2efa6baca706787a6561aa57f5d0023508771a69a36330e3e29ae58a20562bd6

Analysis

max time kernel
2839671s
max time network
143s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
23/12/2023, 14:24

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

2efa6baca706787a6561aa57f5d0023508771a69a36330e3e29ae58a20562bd6.apk
Size

19.9MB
MD5

7b234c975f7bd7401621f81a2cc5f99b
SHA1

d8b2a081e0db6504c702718c023da17968440b69
SHA256

2efa6baca706787a6561aa57f5d0023508771a69a36330e3e29ae58a20562bd6
SHA512

e3702d3276917868944b62be75f04ccca2f5faf1ca5fe554ff832f0b273d5c5ebb2b7e799d300490485dd72e3824c3ac64688236ebb13c0c76acfce537a29d46
SSDEEP

393216:f/2Tqxvr++Ffw0i3Q4IUTeUTKSEhQtKjQtt9BkP+SEhvSEhfPpeD:f/2+xz12Q4XeCoQtKjQtt9eP/oaofm

Score

6^/10

evasion

Malware Config

Signatures

Reads information about phone network operator.

Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs

evasion

description	ioc	Process
Framework API call	android.hardware.SensorManager.registerListener	com.paipanapp

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.paipanapp

com.paipanapp
1⤵
- Listens for changes in the sensor environment (might be used to detect emulation)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4214
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
  2⤵
  PID:4264
- /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
  2⤵
  PID:4284
- getprop ro.miui.ui.version.name
  2⤵
  PID:4389
- getprop ro.build.version.opporom
  2⤵
  PID:4407
- getprop ro.build.version.emui
  2⤵
  PID:4425

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.paipanapp/databases/RKStorage

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.paipanapp/databases/RKStorage-journal

Filesize
512B

MD5
d50ef8577897615bb1f65360d1a03477

SHA1
ced9438f3874fc4aa53b091474b13944ed02f3f4

SHA256
c1a18d3e0c482a8796cce101edbd12d6077d0e0f745d013f05d12c26c463a6b7

SHA512
3e2760d55193d172ecf8cd63a5b3aa1318c3252f76026513bfce711a4fc31edc46f309f726b8ccc39a8d9bafb2f69012d2b0c2d106b62baee4e7365bc5f397b2

Download Submit
/data/data/com.paipanapp/databases/RKStorage-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.paipanapp/databases/RKStorage-wal

Filesize
40KB

MD5
c4521d8af8f254b04f29721e4c45d2b8

SHA1
36e13236b240d4a41f57b8c6f4db78ac915a52c7

SHA256
4c7ebe7bdca7e00547a61af31facb433ede1594686490b003b1cab77ac7601ac

SHA512
248e14c499c42f35d7a269dcd0796db3fa7571b65b7d3e04acc1102e0da97bb17db5108677f2f3c0bc00fd2a2e3224fb592e8d8b90f62b586be3b16d699d3984

Download Submit
/data/data/com.paipanapp/databases/cache.db-journal

Filesize
512B

MD5
15991ce5f1d5adc3f5a2e671f199fb2a

SHA1
13090dac9e7c3167d1a95c66b3967f2c3c991f9d

SHA256
90f5f4ceb69758b5d3cb0a25e956b1a4586bf1f22d9081bed1e76c4119f2ecab

SHA512
50b1db768d4d8aa3d42b3f71429f5762ea23127e1a1b1f0bb6bdf2c7bc4dcdb38facb903beca13234c615748e07aaf755d7cc69a65a3d685af22772fb70788e9

Download Submit
/data/data/com.paipanapp/databases/cache.db-wal

Filesize
16KB

MD5
057b62c1fe6b3c16203e6432d2fa125e

SHA1
64f9ba99fbe33a8984baab1b847cbad928fbb1c5

SHA256
6a8408a5e0bdcbc82e882dc617308aa0a98a8f8d36bcddf1b110c1cffb8e24c8

SHA512
12de337ef3c828c7dc1857ee4c702c056285167149ece08a483f1f01db72895d11099ae7e587d494883e749811962bda79b104a4c72f95d08bcca794f60ec78f

Download Submit
/data/data/com.paipanapp/databases/tencent_analysis.db-journal

Filesize
512B

MD5
7dd9004fe2da07052e447151b46ba60d

SHA1
b0179319c1756e93cfdba43b34590f923ef17f41

SHA256
1aa9ec422d703b3c92119a7265b85f8d1e8ac3c6593ebf51f8ec2d121bfe7146

SHA512
08441f0b1a9694aa7e8ee73f238fa346acd06d7559de01528a52a8f8c1079d1d2873e602cd17532603208d98b64b9ec9a8ca8d6b5334c1c976256b7b0db9181d

Download Submit
/data/data/com.paipanapp/databases/tencent_analysis.db-wal

Filesize
60KB

MD5
6fcdd471242e8acace621fa396477038

SHA1
acf376fd06727b38cb79cadf3189ee0667c974f4

SHA256
8587815bd994bfb8cfbef2546645dcf3298ca6d07e0b7b86bdb81d37a11e38ef

SHA512
0758e53fa6fc3b352815bec7ebbdda485c3ae6a28516821acb680b6334e2b31ebb47673c301f10785c2b14f357d891b07b5cdb073b3049679812ca5ff6b7ba87

Download Submit
/data/data/com.paipanapp/files/com.tencent.open.config.json.

Filesize
1KB

MD5
f526172de1566b34fdcea744710d9559

SHA1
000cb54d9a008a807a1c5a3fd2b2e7cb41e7939d

SHA256
8572be02b59f4d514000939ec04a9b4e2380c55265256b724a617d8d0f4c6940

SHA512
dc81f0fe345b18c96b1638c67b9ef4c5e60059dfc4a02f3c30a23645d4847abeef46cf467d044c42597115c48052ce0e8ea24328382114a544c5dfd039a95e7d

Download Submit
/data/data/com.paipanapp/files/libcuid.so

Filesize
129B

MD5
d6375ab6b4bc32cd7d4e9eaba2af59c8

SHA1
66734653f57fcb88cff96e63f709e35f92e8d8d4

SHA256
f9527df21bc13110a1b3782fca3bea419d73a1ca8179d51e6608472c4843168b

SHA512
7c0dd0fef1a6482b94afefff59b6e1440311e9e328b85657d3be2197d8abe92a046ba50b2230d544ad2a92f911985a716a947235239694720c437d3adc843f49

Download Submit
/data/data/com.paipanapp/lib-main/dso_deps

Filesize
132B

MD5
fe8906a1c169e02dd7129e7141dcb4c0

SHA1
acbd8ab80582fbed4830d2874f323156edafba52

SHA256
a9a8cfcf7d2a30f2a4cc85f32d95770ea485a4517443d86f06f7115cadd27006

SHA512
d8c83ad455567b40217e01e1ee98ba1b66161b296cf4d8705247f6576dec87ab8315681772e54b3122f5e16bda16c96b6547fa1d37a127097b15de35ba0c2d78

Download Submit
/data/data/com.paipanapp/lib-main/dso_manifest

Filesize
5B

MD5
c06857e9ea338f3f3a24bb78f8fbdf6f

SHA1
c5a0a2529d2deb60fec041b4fbd722a2ebe31702

SHA256
957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

SHA512
29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

Download Submit
/data/data/com.paipanapp/lib-main/dso_state

Filesize
1B

MD5
93b885adfe0da089cdf634904fd59f71

SHA1
5ba93c9db0cff93f52b521d7420e43f6eda2784f

SHA256
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

SHA512
b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

Download Submit
/data/data/com.paipanapp/lib-main/dso_state

Filesize
1B

MD5
55a54008ad1ba589aa210d2629c1df41

SHA1
bf8b4530d8d246dd74ac53a13471bba17941dff7

SHA256
4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

SHA512
7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

Download Submit
/data/data/com.paipanapp/no_backup/com.google.InstanceId.properties

Filesize
2KB

MD5
406f864252491030fd69e737eeefe6f6

SHA1
4e9430ab057a8eac67b435b1b1d898b5bcbed446

SHA256
16599547a514732f1aa813ce8c553dd9a602cf467bcb932c67fa51fa203b12a5

SHA512
ec65f4b102dc9e5916884ff1512520853e3fa05baee1b95522fe658e284c92a34d73b7b36a208edd51390b141935d6e09acda3ced9fef066517a910a82d5bd85

Download Submit
/storage/emulated/0/backups/.SystemConfig/.cuid

Filesize
89B

MD5
91cfb506d04ea8a6050817d941b6e31d

SHA1
de61b059e6e7c6592fec651b337dc534359eb428

SHA256
d7a24b646ea287c88b8e5b504bc51e401648d821dd665a8f550f6c0c7abdd9b7

SHA512
fbd8b4ec4b46ce2817830833e27a769700b33aa8b3a63b6400cb4f02501d84be7487443a649b9ea73fff972bc79a7bbff243ab38ac05a01325eb6a0d570dc686

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
20KB

MD5
249e034c9703afc1fd6062371c7f3da8

SHA1
9ca489179488e0fe5a35f7c0d5887f163e4890cd

SHA256
18fc5cf216b05487a87be99a662e7474bd54120f214e034b3179f40ca989352a

SHA512
b819b152548431c7892678ecdf23abe44cbdcf80e8f22707ab32a2aedb5356346b27e3c3e750665ba893d602af1c7dcca97edbac3c820859a0fc20714c22c0bd

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
24KB

MD5
8c7f6e3b52e6e841b895bbd13644ed43

SHA1
ec8daf46a7eb99c75ea1ce8582ef77b2df8455d2

SHA256
6615188d5d8fa77b44fbae7a249d073b3623316e7489c5fec95fe53188ea467c

SHA512
cffafd628e62fa915872796ee02dd8119cfebd6811291155acd400986ee5d34b244ab3b5d0bd386566724205771f665571bcb04950d390c5c60072fdb90c5280

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
24KB

MD5
4b8b9d217af3c6a221d52a6517c715d0

SHA1
2faf8d1a6ea6f3432839a5d9b0ff9ad201c80a25

SHA256
d70bd865eba2a7909ba2995561c655969df6ea0c114738723373768aaeff4d9a

SHA512
c95d23cf16893285de8cc0747df8d126ac93b983a68e99d3ce109b4b7365ae7a2ef1274c30a311090ac015610544fa5823e15ae2bbc127ce431ae3c18441b3ce

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
24KB

MD5
ec42f3db8e169fa3cbfbc388b256279c

SHA1
9af9e894416c6b39c2b0b2e3e7daff69222339b0

SHA256
8d38931615a5792fee499af7d79fec27e625c46241215ebfa979769174406939

SHA512
e5ae3114a5438d1c91d83290cd9924cb048c4f2bb3725f2ac6f973fef040f3547d02744be3f1aa9dec4fcb94d24c0a8781164986799547608f40652d908a160b

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
32KB

MD5
f58fa75eeca7521029ef7187c4e0dab2

SHA1
f6f95c8cfb2ca7a803ab4639eba932ea59a79014

SHA256
e0b0af634db84fc82725ff66439e4347704b6698e87fe14b5f1455edeed5a6a9

SHA512
c0999dddb70de6cbfdf62ba3514f6afdffdcc383bcbe8e119b1cbbc249789081a3648e3c7917ef81b9d4de146fd22c27f051b34c6349514cede59ed6463d532d

Download Submit
/storage/emulated/0/backups/system/.confd-journal

Filesize
512B

MD5
a8acabf74e54ad234d6eab1f112fe21a

SHA1
a10f93112a297f9d307b6020cdace24cd5ff013b

SHA256
0763f008408b0c003631af0654b368f6b1998ab469b18719e680e841d3c84d15

SHA512
41bedb985aaa2fdf08ab3cba9f073ce8f7612f1fad3d0aafc869e2f04992852706cd769a25bf1cbdd868090221aa12a4aa3cc6cfcf321f514cf2a9fdca0d02d1

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
36KB

MD5
f2f494d66f047a7a4be20ef9c898b86b

SHA1
92074f1409c16c5068659f559624e08295e6fe66

SHA256
64df9844822efe17cf384285479ad861559ee0ffb5f0fd2a36ec5101f5f2fc5a

SHA512
323cd91e8d6a15107d864e0aa44acb7d425bd1d896bdbde3c9cc84416df237302fd12650068493dadc7a744a8cbc983f965f62ada8a2185ee686052796889235

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
12KB

MD5
2ae3294c6be2737c346c2ff1313ad678

SHA1
9375c8ac911d5d5e8557b68bbf521438d1bd3237

SHA256
656dd277a13e4784caeb5cc521babb2905f766ce140a313a0c2547164536ada0

SHA512
752b3d4607122d4f789f837604a93a782a4cc4dc45f789d12c092853e2379b99f5bc9aeaa29aff734b24d4cba064c45f04e28fb6558286915aef07e436f2822e

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
34a4b192155d870a8ee705ab160c0f8e

SHA1
8bc7b602749408de090efa117a4897aa230d2316

SHA256
5a5dc1b7d6d4ed5a5bc80d1a85ce305c52fce7e780ac48f14afa94c0b611347a

SHA512
c3529c88b6814f8096d57f8172b92037ebd780697ddf32ddee944bcefe4bd3d257664e8e9b1345b6bbbb0c19d942f1b5fbbb61e267340edd015bbfc8caa71a87

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
65b3ee80d020c63ac77b349aee042e07

SHA1
d0601e6568bf9460974dc1ede8fb573f4ddb051c

SHA256
0750b08a41d50bc9836dfcfa54102b09f26bef659d306f5811133bd8cb88ca4b

SHA512
a1a6d098d45ba250ec735c792703f32914508800aba1e16328918a1727cd0151c3cd088ed8a5afa5aa0c9a1f2a507889a7b7101bbda44ece56c9df3cbb89e8e2

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
12KB

MD5
95f0b23ab70204ce0bd0e8fec756acac

SHA1
ff28dec0b57c7521138f87e45e5b8976f90cc663

SHA256
e722dd565a08aac0fec2837561a76eb8e52f81bc9c340628d4dc066bdc69e0cb

SHA512
dd3a511f11f19b38b33091b689a0d4918d81c5ae81b311e446bde5f525b37bab86a3c4aad05f7259a462d14abc2a7d1093112327fee30e475dca708be1e0f256

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
4eebcc20506469e6e63d4a43ca487e3f

SHA1
1da4105041178c136b9f56b2d354a6a681270c3e

SHA256
1925de9fd7c47313d090a6cc9d1bd8a1e18e66a8afc5b33a7c94435f641be04b

SHA512
69848756ee960fe7a2a5774dfd821feb781663ffbd2adb7634e57912fa653c0b6739a05f61e67f79cf5c410c9e724f786d14ebd6b076eff0c454cc51f089af48

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
12KB

MD5
57551f0c9455406e9036efa103c10bc5

SHA1
15226d97312079cca39b951b6850607245541895

SHA256
58e6dd70f8f50d857a7eef4060b75b915fbd97b0a89751a62eb1662f0a3023ea

SHA512
654cbe7173da600663ee796856e7bec45ff48ab24b672c63576f72895ef8b9c1adbd6522ab1960e6aa642c29dc5b3b2c59cb7cc9ffe9606de356c64f015ac6a1

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
5ddd48331bf3bdccf650be7e096dbaae

SHA1
beb1534ebac8f8fedd3d10bb018d3b52d7f440f9

SHA256
4678b09c02df49413b0e7e6801acc857ac449027a144ff80ae65d85406a82168

SHA512
cbbcdde6d0960defb42a262c99ad7d98acc79315c57ecbf3b9a639828ce585d2314f6a89545b697ad5c997f23403b9447891d70ad9af984e608a53d267e3e10e

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
25B

MD5
61715629371c02df9300a8be1e08ae43

SHA1
51dbe73d4a2143c6ba9129d70f5c31c36daae00d

SHA256
26f3d859438265008248fd5b89ad93a1153dddc4b847eb32c18400528845f206

SHA512
1ccb30b547789782d75b9e73cac59bd74dcd1698770b6ad4cdc02f3e9745a3cb7260207c13ea0ddb241920c2cf35a37d9a25cee4e2a0eaa4dd60f3dbca6ac3b8

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
55B

MD5
9bf47379fd6371e0c7e5f852e8e58999

SHA1
f6e924a9f75c04b5d13e8ec8402a1039dd9806b1

SHA256
328947cc395e68aa33cfd4f392ad4ee32ef8f3f6ac4b9d3dcd7d67f7985e2334

SHA512
1a77c3891b8159c5d6e12f0f65be7a39dcafcdd6437b02cd8a100cce2a66a85f3038d67a528987985b18ff3c1640c6d6a8dc66f9dada911bf44d2cbb4548d6f7

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
114B

MD5
1dec0993819026a1f397b00c7f019cd1

SHA1
26487c5f508c963782307d9fc15f5c8c8048f6c6

SHA256
909c0da117f0e6292e84951a294f4623a5cb608035bf9bbae2a0c94b6ca77209

SHA512
85709b98ea922eb6c4358ae8ee55f1cc9113a60f68e32591bb4a021688fbcb8c7f777155de266497c946cf5dcbe57c565c1c6fad7b67ea3658ff8a1aeba36373

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
138B

MD5
bdb319d723de87cd9e75ccdfb18159e2

SHA1
bc4401cb1349f9fbe9579fbf0d247ef82365bff9

SHA256
6456a8ec2cfae8a706d875cb4dba134308efeb09dfbdd319e80952d710a8ade0

SHA512
af7a80211adf81c965931323da25aa6a306333d65f7017f21f251dfc42677bbb41b0304b62e6467612c43774df4fc713d16f34e71c0e942012897ad59e35f971

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads