Overview

overview

6

Static

static

6

25ba48f809...0a.apk

android-9-x86

5

25ba48f809...0a.apk

android-10-x64

6

Analysis

  • max time kernel
    2673915s
  • max time network
    158s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    23-12-2023 13:48

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    25ba48f8091d2e29aba6af8b9c3b94e7f3e594513b8f28817c1f9033dd048b0a.apk

  • Size

    12.9MB

  • MD5

    618a9e4d7bf2b8d7530a76e94aa95670

  • SHA1

    7106cd777bc87da91e1f88e1b39dac1ced5fe903

  • SHA256

    25ba48f8091d2e29aba6af8b9c3b94e7f3e594513b8f28817c1f9033dd048b0a

  • SHA512

    7d303e9dce2aeb25a3939ce5a47421a48a63a5683f90c3039bafb6634546e3595f708b49b8787d9146ecb81e35c562e1b6628ecd5561439fe25da67fb8c8b095

  • SSDEEP

    393216:ORrHlrI0MLYdFe2el4B/reU29d80w0LD/L1r3ZIw:OVhI0SY/eyDeJn/pr3ZL

Score
6/10
evasion

Malware Config

Signatures

  • Reads information about phone network operator.
  • Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs
    evasion
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.yxxinglin.xzid374
    1⤵
    • Listens for changes in the sensor environment (might be used to detect emulation)
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4960

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.yxxinglin.xzid374/databases/RKStorage
    Filesize

    20KB

    MD5

    0e72eb7af758379933df475981fa447e

    SHA1

    ddd6e54084b247d26d9e07bc060af902893765ed

    SHA256

    783b181ad5e6d50d16ea508a65aaa863be5eca89b6950a8ec2d8d9250d172427

    SHA512

    ad1e4a4a2e302e9aadf7c51a3f6d64aae514440ebc4409cc2bc4b117ee16c0ac838edec7bd407d347dce46d0cd1b7c2a835aea6f90636ac9983ef7c6518d1730

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/RKStorage-journal
    Filesize

    512B

    MD5

    bc5e86106df8c00c28f0d3bc8969a631

    SHA1

    2e4c76dd7c6cafa4508470f67007605baa34d445

    SHA256

    57c2b0ff08b015ee097d53a3016922428c28f5737429f34b64736c912eb1888b

    SHA512

    8eefb2c7135d0aa2db3946553b9e456b0c7212608b6d08a28c89cd4e3a11c8c87e33cfe31e7ebfdbcd702420b40efd833ecafc2a060bdaea3f5f1ffd90ad45cf

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/RKStorage-journal
    Filesize

    8KB

    MD5

    7e0833aaed8b48a2e04ce12c80776752

    SHA1

    814ff71518a6436b4376226af8c12956dde27def

    SHA256

    9b55e269252aade968ff2a08ad8a90a244ef50a3888340377859bdb4b1a2040f

    SHA512

    6d9d9b5c7520745fc6fa15e2bac9513c174e6cdf988e83cfd75dc7f32161ba95cec64bcea303dab3cb8480a44a447db24a0365550f25bdd23f8a967c5ba62387

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/RKStorage-journal
    Filesize

    8KB

    MD5

    ae22fb80f70030604b6cdc88a238f70e

    SHA1

    6e93edc9ec5116f86471035395a1ad36170bc3a4

    SHA256

    bce7be877a0b39f56659c7c5d513059b71e0f2cd189eff0f9da074c26bf02cdf

    SHA512

    b85583b464382082ffba8d32c8b352745840f1faf1cba922e5afd96a2f80f74ce4d18e28444791869ed3eacb8bec02d1dba3d63c6eeaa4b5acb624a6a564bc96

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/RKStorage-journal
    Filesize

    12KB

    MD5

    fc05b17cf3feb55c7b20b2297057116b

    SHA1

    259f77e06d518584139905e76e43301525fd4b44

    SHA256

    e3e37333bcb6abb4ce314ce54c38aa52225f44e00fdfacaee6ba940b7e12d8ed

    SHA512

    547f84b49f7ae487f39aa828476e92a47d6be5fa800db7054533b940b2109dcd3a8b84603d56f13bd5ab64e7376b1ed0c1a8ae82d2561784de32fd7cce8f8285

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/RKStorage-journal
    Filesize

    12KB

    MD5

    0dc7dd75e77d1f207e7946e82396ca41

    SHA1

    738ae44f8799ade70f7e18c4757423d9c35f575d

    SHA256

    ab27fa0d8b2f2a748513d9944eddbcdbf5d252004f691300493f1a383e090522

    SHA512

    5cb63763e5784ce01f5f3f4c6b81ef48143dad748741ef7755a108c3f7cf64a57e2a6648f86a5526adbdbbb3fe219a6e74d959a57992d1ba20426572a6827dd1

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/RKStorage-journal
    Filesize

    12KB

    MD5

    e6d1a8f2e3d2de014798136518675794

    SHA1

    cdc6f547781bc094a01514c1cd954471c19c4c00

    SHA256

    2acc550d4230595e7060b456edc8331eb4b72e7fcfe504d1ab933c37abaa6a25

    SHA512

    a4ba0f4d0a97582b1617c0590cbbed1d4b45969dccca486dc0fae06a6a800e6a23068fdc235261b56cca92c221bb63e4895cfcbf1329612755e8fee6186c1bb1

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db
    Filesize

    36KB

    MD5

    0908e924aa236931dc7166fef6e00862

    SHA1

    7782648d6d8f6e835bd47058d4852932c096a467

    SHA256

    38f8548795ca7470b449dd1de9598c07a247ba59883c0764c9c96ff0b7d31d7f

    SHA512

    3c16fbc5172aed04cd206e776c46d26e911732c6e3631536410a71f1d217449475727ac9b3175e827c5ce645a1da9e05900258ee6ca27c936a9060f241361dee

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db
    Filesize

    36KB

    MD5

    67c12933d1e0e63d9801a6aa43092ce7

    SHA1

    b6936908554e4a1986b8eb08289e2d3545e8ff74

    SHA256

    abda5dd4cc2e7dbb951637c4b49d6990f9f34411fab4dee1a387dbcc8e7eed40

    SHA512

    db8b818daa3ff4ec7678645f84bf8b45c809bcbb758ea78b28982d071572655bba2d20e6f1ca4f0d057ab34fa655c5bc40457dc65050180351a2fc04a47175dd

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db-journal
    Filesize

    512B

    MD5

    83f925fe21aef939b1ee03f81a027716

    SHA1

    84399859472a6b581da884b763cbbc3dae38f8f3

    SHA256

    7a62e5e3d3b0cbc03b5f9b39b6b8cebb70d4c13429e81d9ddad5f46a3a7c0187

    SHA512

    c6be42ffd33aeb2a38ae1b17460d143b30c36cafaf0a8be8c9d6ff3fe42281fba0e59a9272f2e596811b9883dd06d05efe3aa465a9847ae6762c7859617e1e74

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db-journal
    Filesize

    8KB

    MD5

    ef18c8a2bdf20698d911531c89a2314b

    SHA1

    a91b85a116883f30d6d615b38b6fc25d9eebdd51

    SHA256

    57d3e4d380b5312114989121bc6582c10fac6717a9f2f406f9bbe40af7adef37

    SHA512

    b3f008af384c417bacd9816e8b032c43cbdf8e9856c0e3192ea7a49b757da8b75780f60f55282e7a39a31429a0b91ee4eb52252392b493d2b0702e94d41467bd

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db-journal
    Filesize

    8KB

    MD5

    18af52f37d47a5bb088ac1a1194d594c

    SHA1

    42c8fb6b2612729b62737e3413f4742eecad2e2b

    SHA256

    5485978781f816b3b4c992ba3a513f7a2f5358ced32ef87899ce272c3b54c0ac

    SHA512

    ca36d55c2ca8702e833e5beba1aadaece07e0ca7b6da16a21cc77a683fd716986509d5c276e06d91a5875689b35fd7058c9889353d81b33d7da05112787f5b42

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db-journal
    Filesize

    8KB

    MD5

    06020654e119165e03dba86266992e37

    SHA1

    dffec805defedd09013396281144e4ade440f830

    SHA256

    aec719218d607e74731428a725019bf6e207e07fb55e2164335647a75938f13d

    SHA512

    12614280c1520c354fe94e41ffcbd94b4450e2beb7033987ea68779cfc23aa8a33833b444433a1649cb75eb18b29c499d5aea2887e861d3c5f04177dbcb06373

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db-journal
    Filesize

    8KB

    MD5

    605c0177354810c5f34cbc4c48df804c

    SHA1

    c0b47a81a338a07a627402e97d87d48a63ec2c05

    SHA256

    6da9faf50fb65d79e5017a945b59d44e710e4ac271f57890c046d988dcd76433

    SHA512

    8e31c21fde79e3848aa8c1a4e47ba3ded9679c7d1403454f5bc805712a9943ffecaaf5d40fd4350e0183e4fa0f306675be85d53aa5b14bbb365520e6d8a4ae99

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/cc/cc.db-journal
    Filesize

    12KB

    MD5

    574b9700b5ee44f2a6a5ca6475376968

    SHA1

    3274e839a35a60c582f95e6c0e87baeb1f43eaaa

    SHA256

    a0c54583dc6c89243e76d0ab4fc66eabdc39fbd27d3d554203f783c94ff61ab2

    SHA512

    465b418cd0aa659d71e69e8a684d8e25ae3a3bf8b055ae9368784f6a9df422bd9ef7ba86a0074da0fcb257d35312fc5fedf0d668a1d9088b28bffb7f62ab200a

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/ua.db
    Filesize

    12KB

    MD5

    ea628e04765adaf4238a5dcdff4bbd51

    SHA1

    a801947619ea8c368efe9c006a324dc6339ac60b

    SHA256

    885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

    SHA512

    c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/ua.db
    Filesize

    32KB

    MD5

    38564ad4c73e5619bc2264b0c44997a5

    SHA1

    e55f6fe1b20347ad4cd58d77af0b0feb149f63d0

    SHA256

    1820a909a310bf7bc4ddaab6c8be3954dedd53612749f7bd08fefbef31670ec8

    SHA512

    30d84731a3d8380e63bb73227623e86bd779476474269f252abe546028531c77658573874444e66b862ea049724e93a9344b1d4fd9f26c0fe02a79a4079a9a7d

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/ua.db-journal
    Filesize

    512B

    MD5

    07560be7515d6b8601e9c5cd1536813f

    SHA1

    5f5c6824593a6a9c4eb33936d6c49ef54ae778b4

    SHA256

    1bd65cda0bebecc12789a01260f6dd26cf62ee00ff406ce396c796acc8d61d99

    SHA512

    e5cf09f1fc2b1acb7179e9c653db5ac7777087478a6a78096409303edb6343df8e06c575474c32e2a4a6b60a7b597767c330fab4da7bdd21bb8b7e7655dfff3a

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/ua.db-journal
    Filesize

    8KB

    MD5

    b6840ff544fc0f9c17578229a5b4cb9a

    SHA1

    fe8fd6ee3568d06dd0f3e872d1a0eb241822d7d6

    SHA256

    4d69d3ae1cad79ad8226c234fa5e6e7f030b8df2a3dcae12541f8aac06776785

    SHA512

    6c0385009bf9336ac965251358fd2aeab2d9913f8e060f16a94680516df3d4f665ca32b99eeb57bda3c907180e1dc6579a348297f617172d48e1d8426c28aeef

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/ua.db-journal
    Filesize

    16KB

    MD5

    fc9dd8a4ddc007b8c6c183b3a312116f

    SHA1

    2146ac242d10033f02ae207a8577a976707707f1

    SHA256

    08b98daca2c8f930f564962dc87e71e21358d61b61f777cc2464504a17656571

    SHA512

    81a2fdb0b8565836d6f7527d56e927a92dd912cc34cf62e449e006acb8f98f82859e281dad1f572f2562b919f27d54a05eac2ae6d0ad8740d40ca6dd949fd7e1

    Download Submit

  • /data/data/com.yxxinglin.xzid374/databases/ua.db-journal
    Filesize

    12KB

    MD5

    c7328cbdfcc63bd2ba6f8924218cf5a1

    SHA1

    9713033f2c31aa21608a46d5602c8f320fd28130

    SHA256

    deac4519e39e388853601f6306ceadecddb50ac05f46ab2d132af902fad4b69c

    SHA512

    493919f0f10b58cabda79e26d6d5d036f19ed93be7cc8b421fe5fe328039894a4d060de99a75aa0c2c9f19814985bbcb9e7cecf971734769656401c650ddd8c2

    Download Submit

  • /data/data/com.yxxinglin.xzid374/files/.umeng/exchangeIdentity.json
    Filesize

    162B

    MD5

    a8a892c9dcc2d06e08f96d9357bc1228

    SHA1

    63cac4c27dd17bee8753d8d64ee43a40c0f06d59

    SHA256

    eac27f6f1a8134d941023495527c935be1903d1922c989379a1050f32a29f9cd

    SHA512

    9d2eace1319ddaf2a6f0f1ae4cc56421a428bbcbd70b8cedde89248a117260504e86731bd4681c7e251c4585cb3c924adf571a382ca049c78e817305f6cd555c

    Download Submit

  • /data/data/com.yxxinglin.xzid374/files/exid.dat
    Filesize

    50B

    MD5

    308d53220b9ee97ac34817847b4b23b1

    SHA1

    3c42e35a299a103124f054648f1425741c34458e

    SHA256

    995e3c0e84451b7e9fa70872eebd85a0bf9afd25ad762446a3e38446df889693

    SHA512

    86d4fe2b95858f2e7e56f47737ce53286b4dcb708e3f4682d7422e516b2e9241471c06e319eb60b660f27b55fef49bf15f8b056ad93738074e0088635c31d52d

    Download Submit

  • /data/data/com.yxxinglin.xzid374/files/umeng_it.cache
    Filesize

    350B

    MD5

    51dd2fd0aabf63fdf70006084f0f1b7e

    SHA1

    5b7917b2c41193e75f6874dae489c5fa95f5b7d0

    SHA256

    b7cb37a1af54f3c4a0a8443a5b6c030e3232792728bf36243fc0a18eb6b530f6

    SHA512

    3873e87c67a247c83e3087af4fb4785d7b589828ba71766ecff2458d9317d39ffe8fbf220f01a85c78244218c4c45d68d81362d7eadd23cac5575dc05fcf1994

    Download Submit

  • /data/data/com.yxxinglin.xzid374/lib-main/dso_deps
    Filesize

    148B

    MD5

    f17b4f3e429db838003755a61c3b1811

    SHA1

    3ae31624cc8420e9a720743a8466c222c8537c3e

    SHA256

    717eebfb51ea072450380c09d895a59dd978d800b04121eec94cfca5d5e3583f

    SHA512

    5f770631595dd551dfb1dd4c3e7b9596519a28ca1eb26553ec6825bc780514c9e7893a9989c2fb6b1184197e0ccf67d030daa1fc51b511d9d8f8583568c6d1f8

    Download Submit

  • /data/data/com.yxxinglin.xzid374/lib-main/dso_manifest
    Filesize

    5B

    MD5

    c06857e9ea338f3f3a24bb78f8fbdf6f

    SHA1

    c5a0a2529d2deb60fec041b4fbd722a2ebe31702

    SHA256

    957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

    SHA512

    29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

    Download Submit

  • /data/data/com.yxxinglin.xzid374/lib-main/dso_state
    Filesize

    1B

    MD5

    93b885adfe0da089cdf634904fd59f71

    SHA1

    5ba93c9db0cff93f52b521d7420e43f6eda2784f

    SHA256

    6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

    SHA512

    b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

    Download Submit

  • /data/data/com.yxxinglin.xzid374/lib-main/dso_state
    Filesize

    1B

    MD5

    55a54008ad1ba589aa210d2629c1df41

    SHA1

    bf8b4530d8d246dd74ac53a13471bba17941dff7

    SHA256

    4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

    SHA512

    7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

    Download Submit

  • /storage/emulated/0/JXCP/aff/com.yxxinglin.xzid374
    Filesize

    6B

    MD5

    b3f7bbfec740f4cbe5de472d061dada8

    SHA1

    5e06fae01dd3612ecaa8589fb19c87fb341ce88f

    SHA256

    c225b781250b0274762d16e0505db81c49c8f290fa130be159407aaa5b84c546

    SHA512

    cf42afdd3f9d85d10c8eb5458c9f8b9d728a8e653fc7b61e610ff6b7b1d14a375667745fc884506697b62f7866b510037bf29074a9dab4aabec2bc7c402e7548

    Download Submit