Overview

overview

6

Static

static

6

21e20fa7a5...cc.apk

android-9-x86

6

Analysis

  • max time kernel
    2802996s
  • max time network
    138s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 13:34

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    21e20fa7a5a1e1c82061f8b2ac60cc73c182a3c7b08c6c5b28535a57b1d9d4cc.apk

  • Size

    7.9MB

  • MD5

    8c57a422bcc3791c3bd3d5c198d27291

  • SHA1

    6bc3eb28974f5b3e7bcbf653284ea132ce6ef8da

  • SHA256

    21e20fa7a5a1e1c82061f8b2ac60cc73c182a3c7b08c6c5b28535a57b1d9d4cc

  • SHA512

    124ff1c8a97cb4fdf12a796ac10f6bb3bc415e00f5a5ecc0c1675fafc0e84dfc3bbbf281a11db7fb3c3756eccf2fcdbefd7cac1b1d03c4ee00c93db0d7df65dd

  • SSDEEP

    98304:tusATVwuGjP+1MDGy/OGgkxdqzrNIV8jMLzn1bH0eIqVrfTyA3ce2Z+Bld06d4q+:gTMIFy/O5UwtMLKHqVrJeZWi3fGTA

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.

Processes

  • com.ftttpwannyk.yukk
    1⤵
      PID:4269
      • cat /proc/version
        2⤵
          PID:4322

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • /data/data/com.ftttpwannyk.yukk/databases/cc/cc.db
              Filesize

              4KB

              MD5

              f2b4b0190b9f384ca885f0c8c9b14700

              SHA1

              934ff2646757b5b6e7f20f6a0aa76c7f995d9361

              SHA256

              0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

              SHA512

              ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

              Download Submit

            • /data/data/com.ftttpwannyk.yukk/databases/cc/cc.db-journal
              Filesize

              512B

              MD5

              e74c6e1ed41d1f97978e11e5f3ae641e

              SHA1

              1be18f1ebc9f75082fb1d9ff5670c035acdf8a43

              SHA256

              65e1edf27f87b34d1f9faec736388ce922eaffdd7032308f2ae0a02c03a5630a

              SHA512

              91d91fe3de3945ab415d06009b2c55aba398d9fd900604f4db4558e716d043d759fedc3334aa7c0e2dc8f5fff12d957fd536890b9e9d844d2ab20decc775f2c8

              Download Submit

            • /data/data/com.ftttpwannyk.yukk/databases/cc/cc.db-wal
              Filesize

              48KB

              MD5

              9bc12fcc754d6bb4721f8d50f1931ef8

              SHA1

              9559bb0f1c03477516b94681aef1dcbe4918ee15

              SHA256

              b3962a1f00284b8b0df85db4a2b2309d9969324037e5feaac4d62c5d027be00c

              SHA512

              46b4018c8e739366e98ce45e3081779426aea704a1c63d7d8dc226720c36314cdd6119185f3f01bc80364f96e43cba43d4dd033f03927b885dbbe9b2f92c91ef

              Download Submit

            • /data/data/com.ftttpwannyk.yukk/databases/hremote.db
              Filesize

              12KB

              MD5

              3fe30614d7e0d11db870b4624f6c50e0

              SHA1

              053ff0fc621ab40f2afeddb3e7b4a73ee41ec533

              SHA256

              67c532f0324228dd33b445cd399c1426e3a0e0cdc7b9358c66b402c5d40a838d

              SHA512

              c7c09e97a408e88aacaf8099ad4d1fa604d58113393500a384eb3c2eb7c3c105af41314934b86eca2f088045cbab5a20d768bbb295448dc1ae6cb6c3f59821ae

              Download Submit

            • /data/data/com.ftttpwannyk.yukk/databases/hremote.db
              Filesize

              236KB

              MD5

              7223a2127ea2a756857e2f6ec0da96d1

              SHA1

              06908c3b6889a9d6100a5e535c5ab8eeed31d1b8

              SHA256

              5e245c5e064ccaa5437622dcec9c7960ccdf50a3a4cd01163bc156c28d8a72be

              SHA512

              a7693d3025628ea88e697cfbd68d86e26aa81a963e7926c13ed19c9ef6f3db3cf8b4a4a0c40f7455c2d7c6652a6b013ebfbef4197fd21f941b74f998629b7f4e

              Download Submit

            • /data/data/com.ftttpwannyk.yukk/databases/hremote.db-journal
              Filesize

              512B

              MD5

              bd0ddaee37da6b4d546ee9a7a97c805d

              SHA1

              888d1936145d1678b225f7a8797da68c3fd71355

              SHA256

              35adafb521e99569cf132989a6ac61a8c1e564f92fc50b37f522d132c27b7792

              SHA512

              af8f5aca7818ea76b4a075284508157a40901bf38031b09812314d7369f29c7f95acab53f97b4d3d1dfd91500f4dea19f33d70cfde74bd38571a95a713fd7f5c

              Download Submit

            • /data/data/com.ftttpwannyk.yukk/databases/hremote.db-shm
              Filesize

              28KB

              MD5

              cf845a781c107ec1346e849c9dd1b7e8

              SHA1

              b44ccc7f7d519352422e59ee8b0bdbac881768a7

              SHA256

              18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

              SHA512

              4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

              Download Submit

            • /data/data/com.ftttpwannyk.yukk/databases/hremote.db-wal
              Filesize

              16KB

              MD5

              d458ecded2fedeb721f9083beb7b528a

              SHA1

              37ae51fbf9f20719bf9dd9b5272ace19f09b2fbf

              SHA256

              662128ef81d9ebfa4d09c24095e1c6028edb5d737191a14d8dbd542a2e11ee6f

              SHA512

              b24d1c61b8006c897acbd00b6f741beb4dd6f19c7cb1f5ad1edba2f5d79b32642e20a4170d1e3a4776b36591573a1580cda33e6c4fddc367a1ddb2e6b93ece93

              Download Submit

            • /data/data/com.ftttpwannyk.yukk/files/umeng_it.cache
              Filesize

              415B

              MD5

              6ee6f38737046b6296ce27d12c8a181c

              SHA1

              441b9258f896d1d6697681e6cba26044c1167ed0

              SHA256

              96b0a55418e8dac71eaf0cb53b90325437f8198d3446b94bd0fa760bf22f7350

              SHA512

              ec8c5987fe98b41363cdb78e957aa79a67e440199ecf8bd6e7d7a806e1d2b85f80fd7cb7e4ae3ec83cefa531f285e316cd6283a62a3c48e7b04d827c0da791c7

              Download Submit

            • /storage/emulated/0/.tcclick.udid
              Filesize

              32B

              MD5

              ad7f9fd74cdb1a7917db4ba3ea92e09d

              SHA1

              3e6457d8864129d87881ce7aaefd2a1990c2f4be

              SHA256

              9220b44e71c415485213d28d6e1fad132584074f23438789e096ba787b4904d1

              SHA512

              0e86a4264b9e71845b2860684d45e2f0e6729f4d0f3bc52a02c4d13caa8777f51f400c570836e67f5c359114fc1e7b0338016be29f705f934c9e8212e8a3db3f

              Download Submit