1b821916b0f79091bfdc9d195320decf954ba5a679ff19aa198bbe403f36a2e2

Analysis

max time kernel
2894368s
max time network
164s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
23-12-2023 13:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1b821916b0f79091bfdc9d195320decf954ba5a679ff19aa198bbe403f36a2e2.apk
Size

15.9MB
MD5

e6311f43a545c5c6fbe1b9f1852c09db
SHA1

211bc7ad7907c59537c48619932260453fe44d28
SHA256

1b821916b0f79091bfdc9d195320decf954ba5a679ff19aa198bbe403f36a2e2
SHA512

3dbef31aa34eab2ccf07db86135ab53ba824ec7fc36d834142664291b664bf5d2aafb02f69b80ec52890d251eab785d5ee9aec5f41c33f95e844fd848ff846f9
SSDEEP

393216:X7VWHbuwtIS16zuRWKirZkcPQ9iGprQhZR:XObuwOS171i4IGprGL

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.glodon.constructioncalculators/app_e_qq_com_plugin/gdt_plugin.jar	4917	com.glodon.constructioncalculators

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.glodon.constructioncalculators

com.glodon.constructioncalculators
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4917

com.glodon.constructioncalculators:pushservice
1⤵
PID:4957

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.glodon.constructioncalculators/app_e_qq_com_plugin/gdt_plugin.jar

Filesize
43KB

MD5
81eafefbf63b630ef33e7a2c01c1e830

SHA1
7cd2689527957fbde031eba17106bd3dd7e76abd

SHA256
f7665634c54d49533a85f428ead6e16b62ca882d67f44bebc2b17537522f59bd

SHA512
640a866fe61b002d83435341f13a915aeefaa1d527a648d1c1fba8e2391978c172e048317a6ffeebaaeb0ae59de693d45c12b7d45df5f3754da3e4426545ef01

Download Submit
/data/data/com.glodon.constructioncalculators/app_e_qq_com_plugin/gdt_plugin.jar.sig

Filesize
180B

MD5
c824a31a320ee9413d7451f81b1b3c2d

SHA1
f22b403463fac48e79e968e29820d9848dc5dba3

SHA256
b29f2e2b4b3922800b43814fd12236646babb24575deec3eede4bc9bd543c075

SHA512
ba7a7fbc84bd7a3a0c89be406ec6bd4c7730e943407abbfb855738295dd371156c3461b19663a3a14898cc0e537f463e8c9d602130668de152bf652530f56afa

Download Submit
/data/data/com.glodon.constructioncalculators/app_e_qq_com_plugin/oat/gdt_plugin.jar.cur.prof

Filesize
512B

MD5
b91739d215a5503fcb3324f61a8db2ca

SHA1
d38625b98bc5b3dbd089af1ab9614f944f3a81aa

SHA256
7d2f3f065066f59c42c50858f37f8b643a2b47bbcb83abcf575152e7cb8d8692

SHA512
bb156f9ecb05d71019331ddab978e2a0bf232eb31165548245c6ee2d0cfaaed52c622b91dfa046abd43f31a26c72c444ed441bbb04be69fdf8fed300908bcf0e

Download Submit
/data/data/com.glodon.constructioncalculators/app_e_qq_com_plugin/update_lc

Filesize
4B

MD5
dce7c4174ce9323904a934a486c41288

SHA1
e117797422d35ce52f036963c7e9603e9955b5c7

SHA256
0c030586945fe504b604ecc2e875c38ede400cd5cd73da9730302162e6b02c6f

SHA512
d570ab6a8f4a7b54d426b0481219074b5277ace37d88438d87ab97eb387938eca1cf7b09fa42d596c56ada860710d2a7385d2a96e1cedff58ad6ed8900f1b143

Download Submit
/data/data/com.glodon.constructioncalculators/cache/android-test/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/data/com.glodon.constructioncalculators/databases/GDTSDK.db

Filesize
2KB

MD5
42e3a13dddc6bbc1a9ffff7389f7307d

SHA1
0180ad2781ebcfa2e2d1c57ac772d9650cd41e26

SHA256
1d405a37fb6340e958c4afd0bc1f87b4f57f49d267c3da37c1ab5e252efd4a87

SHA512
1542fae7f68e05a951f28af0f589193078a4dfcb7e7f60f9baf58010307f944ba9caf28e50cf5d02b6d72941ac5da9f733770f33de44e7ef83f788d9d891f113

Download Submit
/data/data/com.glodon.constructioncalculators/databases/GDTSDK.db-journal

Filesize
8KB

MD5
28652f7f64585ede62c051262855c416

SHA1
ed74d3a69d2b5c66f1924e0d56ca67314775e5ee

SHA256
94d7b9d9e7576bf0f5419a7460d3162e1724bd791073e5fa0af2070eb41f9c3d

SHA512
112bdf3c95875d04254406d5ce08d711f45f31f7eea8609adc02eed744bc39f296ae2e8185065e5818b3e3c39ed60a66bf7778098d11de81357af5e375b705a4

Download Submit
/data/data/com.glodon.constructioncalculators/databases/GDTSDK.db-journal

Filesize
8KB

MD5
c756d2d63478fe15104a027927def649

SHA1
594814581c37ed27f75f517463ea0e3a3387fbb1

SHA256
a0dea05ea05f75b7955f83f392f80a11e74c212a008e3e44ec9c90987665e1a1

SHA512
45bf646f50823320edcbe4932d86d60a11dee012a0028912b7fc5462fa91a0dbcd6eda6a0e0b43ae9080c9af9a2a296d74c9b8f30bc2ab78153d862db1635e56

Download Submit
/data/data/com.glodon.constructioncalculators/databases/GDTSDK.db-journal

Filesize
512B

MD5
02dd0979bf9072702a57778e09e868dc

SHA1
cf582ba5e7079e0cea574c763aaea490727b14bc

SHA256
59943c1751c5af7ddf57086a489d2dae4bede83483dd519161279304169537a2

SHA512
84d1fe79d335242ddb568fadc6a33f428cd0276bf341b8a3b7aeb555a518f13294e62b0704dcfb8b286f616c1a5e2125b545c34555ec7435762aea3ac7ac087c

Download Submit
/data/data/com.glodon.constructioncalculators/databases/cc/cc.db

Filesize
36KB

MD5
0908e924aa236931dc7166fef6e00862

SHA1
7782648d6d8f6e835bd47058d4852932c096a467

SHA256
38f8548795ca7470b449dd1de9598c07a247ba59883c0764c9c96ff0b7d31d7f

SHA512
3c16fbc5172aed04cd206e776c46d26e911732c6e3631536410a71f1d217449475727ac9b3175e827c5ce645a1da9e05900258ee6ca27c936a9060f241361dee

Download Submit
/data/data/com.glodon.constructioncalculators/databases/cc/cc.db

Filesize
36KB

MD5
67c12933d1e0e63d9801a6aa43092ce7

SHA1
b6936908554e4a1986b8eb08289e2d3545e8ff74

SHA256
abda5dd4cc2e7dbb951637c4b49d6990f9f34411fab4dee1a387dbcc8e7eed40

SHA512
db8b818daa3ff4ec7678645f84bf8b45c809bcbb758ea78b28982d071572655bba2d20e6f1ca4f0d057ab34fa655c5bc40457dc65050180351a2fc04a47175dd

Download Submit
/data/data/com.glodon.constructioncalculators/databases/cc/cc.db-journal

Filesize
512B

MD5
1b7ed46e856008170db67680ff75d6a7

SHA1
80df785cddd9b8d66124ec35aa72cf9457cbd837

SHA256
444a2adf5e086bb057412b8f5cd07332785fc456a793a7724cf5bfac53106b35

SHA512
dabf67fd2b78e3834c9167e4285db8a5b1155fc2c071f92d62d59817949dbe27ed12c12b60e765adfe38342cb8fac192f5c859198221a26db455b8737a292fec

Download Submit
/data/data/com.glodon.constructioncalculators/databases/cc/cc.db-journal

Filesize
8KB

MD5
6b04060075c78374eb26228e9f6cae71

SHA1
b7590e8c55a6582f669beebf7e0ad3e7e985e4c7

SHA256
935e3718bb6ad6b15dbadf045aae881ed3c0822d06e36531152983389e6266a0

SHA512
cfe89708662b7cb1741c9370e3f16bc70ef0308ecbb4215a6c8d2caa285fb03f81371c37728b53b250347ec7eaf934f63c7b9b90490b4dd9b79987c27f840105

Download Submit
/data/data/com.glodon.constructioncalculators/databases/cc/cc.db-journal

Filesize
8KB

MD5
1041915917a27894b820df7e85e3f325

SHA1
6fd3c8d59ffb963ae569a892792ddaf2a19880d6

SHA256
557bf4bed3523c70799e6988f62477ca45d8f5e5e12679db4e765ecf99276d01

SHA512
754374b0723bfb42836012e92bf7ce113fef7f134150f8d97fc6790307fbb79eacb73254a59f3d3d2e5ecf36b6beb670f5808250c6ee41021c18fe5f61e2b3b8

Download Submit
/data/data/com.glodon.constructioncalculators/databases/cc/cc.db-journal

Filesize
8KB

MD5
d6ce405c47ae4e587d68e25364396b71

SHA1
dafc69e9abd80e7b88caf023fe084c2941343e1a

SHA256
3eeca81c142745be0fd7f650820590b3a8e34f597d683a8a8ca7b8440b5948cd

SHA512
ac82c2a0a5c9fecc683aba7593b22973020ccccfa47c8596d1e922783d86d51d3bafe9afab62268fb9fe62966efd38ebc165a1977fc5b08837edf0da405b232e

Download Submit
/data/data/com.glodon.constructioncalculators/databases/cc/cc.db-journal

Filesize
8KB

MD5
fc01f3bc11a10b2127c7f8e063999fd5

SHA1
e0918a5de471622f27aae22410a36f286d67e2fa

SHA256
f4f1a9a698c72bdc94b2303b4f08c88192c5ebca0359fbf16fd5493cfa65e98a

SHA512
7e38bcff7eb4ec6b0d8604aad7c5957f59b6c6626c0ff9cce7117278bdc41afb992f10b9d810574f41f99c7716ef22453606317d57707ed5b88aa29a1557c055

Download Submit
/data/data/com.glodon.constructioncalculators/databases/cc/cc.db-journal

Filesize
12KB

MD5
8ce31db3e9c2e1e3d9fa53aa61bc3901

SHA1
12d71654b70909a16cc45292a487e72d51f0c651

SHA256
eba7ba8ac851af443c51635b11e8157d171f6783aa72cfcde7c97a88f80881b9

SHA512
aaf78a28edfabca642fd094cef092445799525a4c69f11e86d6e65f5a31c1d02b0c9cc5f29d76eb8fd47efa375005f8a7aca556a907e20ed62dcaf95a5a12c3e

Download Submit
/data/data/com.glodon.constructioncalculators/databases/geofencing.db

Filesize
28KB

MD5
cfab1313b6bc4be5c38f024fba1d7195

SHA1
bd3988e3c05d66889d311e06cd577c05a88a4cb6

SHA256
bb849c39f9a2c72b4b34520ff09d1eef151a053e7c9b3874ca80e8d378a12b9c

SHA512
60394e4bb665c2c629bd5ba938858e896355de7850f958b9d9a1bb9beae3b17b281e937cf8868ae252f6dcc46d10985ffe00d2b7bd3adc8a3c30c2052db52099

Download Submit
/data/data/com.glodon.constructioncalculators/databases/geofencing.db-journal

Filesize
512B

MD5
77564b6223ab75cbc75d80c1be0d58db

SHA1
5a65a137c6421d0b47700161b3ecf28b0aa14d27

SHA256
bc739fd2bf393e1e429479b5d9270fce7b40e64c5a652cae5b50844b52bcb9ab

SHA512
a9551ca33658772dfe67ea9420b29d86dfe65bdfbb2f8e11a977b8982fe1443f810e6d42131d8341dc24422d15b214b7b8c5bd1d622f4c06c5437ae389dff24c

Download Submit
/data/data/com.glodon.constructioncalculators/databases/geofencing.db-journal

Filesize
8KB

MD5
8759dfab008efc114922d57516b13c34

SHA1
14cf21083184b55e313dea2cffe60c178ebe784c

SHA256
0708896dd70d8c0ea698e0a3885faf30124c388e58a0f5b2df0cf900fdeb3255

SHA512
dfcfa7ecaee80ab31835f88e0a88db49571282f078f81d422b609b9887149cd0ab3bf889fd525993c3055cfe6eecf5002ea37cae2d47d648e0f61f83f22f5212

Download Submit
/data/data/com.glodon.constructioncalculators/databases/geofencing.db-journal

Filesize
8KB

MD5
623ad5c56118aa4297daeb4c9bbc2053

SHA1
6f87348e682660b669446da11a9d2c6e3cf9e132

SHA256
b0e4bc54d131d65551ce3ae4966f86d7ac100bffeb477c76d935bae9a25405ce

SHA512
af9c0bba524c228644c381dbb785d4f975d67ddc02a0ee01877fb424fcc901c5129c1bfab28e0cc2849b8dcca02b25ff587b210acb988ba7e8fbddfb1b225525

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db

Filesize
32KB

MD5
38564ad4c73e5619bc2264b0c44997a5

SHA1
e55f6fe1b20347ad4cd58d77af0b0feb149f63d0

SHA256
1820a909a310bf7bc4ddaab6c8be3954dedd53612749f7bd08fefbef31670ec8

SHA512
30d84731a3d8380e63bb73227623e86bd779476474269f252abe546028531c77658573874444e66b862ea049724e93a9344b1d4fd9f26c0fe02a79a4079a9a7d

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db

Filesize
16KB

MD5
26d255c0232020d0d579af98e5c5ab9a

SHA1
3229c4a39ab6e21af1b3c5001e8f0caafb01ee24

SHA256
61167c1dbd307bae3f766c0603090e8dd76da3858a23ac4d3ac6d8dd99185f07

SHA512
5c2cd791ef6f0c40eb8058e51da4b29e5eddd944fe795c530167d9943e6423de6d6432266f0e43b87f512ad3741c6766a5e8356b6f2f4e16790815a3bee951ef

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db

Filesize
32KB

MD5
4ce764f73923f01745e3ebad7be87a79

SHA1
ebf97e70f9e753e4de835cd0d727c45eea514dd1

SHA256
4778aa6057d83cb3b2a2e00095b4ed1384f89dfb65c645f93b1e5a14e6194c75

SHA512
ab49cd06aef149a50e1836d194cd82d17ffb342c314464d6c703887eb6843f6c1641969970424b7126721b3e79fb47bed6f5464fb7191d5ea2f0eb26354e1e3e

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db-journal

Filesize
512B

MD5
1700a859ec4ea9dd4c9bf22ad6d39d5c

SHA1
f4bcea78b6b9089b26ba201116a48ce9ae10d364

SHA256
441280dffa8653c2c24628dd10d1275319d20ae25dedbafdfc90abcf7b704053

SHA512
747561ad00fde9ee804cd7544977904e9f9743ac36ddd5076b0d12385ed68ca073bec36ad618671b02d9c43d19315d68aab6e8c86bf9055538f2ec33fca12276

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db-journal

Filesize
8KB

MD5
4fce37c651abbe2987b094610021a08d

SHA1
1f79bdb844148712f5d8cb293c4408b2b5a0af96

SHA256
9bc25575860e4402329a6d05e6a02b0664950b276e29051073b2887622b3f716

SHA512
4dc75dfef336b5bda94738e34cb93bffafc9d3a60ae6675dd38def0135faf5be6f8a9df4fd4c3650a9c0dd44fe4418497f87f32c0506b8b7af3ab1ce6c78cb33

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db-journal

Filesize
8KB

MD5
94b324f27c4b8c8fe2a1097ab47ebeab

SHA1
2c8f735aa6579c29575e719311aad2a5d6e92489

SHA256
9a838b9fb5bf2fb75156fa1977ac24d1e4e47b099d5e3b29d331f3d74c35d1bf

SHA512
f2e641ed2e375ecb32f5ca0135da6ccb02112b8e3a66faa3de1d6e920cb803c7689eb3a7d24aa19103508ebd691287f3fcebd9043d1778997c8109274e407f11

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db-journal

Filesize
16KB

MD5
8ea6ccc46742ae6f9faef413334f5c37

SHA1
74065d9726e96e5971430820c6d2aab7b533f683

SHA256
c2528c92f3624cbee693a1fe1e02a58960e74590842b35717875cbeb929ed40b

SHA512
c7cf4d7eba139619dffa6eb9f0d3a03b8b816e01c4d122adc761a406fc3784b42dcc26aea3a757d3f480691c59e0bfebcd8101281de228441425ac8f0a74d7b1

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db-journal

Filesize
12KB

MD5
a29eec4b866ac3458939e0f08ba6acb5

SHA1
97a3b656546d0af04314ba03089043df034c9e49

SHA256
7bff39dcbcefa96e5302a8b67dd111a49fa046e1ae56a75338d8bff33b9757f2

SHA512
b9bf9a88dcc7294f9570ad80caba8e00826fc29c16c92f262a1cde55e4402bfb4899c2c9785269c9572048260aa7d44d6ef47fa3fbf960b8753404ca1e4d04e5

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db-journal

Filesize
8KB

MD5
e8d19a04c4d1cd154c3bf71c8958165c

SHA1
6c7c34068df8b0d27191b1ab2b1dd8d2124ff27c

SHA256
6cf7d9c0d58fb2cc3564417b6dbeed67a479eed7fcf3dbbdc045c369ee2b9461

SHA512
3717f7e54bc2cc7bc572425a46729095a9b047c605b36c1ff47564f2d398d25aff47b8a9c9a295972eb5f56fd50136c50d3b41fe5b1d4dab9205e71ee9bddaa0

Download Submit
/data/data/com.glodon.constructioncalculators/files/.umeng/exchangeIdentity.json

Filesize
162B

MD5
0908b60b44fddaef7a253f0fd4440026

SHA1
03b9f695108e8226bd86d42c452b36b2382913ed

SHA256
f45398c6ebb03f23c8c4543867d817cb95add30bd5a8637c261b47b318c3aa19

SHA512
37baf4a544ba13bee506de89a8ddf4e8ea032f6557774baffc9bc80251d2d2302e80c5b3c6a7fa0a6c8db6830132c21149ff138dae396463e9790b7176a9f2d3

Download Submit
/data/data/com.glodon.constructioncalculators/files/exid.dat

Filesize
57B

MD5
c9ee5f7c2062b7769aaa14f34b2bc65c

SHA1
8c99304ab5e4ae7d6bed9d2b87bdea21322ed8f7

SHA256
296715934a5b4e5a6c7b55e39202b0d01e4a0c7e00d7350f200b55231a10512e

SHA512
44169b87895df364efcd3070182ba33ea44847aa5ca2348c2996a3e9e1b4ddc5c0eac3268ebcc51c197926b0e086d54059fcfe7e2d4c1d2cdd8fd220ac949293

Download Submit
/data/data/com.glodon.constructioncalculators/files/umeng_it.cache

Filesize
350B

MD5
b8c3ae171a4a7777fa9b27565c37691f

SHA1
e7bf314ce79a60cf9ec8fd8b8631cb89df155e63

SHA256
73bf17f869f970c195a445b6694a12a96e037a297cd23b5c0ac630c64961048d

SHA512
77abeec5135d2884f5a6df4221b9e4ce9484e7485d0e7b3ed01b8084072c24e99d9acea3c50a1ed0318d147d291df2141d51af9ed37d05c2d6b83442c3b34374

Download Submit
/data/user/0/com.glodon.constructioncalculators/app_e_qq_com_plugin/gdt_plugin.jar

Filesize
447KB

MD5
78e63f35801a4158ba942363d57deed5

SHA1
9c5840fbef9a6dfa9e023e024e7463f847586a88

SHA256
6f7f78a6e902a439ef058ab59f4c57415c44150a1ee01ca51a8a6915f11b0ac0

SHA512
9f08440992df14d934c735e2a6daba56b3c6d4da330b79bd4ca179746fbd8e63ea15ba8853669e5fff919f3cf4f3c27108c27b920432c1de3be32dc985707caf

Download Submit
/storage/emulated/0/Android/data/com.glodon.constructioncalculators/files/databases/wzcx_4_0.db

Filesize
634KB

MD5
9d196f68520ce224703488537fae92a0

SHA1
03505eec54ec14cc292fd0e8a51d425764aefb1b

SHA256
26364c6c4ac8d25f479477c832890cf1d049810f46a78d882f6660ed009dad35

SHA512
72e872e240844380d025bdb275da28911fed8dc644a890ea6d896d07f2554f1fd382a82dfa11cf704d58e1fd08a57a17c861007521380745aa2bc7f744a82110

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads