29532fa64c70cb56392aeb629241a442f04671444086b5f96d22224db13bb2f2

Analysis

max time kernel
2831707s
max time network
156s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
23/12/2023, 14:03

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

29532fa64c70cb56392aeb629241a442f04671444086b5f96d22224db13bb2f2.apk
Size

9.3MB
MD5

8231cdffcf969f292ced335ccbb751c0
SHA1

b97fe911772c90ab04e9725adeb8458df5fa47b6
SHA256

29532fa64c70cb56392aeb629241a442f04671444086b5f96d22224db13bb2f2
SHA512

bea17dd1df60817978cfd79d5a056af0d3d865d8820f60f1b92780ca6f1b8f43f9e7f12b9b808025add5072461c1f989ec99b75ab1220a6cee603a7063686ab6
SSDEEP

196608:nJ3Ptp0ejBJ43Nov9krIrPIj0j7s2ax2GmyvhSaTiefVj6aWQO:n5Ptp0IJ4dO9kmI2ag1yJSaWIk

Score

8^/10

banker

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 IoCs

banker

description	ioc	Process
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.xiaoenai.app

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.xiaoenai.app

com.xiaoenai.app
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4257

com.xiaoenai.app:daemon
1⤵
PID:4304

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.xiaoenai.app/databases/db_default_job_manager

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.xiaoenai.app/databases/db_default_job_manager-journal

Filesize
512B

MD5
c0836fdb262745fe43b0c2acee4de1ca

SHA1
d1d0b5da461ae574d549d34f96eede08284344ee

SHA256
d054ffdd25ef441d67b73236114b9cb4cec9e8358e6709f50cadb0e99a20c5d8

SHA512
987bc616375c0514af672a2bf6dbacc5d8a8abd7c559395c2c166e8d9df63037b34294d58e65eab1e4534fde68052fd5395470bace81af76eee8468ac340e950

Download Submit
/data/data/com.xiaoenai.app/databases/db_default_job_manager-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.xiaoenai.app/databases/db_default_job_manager-wal

Filesize
32KB

MD5
cb647b1b69e6dda1584477fd4161616e

SHA1
7bda157e68e715246103a405ba4b2f2fe35dd2b5

SHA256
d36e1e94288e6340a7f125fcfeba3713fbd1eb2381bdf1cf8c29e4e92c7c7213

SHA512
06c94aa07409b6d0c46f3ab34541d3576ecf350244296b006335ea43fc73220e56e0971461a7d3cf7df85aecc27b04f4d78e28de3daa00cc8226f11cffe048b4

Download Submit
/data/data/com.xiaoenai.app/databases/sharesdk.db-journal

Filesize
512B

MD5
cacb89ca5b315c594b47676938721863

SHA1
59c6c3819ee3839c2af4a4ebe8ac794c7cb2f4ff

SHA256
664e16f1de9227504b97c20e0656c88ca5a476832398f08729e77786781471d2

SHA512
16cd06f092a14d2a4759babdca848a6edcff580777d38e77f782e1a56d35f61046a799d2ef4b6a7b254cb7f839dd222253251377a5a1d05f9d420e5353ffc7f4

Download Submit
/data/data/com.xiaoenai.app/databases/sharesdk.db-wal

Filesize
16KB

MD5
e37b22b05fcaf95416443b7055f60296

SHA1
6b5ba0d317391d10d9c57b805648fc1f003674f8

SHA256
252b088141661c2a6ac65e1cc044851a8ff8284a62293ebc50293eada99fd0ac

SHA512
81fa4d9d1cc255f32fe6611877d99b04d5a1691fa3ebc4c14806247beca92dba7efd3dcc47257d9385291532ed048cb53b01d6a2c70bb76b9a978b2983fb362d

Download Submit
/data/data/com.xiaoenai.app/files/TDtcagent.db

Filesize
20KB

MD5
6a709bb797985ad298aaed083e5a56a3

SHA1
dfa98931f93faa8712576241b97015bcca478160

SHA256
e8973964cccb424f97af93a5ee5dfdfb0186c7f28a767abc1f113fe4078d6b47

SHA512
e66d6e8f0af794055c2ec207b1642a1e2b4daa3e6e556b0ea809b2db2a4eeac5604df1b478558e28e923ea579bcf6b931ef99bd7f9ddbbbb1281f37e484f0fc0

Download Submit
/data/data/com.xiaoenai.app/files/TDtcagent.db

Filesize
24KB

MD5
c70bcc922c0aa7ed0aa5ca0d8808c87b

SHA1
2e2d54d055aea708e8cc13d6f2a5dc930acf6663

SHA256
c1fccef9246cfb0795c43eea1da602cf95ceeb8702b2a7679821214f798f13d6

SHA512
d22607d1fa7bc5b9bdd2281b868be09a252f96170636807e89685c8ec6d0e26e0f734b273e41818c8322f7b2cab7d33ba26c2a61224f0615066af6c49deed6f8

Download Submit
/data/data/com.xiaoenai.app/files/TDtcagent.db

Filesize
24KB

MD5
baf5566678aa1402946059a86b380f65

SHA1
60f518782583381d14a4ece708b9bb2e91427964

SHA256
8426d0974b2affafffe181131b49162869650c7d9ec5472f19f2f3b458447e05

SHA512
7e8f43b26b9e2e7497a44883081104bf63a81ff54078b6ab8c630335c4b548ac8f8e0a3c553b64b58dcb24c0afcea3f57fb29dbe73817768ceede1641e68e946

Download Submit
/data/data/com.xiaoenai.app/files/TDtcagent.db

Filesize
24KB

MD5
21012c77bb6ea4d866917af3427afd9f

SHA1
f947ef2103038bba1e7168deb58613ead35339b4

SHA256
a465d7c051c28e8e19bf237e6b60567c0626431338cf1f0f406956dfaea649a7

SHA512
95ec6debb64f12884e9c743eedbcc18ddb44a36a7f08f30328c433f0dea21d311a0ef4aa6414f3100188a216138773cc91138f55e55fea37840e1b56b7e536b8

Download Submit
/data/data/com.xiaoenai.app/files/TDtcagent.db-journal

Filesize
512B

MD5
767b7ddee2cb4b0a3c362ac637f2d84c

SHA1
7a2a269b3565de4b416c7175770a91ec129d6473

SHA256
b8d3a9a67a10ee6d0502fcfd7370ede84c6768f3fc927ddb930fd36381056ecb

SHA512
d09be39b1917f1802457e007585b01c056f149d4b74b645ca44eec086cc6072b2422bef83d0f6c1397413d99e8488357804ead0d5e1426d6b23f3c5d29791d1f

Download Submit
/data/data/com.xiaoenai.app/files/TDtcagent.db-wal

Filesize
8KB

MD5
c58f7d01f6658b410f72092736fd177d

SHA1
736b42a39b52484950c9add0b90ee8ec5e71fd2b

SHA256
151ffffc03017154cca1e3e175de5b1eec01873f184fdb0ad7bd585a1be04572

SHA512
4f29777d87ffe39fa87eaf4a558d554b2fbfef98abeadcddddfb07ab20d5a46e007df75d3538560234dfb34452b306838c2de000ca09819851f37d1184baff30

Download Submit
/data/data/com.xiaoenai.app/files/TDtcagent.db-wal

Filesize
8KB

MD5
17c8b40f67fdfe0426c7234325ff7913

SHA1
c281a46d85a5be71da9a04ff1829917c497590af

SHA256
993f7d6d9146622a5eab5aee606dbbd477031c263256e1cbde61604bc6371d47

SHA512
bd4ba3fe3803cbdce263f4f11da297727b93616f73a150adc252824c8cf8c9f6c2111f6788b5bb2ff9939b81f126fbbe1186268f54ae4efb68aa223abfe8702c

Download Submit
/data/data/com.xiaoenai.app/files/TDtcagent.db-wal

Filesize
8KB

MD5
bb44bb0e01208f13348fa0f1bd108f23

SHA1
b675986e658a4571bdde650f2352ebe878af5a67

SHA256
117cb5e8de68d0fff2e773de01203485c13db295de8c00b183cb45cdc7723539

SHA512
e611e10176371fb3cfdd2e9d9828407d6d4f3a8976c9db5c1f276377ebbc927d04217ec68899ccd739ae7234f990872546f1634b2ebaa3852c8cc7bffc52f0e3

Download Submit
/data/data/com.xiaoenai.app/files/TDtcagent.db-wal

Filesize
36KB

MD5
d78781fa44685717069169951149d835

SHA1
69ae5630d687c3a19e09dc6af2a313fd25112628

SHA256
23ce9110dbec0580ea1c00c05abf2eb65b5e75fe6b1954feabac60c6ac2f6226

SHA512
c45d6cc328f6fbf872e6c3f373839cb6ff9128b06d37e782c4fff02248854d244810228278911f3662ffd68578b52e1b77ac97c23366ad2130ec96a918f6263a

Download Submit
/storage/emulated/0/ShareSDK/.dk

Filesize
107B

MD5
c9383021bd97affc44be4db7018c4d7b

SHA1
7e680409d1c86e35149bebc22f2cf8c484f0d23e

SHA256
b7b7e032170e3190a84359e5c37adede1d58b6bf4c455ef0c01f73335709bb65

SHA512
7303f068da97319891e2d25c1c737035f1cfdc365d75d954102b612000e54d7e2b5dfafe10bdf909563e2b46ec3ff9e546423bff6f0aa9496880eab1c1c36a81

Download Submit