Overview

overview

7

Static

static

6

1e028731ce...96.apk

android-9-x86

7

Analysis

  • max time kernel
    2531897s
  • max time network
    138s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23-12-2023 13:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1e028731ce707ab4f78c3bd5a10c04db0c30f86579bafac0971f68174304e496.apk

  • Size

    7.4MB

  • MD5

    2df894797baed17ceec1e3da4fede87b

  • SHA1

    41f62d7f8f42f6936fca9648bf32a40cab662d79

  • SHA256

    1e028731ce707ab4f78c3bd5a10c04db0c30f86579bafac0971f68174304e496

  • SHA512

    7497366eadc6ed2212ef6e4e1e3975f9fe15a882571133c5763ec6c7c7c57c9321568f06af5e4adfb4c360b79a99f769256609393f9b38f42e6c27e5573c8d1d

  • SSDEEP

    196608:N8ucoGzlMmfud758F4LA93suEyAdcbf8e4F:NUoGhMh/At1wdoq

Score
7/10

Malware Config

Signatures

  • Loads dropped Dex/Jar 4 IoCs

    Runs executable file dropped to the device during analysis.

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.meinvchangba.youxiu
    1⤵
    • Loads dropped Dex/Jar
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4236
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.meinvchangba.youxiu/cache/2531760162.jar --output-vdex-fd=252 --oat-fd=254 --oat-location=/data/user/0/com.meinvchangba.youxiu/cache/oat/x86/2531760162.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4483
    • /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.meinvchangba.youxiu/cache/2531764230.jar --output-vdex-fd=318 --oat-fd=320 --oat-location=/data/user/0/com.meinvchangba.youxiu/cache/oat/x86/2531764230.odex --compiler-filter=quicken --class-loader-context=&
      2⤵
      • Loads dropped Dex/Jar
      PID:4668

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.meinvchangba.youxiu/cache/2531760162.jar
    Filesize

    4KB

    MD5

    729811a4f1e273dcd6910f0b746fd620

    SHA1

    af4435614aed789cce684377e61c6847b3c83c52

    SHA256

    be9cd13a9dcd7cf67af24644d0281991515896452e364b06a634b63783a0cdde

    SHA512

    18260d9034e74050d68100b44d67d8eff1319c6078f541959789ca26c6090dc179d6fc20db462f92a4671838802218b319b16555f9a0cc93264e89707c7e4063

    Download Submit

  • /data/data/com.meinvchangba.youxiu/cache/2531760162.jar
    Filesize

    4KB

    MD5

    05387dd5771e65b46407451a9c88d7f0

    SHA1

    abe7c6feb1ca198fc2c62d707e016eaf8c36535f

    SHA256

    035dad36810d5a5f711e7030191c01fcffcf30a423f49bcc1dbb33cd694b3b69

    SHA512

    0f5444ca3bcbd081cb4941b43d82f29374e84cc825d7e16af3ee46b7d27265936f8fa1a14c25355b0cb06ef39137bcce1cf30b1527e33f886cdf861b0a7d3c29

    Download Submit

  • /data/data/com.meinvchangba.youxiu/cache/2531764230.jar
    Filesize

    7KB

    MD5

    9ee0393d536b3928ea62fe60d2ddda9e

    SHA1

    58fbcc8e066bc65b4ca6767e8d6d11935ef10aff

    SHA256

    3a160b61a6bc48d4f8d9c956a5fc49f883f60a1a6e1a92f52d3c5773dad81a19

    SHA512

    4115df7d8cc403f46d5c7eeb3854dbae9659eff92e69834f4b08c13787a9ae215da015e94e148f3292ea03b423fdd2ac4d7731260de2b7541406c7315ee36f77

    Download Submit

  • /data/data/com.meinvchangba.youxiu/cache/2531764230.jar
    Filesize

    7KB

    MD5

    897e581cce20f2a5fce2c70eb0d77b6f

    SHA1

    74a41afe70db8151015127a05e06695e4e8b35e9

    SHA256

    4104c86a2ed1a06c2e7d10bdd1f0c3441d148e21105091671f93043a9767f23f

    SHA512

    d77fe0763f85f910bb7902d74d1768b510e4398f6622bdadf7e5a12ed813cd7be986d2bb6f91ee86fb2239385d4c22e705394649b7b0b2e8e4440e5642b164ba

    Download Submit

  • /data/data/com.meinvchangba.youxiu/databases/Player25
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.meinvchangba.youxiu/databases/Player25-journal
    Filesize

    512B

    MD5

    5d64b0a22537c025548f6d4097f2ff1f

    SHA1

    b30b9caa7addc90fa40cb6b11d6730e1f327c88e

    SHA256

    86d22a8b0e9fcc0442df5f735105dc150de1b7efb8a28df0ae85b76a772f9247

    SHA512

    101633f1f23c00574b95b5e8b8f6d4a56c3a67793df65c8eb271f42298b98cb52daff68f49b73044351c1b8178b6b92ee4ad22f4f75c4428c5b0e309f81b1afa

    Download Submit

  • /data/data/com.meinvchangba.youxiu/databases/Player25-wal
    Filesize

    16KB

    MD5

    1d349895da2696c2b3c4ae787c4b6f29

    SHA1

    25be19a1f20e76e343b3c4374cd5cb62c36ea6e1

    SHA256

    7fe42ec74f58076b588b9173636211811bf7588a131388599297f3f133f327ec

    SHA512

    50ec5d448ec5898d07de3ff99e5b290cf7301ba2e3c8db9e65c413021013af969c502877fc3784a3384af5f62d2a52bbae460e44ae53e88be4adab3300c53230

    Download Submit

  • /data/data/com.meinvchangba.youxiu/databases/videochat.db-journal
    Filesize

    512B

    MD5

    def6866de71c77beebd91ee439f1de23

    SHA1

    f786920bc255ed9bf95ca3b9fca0562156daebf3

    SHA256

    c658fd109395142a9d4a3d71559229aaefae58489e5b4d44837ab31ed4c4585f

    SHA512

    dbcb2243009a28a57880a98ee8285e34b04d595ad0cd1d7ac7c17947780cd3d40c8ddd35250439474c8cd537610b4b9435b1f2f07c1fb589453e4412c7341e68

    Download Submit

  • /data/data/com.meinvchangba.youxiu/databases/videochat.db-shm
    Filesize

    28KB

    MD5

    cf845a781c107ec1346e849c9dd1b7e8

    SHA1

    b44ccc7f7d519352422e59ee8b0bdbac881768a7

    SHA256

    18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

    SHA512

    4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

    Download Submit

  • /data/data/com.meinvchangba.youxiu/databases/videochat.db-wal
    Filesize

    36KB

    MD5

    2663774257da13db6b06af93982eec2a

    SHA1

    8cabf00688da1ea8be22bc3ae8fb91798c91d835

    SHA256

    cc6bdbb0cd711dbb2fbaee73f381ac05dae4dcf7ad87fe943c52d0e879f29cf1

    SHA512

    c110428922ed3507d1787cfd5c65f517fc58603b1a9022184385685b297bc6641c2ab0669b35b431a2cda0dce67c97d6b6a3039c352dd0ddde25e64738201c44

    Download Submit

  • /data/data/com.meinvchangba.youxiu/files/.imprint
    Filesize

    854B

    MD5

    bbcb62d60c73470196921289ed535f7c

    SHA1

    abf48d7a1ac8d3e0ce8f5923a6fd024d99e89df7

    SHA256

    8ea538bf8427a74218d601b65b8f4a355a120206aec95bebe24e9f5f55b5d35c

    SHA512

    a75ab86c675861dbc8df1f2c975d887a792c15a11abea080320eaab5752bd658126aca06c39bd33345e71984b64f2539f3b64768d57e456285a89ac609eed887

    Download Submit

  • /data/data/com.meinvchangba.youxiu/files/umeng_it.cache
    Filesize

    211B

    MD5

    28492d9cdd7298d337b63e1451eaac9d

    SHA1

    63ff47f9104002e6ae35f7e78096b8b7bbb4f16a

    SHA256

    29a0ecd88241a418f3ecdb02e723938fbaa3afe274d787585e3bc5691a4ddb13

    SHA512

    16dfa023b18057d66e01bfa0df2f6fd221fc8ed5a06a4607f3092ab3d952e456aade8d563c25ead918cbe9335314e104a3a5c7ebfe0749f22f4ed73dd837b1e2

    Download Submit

  • /data/data/com.meinvchangba.youxiu/files/umeng_it.cache
    Filesize

    108B

    MD5

    60e31f9c407073b05d24316d69115620

    SHA1

    bfaf7b3701fbc0876660972bd6dca8cfe8c6ee57

    SHA256

    7e5756343fbfe44e20e6a39f7153361a590dadc0d4277f266c5fb0aaf7761d0c

    SHA512

    e653979e3cc7f651f36d066ff892bf90d97db42a270f2688e28909c403b018c4db8e7623c488483a1437fb0c68fb0d2d7ff0944fe0938b2b1edbbcd2579959d2

    Download Submit

  • /data/user/0/com.meinvchangba.youxiu/cache/2531760162.jar
    Filesize

    8KB

    MD5

    424ef51c68e7d56f58aa3f0d5467c1e7

    SHA1

    e7ab9aab326f0c11716ccf9c39c9c061b791fcf6

    SHA256

    a558535b254b0c7e128a3a3185386d0c3113c6b184df64a8e0a1795e0c37d188

    SHA512

    2fca9ac486d3640c119d1c8f62dc81d8d505940b091718958b05c5c96e2027343f09beaa882807de60e756973fdcceaf28daac56b8ebce064f0813c21f3e5cfe

    Download Submit

  • /data/user/0/com.meinvchangba.youxiu/cache/2531760162.jar
    Filesize

    8KB

    MD5

    79a339a8a1fdabbd07514142b1900932

    SHA1

    8b389ce0ec87ff9b1e9bbd7502ce585f21f73895

    SHA256

    1156a15edc990a891119f466d6428c9cf4bc4e6fd444c668d4958d3c54446fcb

    SHA512

    3af21e220d542b1d8cf20eed57bb14ca85d0a42ed7a02e696e43d2263a784d1fe799860c7be1172d05a2119eece013468336ab8f0792892ea2646360cc95613b

    Download Submit

  • /data/user/0/com.meinvchangba.youxiu/cache/2531764230.jar
    Filesize

    16KB

    MD5

    56904bddafd4b644ffde8116dd3a1eba

    SHA1

    b97672643bf244c5fb471170593f048fd6af2d59

    SHA256

    ab745a809b8b5baec6094ab5e67d2e969079485487aea7f078dd9d5dca4787d5

    SHA512

    91e56fbdb746f620fc6bda0f0adf0ffe5bcd9d5375713b2ed02cc2e63cec0ad5ac9409be680b5de03de1cbb447dad8548d874ede09efc7ba27e641c69199c353

    Download Submit

  • /data/user/0/com.meinvchangba.youxiu/cache/2531764230.jar
    Filesize

    16KB

    MD5

    da220ebe8757be652ed037dd7ec67616

    SHA1

    71f38a33d914d9f7fe604ac725a087cdac083051

    SHA256

    977a39881d013189d26fe2523f6863e9106946d9f3c8dd08c4882cdca55ac494

    SHA512

    0037675310824b0dfbfadab4fa0b3d73139b0e3711cd6d298e92b846913c9ac286ddad8c906f9cd89da5db5e9e872be37b6002e62cca17197190affa3f758b14

    Download Submit