Overview

overview

6

Static

static

6

23f66714bb...b9.apk

android-9-x86

6

plugin-deploy.apk

android-9-x86

plugin-deploy.apk

android-10-x64

plugin-deploy.apk

android-11-x64

tv.pps.bi....in.apk

android-9-x86

1

tv.pps.bi....in.apk

android-10-x64

1

tv.pps.bi....in.apk

android-11-x64

1

Analysis

  • max time kernel
    2811808s
  • max time network
    161s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 13:43

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    23f66714bb433914266ce0254cd1a17e8b0f321d4ca3ada53923ef8d6e3f93b9.apk

  • Size

    14.0MB

  • MD5

    af415a3359d964aeb33a978a949a1159

  • SHA1

    065a5da17faa791828311ea0e466b6eaa8e8ee0b

  • SHA256

    23f66714bb433914266ce0254cd1a17e8b0f321d4ca3ada53923ef8d6e3f93b9

  • SHA512

    2b051752fd251366322d45d734ffb436a253d6062b5029ad3845ff6463b47b22ea081243d8915cd7086b6d0209f1a0e5df7b3d1e52567445f196dd3fc5be41ed

  • SSDEEP

    393216:n6L1A5hHadaY30x8HWcpsLyQdLIy9oatDhkcdt7UJJL5J0FpF:6etadh0x8HWcMfJL7SsuX0rF

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

Processes

  • com.qiyi.video
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4263
    • mount
      2⤵
        PID:4298
      • cat /proc/cpuinfo
        2⤵
          PID:4337
      • com.qiyi.video:pluginDownloadService
        1⤵
        • Uses Crypto APIs (Might try to encrypt user data)
        PID:4367

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • /data/data/com.qiyi.video/cache/content_cache/homepage_data_1
              Filesize

              69KB

              MD5

              1a8eea319d0a766d6cdb3eb3c32ab71a

              SHA1

              e0b13d06957df8fe603305d18003f5c335de6349

              SHA256

              b055df1030bebb22714b7a2393f5f06814d7201ba5750034fc567dcbcad1e3f8

              SHA512

              c0b2c8ac14a1687a7db40b397dc749265bf563b025ccefcdb68cbed606491c10d71fb00e70e476e2bf5720b45c822cdb4f66f3bb1e359c864727a38d2a07a27a

              Download Submit

            • /data/data/com.qiyi.video/cache/content_cache/homepage_data_2
              Filesize

              157KB

              MD5

              564881487b92bf9e8d26162ed347cf8b

              SHA1

              37c9256342c0525d76f4534bfac24c645cfeac5b

              SHA256

              d98d2ede9d0ad85960b9f86639785a1338ffeaff65ede81ee9a38e590fa5368f

              SHA512

              3bf4a59052a9ec30b039eb8dfab0790f2c15179616115feea99408ae7687cf3f8a25d8712ace491053887a7065c32d58ed82a89b405c73db7f31ae99b8a1bc3e

              Download Submit

            • /data/data/com.qiyi.video/cache/content_cache/homepage_data_3
              Filesize

              47KB

              MD5

              c3a611466295f0afb3fd19b1b853ebb1

              SHA1

              610a5052eec2c6d6bd668d6d1c922cd6cbb7fd23

              SHA256

              7399b7f38d2781924bd0a4a9d51a5226770fec36209b648fb74106b24e35228d

              SHA512

              cf84d23ea79afb7af76054355e95da4761f4afee8cdda475ff10b73c814dc18d831bf4dcc3d2c120eec10266f54e93b8a7dee0c7432572ed6cad108040b72486

              Download Submit

            • /data/data/com.qiyi.video/databases/app_store.db-journal
              Filesize

              512B

              MD5

              f635b3b6bec7663d71b011ac4f047d36

              SHA1

              1a9851ed8394d4097067145d08bca571de56a8b0

              SHA256

              f13d0c98912484b3a78bf6f14596a7cdef0d2ffc1d58004ff9203fe6feb211e6

              SHA512

              3bde2ea6c842550e76cd1add2e9feab119d606711f5aabd5922b28fb7110cde69e73ce3f50dd1855e3a01ff8a71c651b2df741ef73f7e3b30f5d1c7f403538d8

              Download Submit

            • /data/data/com.qiyi.video/databases/app_store.db-wal
              Filesize

              32KB

              MD5

              6d526847655c1b4fed52b0ec91d882d8

              SHA1

              e2dee3ccba521794b77601135de9e01accddaa45

              SHA256

              e202f7b28213a1325d75e5d744a98e4d9c3690a2735ee1f3a596bc57d7512905

              SHA512

              8f8b4b7a399a77664587daee3c2b0671b8708b2e53f21f5a0891be4b3f30869b4dc8aba097f275b4a769a60bdaaa471a6ee67f9c7d153c2c475ef2b83d56d867

              Download Submit

            • /data/data/com.qiyi.video/databases/qyvideo.db
              Filesize

              4KB

              MD5

              f2b4b0190b9f384ca885f0c8c9b14700

              SHA1

              934ff2646757b5b6e7f20f6a0aa76c7f995d9361

              SHA256

              0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

              SHA512

              ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

              Download Submit

            • /data/data/com.qiyi.video/databases/qyvideo.db-journal
              Filesize

              512B

              MD5

              ecf5ebd43d454ad89fca38fe56bdb64e

              SHA1

              b842f4ac106688bcc063a30e899812fa9218a963

              SHA256

              5ffec8a0584de49f4c03c5d9f87f120914d192224eb3f3bf6ff5ef575dffa8f9

              SHA512

              7df7915d0a6c005b9a36027a59c1a9c54fe377c34d37135151e019f391f2663b10f8082835562197875677e8fa5a287d29d2c5431008f285833d21b712d0c937

              Download Submit

            • /data/data/com.qiyi.video/databases/qyvideo.db-wal
              Filesize

              16KB

              MD5

              26dbd24a81a0749a62697a017d26cbc4

              SHA1

              46b9634f7e2afb00fd2b401b916c6fa0d0fa1f2d

              SHA256

              753a43334c89d436f50e2b1e85f64e43fa5dbd15e50e8f0da6d642b7697f00f3

              SHA512

              cf9a32d9d2a2519108ceed15ef86095f44cdc5711dd6e7f66799ceb0a7fc671aeca8e85205b13dd5c87a7bdc1b521eecbbde0ded6b116913817922245294661d

              Download Submit

            • /data/data/com.qiyi.video/files/qyvideo.db-journal
              Filesize

              512B

              MD5

              eb36f9cd0db17e4f07f905a3880a7512

              SHA1

              0f10bb9461b3a2b135fe6b3b1aa2c553b173b649

              SHA256

              d05253155cbfa0f18cbe6c72c58a035d29bcbbce8e6a99aa24438fb073ee50de

              SHA512

              6d51bdde26f6c6accbe484a625105fc5b9c93598ceee7dc45cccd54651086750add6db316469f0c22e20c64b57a392710ef480a80eee3283fc2f20f481b2cdd5

              Download Submit

            • /data/data/com.qiyi.video/files/qyvideo.db-shm
              Filesize

              28KB

              MD5

              cf845a781c107ec1346e849c9dd1b7e8

              SHA1

              b44ccc7f7d519352422e59ee8b0bdbac881768a7

              SHA256

              18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

              SHA512

              4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

              Download Submit

            • /data/data/com.qiyi.video/files/qyvideo.db-wal
              Filesize

              16KB

              MD5

              d02cdba0acedbc5d6346c5e45204c1f9

              SHA1

              9a7bf36298cfd594b4d8b3adf75fe2e432e5c82e

              SHA256

              2477b2abdd534bb657860841387b0f6819fca340b145a7a350310a71bdecc23e

              SHA512

              931e7e178a25c65500783d8801f9f131ebb0a6760526254aa9ee0fbdfef5f76b25797a9988ffcf54decca1c6614efed1bf6ff4c9c1fb65176d433eb549381919

              Download Submit

            • /storage/emulated/0/.UUID/uuid.data
              Filesize

              32B

              MD5

              96a837e16df9b38df69a5f95b20195e8

              SHA1

              54d4be559b09571d7c23c612791a1743bde0a04d

              SHA256

              cc4e0392e7ae1926e32dca4d96eed5667ce56be89bb21bfa3eec441dc829f468

              SHA512

              06802c56a40742ca681ae75534737dd055ee37d1fe9f0dd13b9daf94beb0c117a75f819dd6f81f06af124babe85004a87aa8c7f3c0a807e66bf19f3cba2a07b1

              Download Submit