1b821916b0f79091bfdc9d195320decf954ba5a679ff19aa198bbe403f36a2e2

Analysis

max time kernel
2894455s
max time network
169s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
23-12-2023 13:07

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1b821916b0f79091bfdc9d195320decf954ba5a679ff19aa198bbe403f36a2e2.apk
Size

15.9MB
MD5

e6311f43a545c5c6fbe1b9f1852c09db
SHA1

211bc7ad7907c59537c48619932260453fe44d28
SHA256

1b821916b0f79091bfdc9d195320decf954ba5a679ff19aa198bbe403f36a2e2
SHA512

3dbef31aa34eab2ccf07db86135ab53ba824ec7fc36d834142664291b664bf5d2aafb02f69b80ec52890d251eab785d5ee9aec5f41c33f95e844fd848ff846f9
SSDEEP

393216:X7VWHbuwtIS16zuRWKirZkcPQ9iGprQhZR:XObuwOS171i4IGprGL

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.glodon.constructioncalculators/app_e_qq_com_plugin/gdt_plugin.jar	4636	com.glodon.constructioncalculators

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.glodon.constructioncalculators

com.glodon.constructioncalculators
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4636

com.glodon.constructioncalculators:pushservice
1⤵
PID:4679

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.glodon.constructioncalculators/databases/cc/cc.db

Filesize
36KB

MD5
86752a4be6564d8370f2f0e403995003

SHA1
29f7d50675f6e59f3b808eb6dcc8619384412115

SHA256
50484dcdc6b9c2801773018386a8143a52a5153eb2eeeaf5be8bbe46a49ca90c

SHA512
79c9435c1e0d41a3f97784be3e5a3cd8c0bd2d32ecdf326808bacb00c76d876d0447617d6e72ef04cd4b996c92eda4eb7bb200987ae7928ce2e0e7c8e807a5ec

Download Submit
/data/data/com.glodon.constructioncalculators/databases/cc/cc.db-journal

Filesize
8KB

MD5
409517797270a7ef16bbd1d7e0dcd5de

SHA1
fa5eff488d6dc6ea9c80dbaf06e54b1ca20074f7

SHA256
db0e6a2984f3e5b2956c11b60c7201d03a1090e46df1efd28d3a157be81d448a

SHA512
d8607d27cfa77161e7acfdd917bca022dceccefc9ee0676d70f36a0b25506fd4e88533406522f0736074b844149773f2f153a5dd107c3e741d2a144418bf3b5f

Download Submit
/data/data/com.glodon.constructioncalculators/databases/cc/cc.db-journal

Filesize
8KB

MD5
943134418d9f44ca2ca37214e9f219da

SHA1
bb3cd70a10383bdb1fdc2b650a687c4e54bc1a7e

SHA256
3ab073937e0cd216400113d07aaafa3de71e224bde909f710fd6dea3313a392b

SHA512
44ca4a29940621814782646823caf38bef8563dc449b2833ce864db1852a4948f9073099143181e33c7e1cde66f39475d52838dcedfd2806f8fc56262422de4b

Download Submit
/data/data/com.glodon.constructioncalculators/databases/cc/cc.db-journal

Filesize
12KB

MD5
ca87de9d976bfd9520a0fb604e076370

SHA1
dc56448b5333f65b94cf83d3978f7441c361387a

SHA256
31ceb34ea0c666ad4ac1f7067665652b995ba8b28ea7dada3167324b2aaaefe1

SHA512
a7f119190563d76b4d6c35d4aefb448e71d1f765aabd14e43ace1ec87afc2599d4682fc903be6157ba6422fb9b9a6668c350c873f01d87174247bf7c3325a5f0

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db

Filesize
32KB

MD5
4cac7d31fb94d5c9581893537f64c5ed

SHA1
96bef3288546196ac3058b5eeddbe9da1d999fe5

SHA256
d1b111041f8aab3269f3da846b2ea199498d99f6905174a9d641f0faedca41c5

SHA512
0ab95e51a640148ac007d47afd5b9fd03ae5a3b9053e5e19a4f0b8089e17e41e311790ee9fe486b6752926799577bee041ed67b64d8772794e9d2329a96ce747

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db

Filesize
16KB

MD5
7c7366be4fe562d73f89039bec09ba6e

SHA1
5ba45e15b68dabf499e0a0a1bf400626c2374685

SHA256
8500c2ccde4e5a7801f151e3145a1d56fafea7622b3950bd7148c0ec6ec162a8

SHA512
655da11f8934996a7902ffddbb5ce111a47e0a5694fe43acb5fe01666e35c679e6faeb8c1d89a71a174631d3cfef3bd45c158570684b27cfed3e00d9fa2da346

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db

Filesize
16KB

MD5
3a4f07c91e3bb177e3cf188451ba404c

SHA1
82a3ac7f22d7c0167d4575bb09ea487408d5af88

SHA256
536dacaed0836f4c4c8d0adc675e039d02e3afbf94fbb2df79596486fc18fdac

SHA512
c921ca1b45de8b087546ee1a80b6358e7332aef0ef7206d2b57618c19abbb0ef617f153b43c56401bbaf34451bb2c1ae27966c9160966581dca685cbf0141987

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db

Filesize
12KB

MD5
171aedf968e17a2744d2585715606cb9

SHA1
bbeddeb3b89fcf809619c35b4a318a80e7d5b029

SHA256
d2ab452d9360848f46af866b870b5c6fc98230b09c72b89cb1a4b2778586678e

SHA512
78a0f517ee3d21c153dda6dbfec4187ebaee9d520d7b1b63f358bcb125d08aea53f26943907a56fdeba40161d9fc7e4fd63f9ae3154dd2ad887ba0162738285b

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db-journal

Filesize
512B

MD5
83cc4e61a917320df27809c76ef03b6d

SHA1
74c59cb0f4ea28a0e025b1a97af82543991c0e05

SHA256
acb3caf676338e793e2983ac7c0480666d6e8e25ca9bb3307c9de0d684625545

SHA512
92323e6db554a1392b83b0f9992b85fb212648a64eb532e3e19d7640b17ee72b68b0c108aef4fb18653e9405cdd6716f89ae9c384f80b6646e4dc134e936d40f

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db-journal

Filesize
8KB

MD5
5b11fa1ebee45c5a6492dfd65825cd7a

SHA1
f45725b0fb9b06898cbf1782e296ac0786758df5

SHA256
855fd0357f5920b4454a65cbcccdd742b4a1cac62c3f559e04448b83a6310dfe

SHA512
d5e47cc68bfe81fcc90d03d39b49ae3c7da81d742209d1932a8908f3d80b43a8cf7b9e1edf0c50f6856164c1b0e0023cbddd0ac13c66e24aeaedf900b3f2c159

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db-journal

Filesize
8KB

MD5
591b8389dce9b70ce7bd1d58f5228974

SHA1
1dfcafb53c60a69d2dc68f02cb299e82f1941aa8

SHA256
219295a79caed5f63f0d86c04fa847570bfc0c324e5141f2de117211205d9e73

SHA512
8bd283a06578a9a9c082787795cbcb3cf8093de9aaa0240708210aa45dfc6131ba01830cd4ba814c35fea7fa5c5bcf5b07d2afdb6117fd4a5b502e9400a12523

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db-journal

Filesize
12KB

MD5
59f33a2ab2a2055e99f34b81dce8a635

SHA1
89da6996ee284d0cc6c0b0297d3e8b7d0ae709c8

SHA256
822bd303ef9bffc96a0a60414298aa0a30a19ebc2151e33e427a3ab13cacc85e

SHA512
8eac2c6dfcabb3cf778f56ec584c6a4c11a5f91f61161d41dce7987c3b5dc9d55bdb071a4987eb6953823fefdd7d31a43b3f77777d11b9dc3fae4f36b3b007e7

Download Submit
/data/data/com.glodon.constructioncalculators/databases/ua.db-journal

Filesize
8KB

MD5
ca44ac839a4824618ff965562b2f13ce

SHA1
b220306af9ccf05b16812f52760acc1c4bc3d6d5

SHA256
8d84b24c5c85fdb28b0d9a9f6ef621c77b8967c9598cda1db9acc2f7990814e8

SHA512
8ffae7b7c2cf4eaee903ab7eab1cf13c0b8d03fe9d35c0f893e60487fa7d8cae3f325942b9b87c1700eb15dabbec0948712b7c49b09ca35ffb48a49a8d95b565

Download Submit
/data/user/0/com.glodon.constructioncalculators/app_e_qq_com_plugin/gdt_plugin.jar

Filesize
200KB

MD5
832bd7a96ab6265b880c73f3fa3ab555

SHA1
8705bc41b8bbc5cd8153125883d148c6ebd03196

SHA256
cc770d97d711e12e1c5c954defb09872660dfc626a3ec9bfb9fec22a91877c3d

SHA512
2f2d921af508a6ccbe4f1c8650e6d17ec00adc224570c697cb99f05f617c03c9c844d40728b4d5c32e1ec51b2b17a1b962b0952df4e197d1060e6751c7858bf9

Download Submit
/data/user/0/com.glodon.constructioncalculators/app_e_qq_com_plugin/gdt_plugin.jar

Filesize
447KB

MD5
78e63f35801a4158ba942363d57deed5

SHA1
9c5840fbef9a6dfa9e023e024e7463f847586a88

SHA256
6f7f78a6e902a439ef058ab59f4c57415c44150a1ee01ca51a8a6915f11b0ac0

SHA512
9f08440992df14d934c735e2a6daba56b3c6d4da330b79bd4ca179746fbd8e63ea15ba8853669e5fff919f3cf4f3c27108c27b920432c1de3be32dc985707caf

Download Submit
/data/user/0/com.glodon.constructioncalculators/app_e_qq_com_plugin/gdt_plugin.jar.sig

Filesize
180B

MD5
c824a31a320ee9413d7451f81b1b3c2d

SHA1
f22b403463fac48e79e968e29820d9848dc5dba3

SHA256
b29f2e2b4b3922800b43814fd12236646babb24575deec3eede4bc9bd543c075

SHA512
ba7a7fbc84bd7a3a0c89be406ec6bd4c7730e943407abbfb855738295dd371156c3461b19663a3a14898cc0e537f463e8c9d602130668de152bf652530f56afa

Download Submit
/data/user/0/com.glodon.constructioncalculators/app_e_qq_com_plugin/update_lc

Filesize
4B

MD5
dce7c4174ce9323904a934a486c41288

SHA1
e117797422d35ce52f036963c7e9603e9955b5c7

SHA256
0c030586945fe504b604ecc2e875c38ede400cd5cd73da9730302162e6b02c6f

SHA512
d570ab6a8f4a7b54d426b0481219074b5277ace37d88438d87ab97eb387938eca1cf7b09fa42d596c56ada860710d2a7385d2a96e1cedff58ad6ed8900f1b143

Download Submit
/data/user/0/com.glodon.constructioncalculators/app_e_qq_com_plugin/update_lc

Filesize
1B

MD5
0bcef9c45bd8a48eda1b26eb0c61c869

SHA1
4345cb1fa27885a8fbfe7c0c830a592cc76a552b

SHA256
bbf3f11cb5b43e700273a78d12de55e4a7eab741ed2abf13787a4d2dc832b8ec

SHA512
91972aa34055bca20ddb643b9f817a547e5d4ad49b7ff16a7f828a8d72c4cb4a5679cff4da00f9fb6b2833de7eb3480b3b4a7c7c7b85a39028de55acaf2d8812

Download Submit
/data/user/0/com.glodon.constructioncalculators/cache/android-test/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/user/0/com.glodon.constructioncalculators/databases/GDTSDK.db

Filesize
24KB

MD5
d9546e7529040098de5b03ef296970a1

SHA1
7781f0f230dc2bd574bbea97194d0033431d350e

SHA256
585184ebd52cf769be667e0b871dd9324197f21e37152fbd5fe1cefa5f523ccf

SHA512
acf1935480b8b99c231fff1b1de32b7456094853cdf0d7819c57302100d608ae884bc2d44ad3ef3ff8c2cbf2d4d66ec8d77827e6c9605ebda1f31cfc522b542a

Download Submit
/data/user/0/com.glodon.constructioncalculators/databases/GDTSDK.db-journal

Filesize
8KB

MD5
565d8b8af08cf64958e6cf13899d7bc4

SHA1
d1af78718f9263b737d516c740d40a45553a9262

SHA256
85c80a78979bc04c87161a791c5a63bb8eeea6a705841f3fd2788a3e1bda142d

SHA512
0df3287c96e62c114cac6ba024b752911fd142f3a2be2d8616bac5345ece32bd9ea062740800a65b357e372932676efd266f16a2eba3edb80e1f5b3bb60cbb1f

Download Submit
/data/user/0/com.glodon.constructioncalculators/databases/GDTSDK.db-journal

Filesize
8KB

MD5
031ee0055cc53760a7ac3f0c8d357148

SHA1
6c66e0207072d29f933b36d9927b6de6d554f6a3

SHA256
2a6a001fb43d8cb5fd1a357f81e03f64db04a655184e1cba404717bba5d93a46

SHA512
da82e768dbbaad204c06e640d4a02dea5d719c815098fbf2f9e18ae55527e7666304c2ab15f8f6de0f4b5aaca3e8ab05457f9e0b7002e0d2b75faadfc39e5144

Download Submit
/data/user/0/com.glodon.constructioncalculators/databases/GDTSDK.db-journal

Filesize
512B

MD5
db501dda28cdb061243ae1f36c2439f2

SHA1
5f1f3811548d6fb4f316d821b6508e4392871e3d

SHA256
e840a1afd25b934daed00c3f204ae9465a3459745b75a32a299b1c543426d768

SHA512
30cc5cb43f7d44821146c81128550caa7167ddb3d15994ba56c658b78d3dde062a2fde5e14503e7ec8e84e408c367947643bf2cf3945db3a93adce875b74a932

Download Submit
/data/user/0/com.glodon.constructioncalculators/files/.um/um_cache_1703701504934.env

Filesize
1KB

MD5
5ae62362497cd2b80e58906e5c7da4f8

SHA1
55a797665eee60b412d429620f0a4329597ab441

SHA256
d14024a52147c8293a78e627c2cee418b47cf60249c8d8f0ed4a39889e586ab6

SHA512
b22f960bdd6d2d9a1c2a971a82414ae89f89ec0eb1da9a8f08ca93843748cd2b758de576cb1f93d3c090f32f354c994e6cbc4dde917b42dbb0ba598bc0345e1d

Download Submit
/storage/emulated/0/Android/data/com.glodon.constructioncalculators/files/databases/wzcx_4_0.db

Filesize
634KB

MD5
9d196f68520ce224703488537fae92a0

SHA1
03505eec54ec14cc292fd0e8a51d425764aefb1b

SHA256
26364c6c4ac8d25f479477c832890cf1d049810f46a78d882f6660ed009dad35

SHA512
72e872e240844380d025bdb275da28911fed8dc644a890ea6d896d07f2554f1fd382a82dfa11cf704d58e1fd08a57a17c861007521380745aa2bc7f744a82110

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads