32ddfcdc3678b44367916459c2270c848b9376ebf2b0a9d4ead12bf14a1beddb

Analysis

max time kernel
2693749s
max time network
161s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
23/12/2023, 14:40

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

32ddfcdc3678b44367916459c2270c848b9376ebf2b0a9d4ead12bf14a1beddb.apk
Size

17.4MB
MD5

3649c08c6878ec089cf28fa59e1b06e4
SHA1

a8712ff1378e8db9763d66f566e45a4860f84447
SHA256

32ddfcdc3678b44367916459c2270c848b9376ebf2b0a9d4ead12bf14a1beddb
SHA512

be99c570dd438681f13c297c78e045ffa889d3a4c9e95ba0b1a10ff3d2a38d68381ecacc4f3310e57d76bda09afb93bb3cd9070ebe2e780545d9bb2189478296
SSDEEP

393216:QURN0J6JfqNmjrkEU+NFiUUNWbHUkntrrvUXig63rMPESFFcsfSd:QURN0JxmrnUUiUUNiTtsXi1YPEkCj

Score

6^/10

Malware Config

Signatures

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	mail139.launcher

mail139.launcher
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4590

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/mail139.launcher/cache/uil-images/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/user/0/mail139.launcher/databases/folders-db

Filesize
16KB

MD5
038ea21b984da81d53170dbb4542100a

SHA1
ebf8e7712b4a39a37a31e139bd3ce1e7895c9169

SHA256
87a9c008446728b9866262dccd6a1d789a86862d23ea1e4d2e38b43db83d3acc

SHA512
63fb8d71e6dbd9338775513aec11d99add48fe506d86d44a06daa55401cfa3effac43f89e76d734eef27d896e01567b930ad4902f309ec08199517bf11812bc8

Download Submit
/data/user/0/mail139.launcher/databases/folders-db-journal

Filesize
512B

MD5
727945644ff9787433af8250b5c22f2e

SHA1
820c0478ecaa0a5fa594aa058d216ead9a1ae059

SHA256
234acde84efd6f9b5c06743bbffdc16fdb224460f96653b3a379a34bc88e7492

SHA512
ac947d4c5fa6c40d25e86322a57d05749648471e140bc86cc2bd893ddbc487721909feede7626e58651e8c2927b8f5fd102fe073ab6b2ecbb1cfe3f4ea5d0ddb

Download Submit
/data/user/0/mail139.launcher/databases/folders-db-journal

Filesize
8KB

MD5
e358996007067a21342cb2566361d4b1

SHA1
06a6007d9d696c4459faaf5d884eb05901bb929a

SHA256
561767fe48a9267b0149bfa591697169f59041bcbfa3322e36886946468ac4c4

SHA512
4fd5ec9045ddace96ed0d75c95be58285a1da1acba3e33ad7a1163b2e64516457b0e79816c3c30eb88abb9f8661ece57af548f61b3b431f76b305a013ae9cea3

Download Submit
/data/user/0/mail139.launcher/databases/folders-db-journal

Filesize
8KB

MD5
4b02cc475f851fce7a0d4f3e28ca3e02

SHA1
24be6cc212cf3e3c436e8da1fc104734fe4cf1c1

SHA256
1582e0233b37c7e7de89797635bdd489ae02ad5b02afffef16a152b8ddac7ee0

SHA512
c2847e371262f8f322ae6e5707bad3ceb5f6a8cfb45f670dcaaf6839607df7ad593aebd73ca11dc484824b0ee99d5f8fd0a13920d0e34681eca0394d23c1f3e6

Download Submit
/data/user/0/mail139.launcher/files/.imprint

Filesize
835B

MD5
c1c839230a5d7add76432bf19b98c5ad

SHA1
538aaeaea65bdc584c4692df27670edc8f3ceebc

SHA256
e87f947f474a96ce2fd7a6645797b2dc2294e243505cc44a4b5eeff8ab361371

SHA512
f9c9e79d021f8b4a87d66749e838474be9c7bf2afd64abc9290f19e7530b3ccd4b931e5e0afac81aa1cffbb2be9f78e2f8254ac386e60a23b351d52973e61fb5

Download Submit
/data/user/0/mail139.launcher/files/.umeng/exchangeIdentity.json

Filesize
162B

MD5
4fae686c6c069034733f203346cca692

SHA1
87f5175b270ad1423fff3f0fc1bdb01b84dd5db5

SHA256
7cc4b62242d92507e6d120ba46e6f5359236fadbf35dc8e4a9fc4932b6b2f5ba

SHA512
2e8f3cfa3c0391d05c4c71225f1f9d93ab6c41664f306b9c5eeefc019b7dfe870d786baf4a7b6551e428807b098100f60a41932fc1fad9158f019ba1e38ab9e7

Download Submit
/data/user/0/mail139.launcher/files/libcuid.so

Filesize
109B

MD5
3a9395de32d4bb201d88f6b7cf9c53c5

SHA1
3f7b213b8affde39aace18b5d77f644c0c96fd3e

SHA256
982f132f7cb40f8ef491c157d70f7bb58ad4b3426bf9d8ae7b4a50fbb5bcb5a1

SHA512
59dce57d6b6b71ae6702bf89f6dc0599ebcf2b4e33aa9315ef0536fa1724e00a7ddda77d474c0a9b580cccfb762c28fca170f3fbdb705c623553d43de50d7234

Download Submit
/data/user/0/mail139.launcher/files/umeng_it.cache

Filesize
125B

MD5
abfde3d44be4a7964eda11fbc66a9e38

SHA1
dc72e24ee8e98e473327d16fc4f82f22c32aa86b

SHA256
ee76e38e9d57848891243d752247205a9969ab6280031a738236ce96c3e1e8e1

SHA512
f690b4ab9f45f4281a67b366fa1f76590f601888f6c30bb68a03837ed6b06ac1d532b72ef83d9e624c84cd09a46a09f03c3e4fc388e691fab5c254a9ee4e7a24

Download Submit
/data/user/0/mail139.launcher/files/umeng_it.cache

Filesize
245B

MD5
58d395c8989c7810e572a8283a43ccdf

SHA1
c39d4e2f9368178b10c670cb795a8289e9b319bc

SHA256
dad7a21a85144cef6598c112aa820b0fd8fb27643f4225344c3cd7dc76510d29

SHA512
b656fc784cb4bbc4d55432c6bde5c4f99bb6d354802473d12624be6157449a7c26943f33ac310027d2f441730ac2532032682224de61d06e0b629b34b5776dbf

Download Submit
/storage/emulated/0/AutoMailSDK/automail.xml

Filesize
323B

MD5
97db9d102a845bbfb45a003d334778b1

SHA1
88135ffa352d5029895d22b9951074ec99d2addf

SHA256
82ef741aac242cc6cd5b99a3e26208008b6dab3dd5abed914b0e0eb24517b3da

SHA512
059219d4e6ea4158d3b54c5dde906998353840cb0dac0ee3ca9016e6fd2523ba972ab59e3964ae2793f74efba85b06e90097a5c9a82534576fad99dd8ad1809e

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads