12763d201e236db7bf6d6c8d2c8c6b4f

            SHA1

            6478028e2cb776449dfbd1c3ac683652e8da3c88

            SHA256

            9259418659284d824fab776ab56bb10f0b524da37befaa0a59e7786af7f74154

            SHA512

            74b671535a38fa1adfb7c0bf1cf0b8edcf0fd858e07d25ab54c1a6a4d0b17e6b0bf00fa4adb99f9f1a94df80c633934be779939a0a04eb72fb3d85727a2180da

            Download Submit

          • /data/data/com.sqstudio.express/files/.umeng/exchangeIdentity.json
            Filesize

            162B

            MD5

            339047bebbdc4dafe12c6b468f26ff10

            SHA1

            6429d7b09c97400b6a63de9c610a83cc4c7fcec3

            SHA256

            0383e57673256b0465b39ebb35593c89459ef4b97739456e328ac0d0481dfbe8

            SHA512

            f8b18667253548d1fdeb6a3c6dfd4dd525d9f7ce3dad64b079a4cf4efd0c0f6671ad84ece72d9bbb3162d5033b1a163b6131539b94b3b0eee357b1f093b8604a

            Download Submit

          • /data/data/com.sqstudio.express/files/exid.dat
            Filesize

            56B

            MD5

            7a83fabb8c38b215324b413f25848240

            SHA1

            55964f6d5bcfa975f522acfa3bf6845795695e99

            SHA256

            35a17b215403bca9e180ef08887b0aa8184ff036c5951493df58cad044605d2d

            SHA512

            da80a71a2974f350f1a665b4483ebb32a4872507bcbe2780a42cb5dc16496dc21ff748942e21c85de063d672efa009127d3404a31d5bf8faa89510aadf7efc72

            Download Submit

          • /data/data/com.sqstudio.express/files/mobclick_agent_cached_com.sqstudio.express16
            Filesize

            2KB

            MD5

            87e70a1324200908c2a094bce1619e06

            SHA1

            3868b0295f26486669923fd4a6436ebd4117f6ef

            SHA256

            c86c0a5b3a2191ee3fa8fa9c32ccc41607c8b582ff2c334e0eba4b1ad5ff0c9e

            SHA512

            f39db2526a4cda132e230bbd6486be82431876643a6a3b282c6ce2f85137aad49193730d3ea98172a562ef8220f96abdef7ea79d7372bf7dd939e38192f5fbf4

            Download Submit

          • /data/data/com.sqstudio.express/files/umeng_it.cache
            Filesize

            435B

            MD5

            e920aca2da10ca4dccf508aff718a384

            SHA1

            2cd32f31450a30369ec29d485242e09a01a22949

            SHA256

            1901e0e6a44d26be9c6271b563efd634d275c81140872b6c04bc1d6ed9864e8e

            SHA512

            701be4cc11e76e70751e3f1a1fcc38345ce01f8006901bab5c7ea7ccf8368aca846b074f012fa45bacd052ec1e3b42a7fcdce27f9eba94c48e492efe82697e84

            Download Submit

          • /storage/emulated/0/.DataStorage/ContextData.xml
            Filesize

            8KB

            MD5

            6cc7e0df7a20fdd0e0cf1240089537cc

            SHA1

            468d937af14ffa9748a69f6234ae7200060af4d0

            SHA256

            87698a5aef3b30aa24814be902e55fd878d9f7e4ab21370fc832af46014f217e

            SHA512

            c564f6e19986d2208fb872849cf86ad4d826c4a8e91a6995a2235d4f34f00bebc409e88af8a854e8242a90c5ceac653157b3a2821e5833a435098dbb1eba79f8

            Download Submit

          • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
            Filesize

            512B

            MD5

            7c6211aff0af5fa1ef9d23e5317c0157

            SHA1

            dd812e48eba5a6f2e0150381035aeb38b43657f2

            SHA256

            ccda1dc0ca7b5285d1a60a6a2db7d44cb5cc18737e7b9e0f95dead633d541894

            SHA512

            fe1aed859b0df098971590bc4922c4daf8a7e5e0d6cf8cc118f0d689a578b1cb3902fe87c1f1d78f056e1997a50618c71c4a79cce5c4c7566535650f10d89e9a

            Download Submit

          • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
            Filesize

            8KB

            MD5

            804476d199b0f26f262ae3d2abc35f67

            SHA1

            db791f0bcc110a3ebcd8b4ad7f3953dab0b34c5b

            SHA256

            a1a6313242e491174df4ec51f1a98fca7d859df7fd12a2aca3a8f327813f37e7

            SHA512

            2b4492680d33f64950295667be6b0acf787ac52f5d97c08316023b886bc365e53369fb4cbf72a7a7f69a336ce83e81c1aa8d01407267a868b3d28660a44948e4

            Download Submit