35e0d313f3f0aab3f903352a5f8064e01cfc267c738b477ce3eacd72a45189dd

Analysis

max time kernel
2702053s
max time network
159s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
23-12-2023 14:53

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

35e0d313f3f0aab3f903352a5f8064e01cfc267c738b477ce3eacd72a45189dd.apk
Size

23.2MB
MD5

ec3722d6c72f11cba3e62fcd0040733e
SHA1

3df4351d7fc72755684bb0ce7ffe15552f14872f
SHA256

35e0d313f3f0aab3f903352a5f8064e01cfc267c738b477ce3eacd72a45189dd
SHA512

e72998287046270a745f061f70d669a1e2d7ea876551160e67136c5985e510e1f01d34634188e372cbd72b8c81a18ad3752700325403fa306cfbbcf37c9ffce0
SSDEEP

393216:GEhQFcJJ1Q7mgRE8FMGOxfDJbgJ01roqzzp5VaDPO3p8yNbKysVgt+MK37rd:nhc0H5CEWVOxfFb2kr5ireKyFKVgEM69

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 6 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.qingshu520.chat/files/beacon/comp/1.jar	4641	com.qingshu520.chat
/data/user/0/com.qingshu520.chat/files/beacon/comp/9.jar	4641	com.qingshu520.chat
/data/user/0/com.qingshu520.chat/files/beacon/comp/21.jar	4641	com.qingshu520.chat
/data/user/0/com.qingshu520.chat/files/beacon/comp/1.jar	4641	com.qingshu520.chat
/data/user/0/com.qingshu520.chat/files/beacon/comp/9.jar	4641	com.qingshu520.chat
/data/user/0/com.qingshu520.chat/files/beacon/comp/21.jar	4641	com.qingshu520.chat

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.qingshu520.chat

com.qingshu520.chat
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4641

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.qingshu520.chat/cache/uil-images/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/user/0/com.qingshu520.chat/databases/beacon_db

Filesize
12KB

MD5
171aedf968e17a2744d2585715606cb9

SHA1
bbeddeb3b89fcf809619c35b4a318a80e7d5b029

SHA256
d2ab452d9360848f46af866b870b5c6fc98230b09c72b89cb1a4b2778586678e

SHA512
78a0f517ee3d21c153dda6dbfec4187ebaee9d520d7b1b63f358bcb125d08aea53f26943907a56fdeba40161d9fc7e4fd63f9ae3154dd2ad887ba0162738285b

Download Submit
/data/user/0/com.qingshu520.chat/databases/beacon_db-journal

Filesize
512B

MD5
8feea4665e388ffd52ddfb8939aec8ae

SHA1
ffb538fd2090c236eb9cc15322f3edf82fe160bc

SHA256
4a2023350ccae759541073e8f2be1c227da3e9ed936418f6dd2b04f21a2fd530

SHA512
d5fcaaea4310fd1038dc1bdcc4fffb7e7742b2381be698a7d627d88289b70517ebdda1f5a18512bfcd44f9a32580f4107e006918b4cf24cf21b8c1ccec739a50

Download Submit
/data/user/0/com.qingshu520.chat/databases/beacon_db-journal

Filesize
8KB

MD5
680a82542b1247957a084884abec82d6

SHA1
576e4d095de95dd36150eb000d44eedd68b900ab

SHA256
fbe1c4313be4a1508ec8e22209860d68d3b9d3b8246aa1265f9622c31e8819e0

SHA512
17a0960a536289ac90d19f1a9d7cd644e6530d81b34ff77cf47b0a8c786acabbed1b4130f94734c4ce3b2c5d6eab039edb320c75bfe024b8244c6618c1b32a82

Download Submit
/data/user/0/com.qingshu520.chat/databases/beacon_db-journal

Filesize
8KB

MD5
e6658020cc46f7cbe5d39c28351436a8

SHA1
3a12f203b1620959f7010faed645e780b77b45b6

SHA256
e2e696faee3c56fbef10990dea68c2bd7ab04fb0ecee10b1d2832387a4cd1ea6

SHA512
f9d9d4553e312ff4599eef12c426a72b1d329ceee38269f0a541818a9d5ad164233d09d703749e0b41b02092324abd4bc8a13bfe564ae111a7f1811b8af9ea88

Download Submit
/data/user/0/com.qingshu520.chat/files/beacon/comp/1.jar

Filesize
70KB

MD5
fbc9ad99563091d07cfdfaed823bcf3b

SHA1
906f5b3e984ddec5208bd01468901cd0262cc1e9

SHA256
d320347a935fb3a98ac3858cb55a9193965cd5f9b04ad97838fb493c612d1010

SHA512
ea259833bf55b9174f55b84ab62aa9a586287e0c1375f266668519d8ee273c7fb5c7419cdaaedcf1ea40c758531a65353d5c2a3083858d7c65f553b1f80149c0

Download Submit
/data/user/0/com.qingshu520.chat/files/beacon/comp/1.jar

Filesize
149KB

MD5
400bed053ad682fd97b6b6c29ca56850

SHA1
6510943291adc21449784053910d1c6b3b6ac25c

SHA256
2d6b9d05d52ac688020ab87693a919766d3bf297206c73414e265e9fec20bde0

SHA512
0aefd2f3364f92c69e9421c0c072c61e5d3eb786cec7ac4bb6229af24374153f73fec537bc61ad16c838f489179c1d217ff40518832f9ffe5d9ce5c62ae31dde

Download Submit
/data/user/0/com.qingshu520.chat/files/beacon/comp/21.jar

Filesize
2KB

MD5
81b45de6a47986d607e660539f02e21f

SHA1
d2f1961e00bc48dfcbbf76a3d5648544e5812afb

SHA256
43919275b8694ddc0de13559603d2b8fefaf80aaab7a596d0617e324dac130af

SHA512
7e99792b4d6e6f0f35b4966a934942a1658c6eb27341905cda65adfc5d8aa496c33229f3bfdfeb7fb8a047e603bcf5463efa34c233800df723b26943f7c28466

Download Submit
/data/user/0/com.qingshu520.chat/files/beacon/comp/21.jar

Filesize
4KB

MD5
95fd429692f1c425d2ba645bf8aecfd0

SHA1
9deceeda826681da904e5072354e29f10e2ca0c1

SHA256
f739e9eda14c551de612e4d796bbf66259c46a0fd436ca9cfcd22502c52be3f6

SHA512
51c1bf3723a9f80b607cf9ae67fbc46af4688fd8eb55b679c90a36fcdc54f16c14119fbb54026f59c528f6cfc2fcf13313173591065fbd21042923cdc8631ebd

Download Submit
/data/user/0/com.qingshu520.chat/files/beacon/comp/9.jar

Filesize
5KB

MD5
07e7f8974d3ebde93b2d85aca8d96470

SHA1
72afb51e234cb6f6b99c50739b2b73d0182d78e9

SHA256
15c5291d63d9425aad8a2374804589ae6a0d377af59319715f35e09bd7fd1674

SHA512
cab58123d458d3b37880569b5e6b40dfd711a4ce259a17292a02935c885866e440704f8075cc2485108c425b79ff7fd032fd7bae6f09264fa5ec9de204a61a54

Download Submit
/data/user/0/com.qingshu520.chat/files/beacon/comp/9.jar

Filesize
9KB

MD5
2107c300b3b0233ed34d07baedb7f239

SHA1
0f43487085a81ec035af5f5534f0ba36c7eebc90

SHA256
47a25b67b95adc93403e37577e8f8d366ba935724ceb0aa3c02930f69748a55f

SHA512
d9be4b41b1e1a8e507f3146b44b5e05e1c96a67f79c61083e2736c486f1ba9fa61839216c47de656e65f5f597adb659982239a5d49887ca8dd566542c2a999a5

Download Submit
/data/user/0/com.qingshu520.chat/lib-main/dso_state

Filesize
1B

MD5
93b885adfe0da089cdf634904fd59f71

SHA1
5ba93c9db0cff93f52b521d7420e43f6eda2784f

SHA256
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

SHA512
b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

Download Submit
/data/user/0/com.qingshu520.chat/lib-main/libBugly.so

Filesize
141KB

MD5
1c70f8fafd4617a603b00eac5233dd3c

SHA1
b30e472514367b91518b3304971a6c9b87c289c5

SHA256
64d4362d15c363d281f5569a40c1a8e746b20a5aee08b1d3f6c8618e00252969

SHA512
75c7438e8d7464b9cde1dc6b79c62f40ec8b906875adc8321ced86447eba698ff38aef62c7cf225efa89d01639cee7a9475c2b3f97c8ace6dd091ac65950a96b

Download Submit
/data/user/0/com.qingshu520.chat/lib-main/libQPlayer.so

Filesize
390KB

MD5
ecc7dca4bf1fb69309c3a5ab01721022

SHA1
b2955bfd302705b1dcd1a3c8602c58ad10fe8503

SHA256
890fbc8038bdd1189426de5e56cadbe370cfca543d68d7ea19fae08b65ea03dd

SHA512
341264cfea2f03a17819df82efe6f19b7a6e7df7d5c52f909a786fe69c7772e4b1b9684ee280068a863c4995255d91564514688f958b144b21b74ec05435289a

Download Submit
/data/user/0/com.qingshu520.chat/lib-main/libavcodec.so

Filesize
3.6MB

MD5
2d467170afc33ea03c864250b7292887

SHA1
40e43713b46bcdd82ca5f8b470a2a61f578cf672

SHA256
e7ed1b8f70ca981d268575e42a791b0efeeb2d0cbc0f94a1bcb5f6f022e7f1c3

SHA512
c7386285325feaf840897c25542d8c0c1c6b889ffd8cafa096108395e1d39d4208d05d549de3767cc4381d25dc0c9b689eb1068ab982025c1251b7e49bcecf82

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads