3263791bca4b03941b5e1bad727c2807665db12dac93e62db03a7c6f919e2847

Analysis

max time kernel
2850310s
max time network
160s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
23/12/2023, 14:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3263791bca4b03941b5e1bad727c2807665db12dac93e62db03a7c6f919e2847.apk
Size

26.6MB
MD5

ec674320d8c998f5cd45170177ce6e6e
SHA1

3d05daf1ed7d8f087bbb38a7c87a243fbb1f11a1
SHA256

3263791bca4b03941b5e1bad727c2807665db12dac93e62db03a7c6f919e2847
SHA512

f668a71a851108f0b8ff2fdcdd96312c0346ba16240c230de8f8e2166287b639b7bcd4fc563d71e5539df88ac836c9ee7c5abfa19de8f04fb51b458f73f71f45
SSDEEP

786432:H4C1n2vpvZeDV5iDByr9aKg5qFQqkpx30iSxbOAzIOoKjA:H4I2RvZM5S2AKkq+qkXObOQIODU

Score

8^/10

Malware Config

Signatures

Requests cell location 3 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.suryani.jiagallery
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.suryani.jiagallery:remote
Framework service call	com.android.internal.telephony.ITelephony.getAllCellInfo	com.suryani.jiagallery:remote

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.suryani.jiagallery

com.suryani.jiagallery
1⤵
- Requests cell location
- Uses Crypto APIs (Might try to encrypt user data)
PID:4238

com.suryani.jiagallery:remote
1⤵
- Requests cell location
PID:4314

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.suryani.jiagallery/app_SGLib/libsgmainso-5.1.81.so.tmp

Filesize
591KB

MD5
c85e8919765cc22095d1b8e40601e34d

SHA1
22d48933b9f30a028cf4c9d993f59c767f9e8e35

SHA256
f4ab50b1188cc9913c106f1f661162cb7db90aa288a90fa6bb41c5938b6afa8e

SHA512
6715ed9290b868a5733f6c6001e9de1375a381b5f61552fc0adfd825c72977cbd34a347f7fecad8cbc798af7b5ef59f4a23bbe6fedb714e4dda65a1e5921c08e

Download Submit
/data/data/com.suryani.jiagallery/app_segment-disk-queue/5m6gbdgho6

Filesize
1KB

MD5
53e10bf8c8f15c79f321c47a7e0c70d4

SHA1
e9839c0fb3b615abbe784fe6133e02f2e8889170

SHA256
bec33b3dc28b735e8c7ccf2b08cf27f92080e6b33fa37e21804aebdbfc93fd87

SHA512
8038c740432e42ee0ee2f6d11465766ee400aa28e5e26f0f47afd5d2d3fc4c9df54e32d19bf1fdfaac787a24da53ae6d3209fc7ee4ac4d39c314ea6a96add797

Download Submit
/data/data/com.suryani.jiagallery/app_segment-disk-queue/5m6gbdgho6.tmp

Filesize
16B

MD5
c33583fae4e0b61cde1c5b9227963237

SHA1
fe2ebe4d27469af1460f7e852031a04208ef629b

SHA256
35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

SHA512
fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

Download Submit
/data/data/com.suryani.jiagallery/files/.um/um_cache_1703657294274.env

Filesize
584B

MD5
3c361f878e46537ceeb571d399cbd365

SHA1
160ec6a56bd75a253b7a42be4672e81b64bb32d2

SHA256
65c8bb3c29c903189655b4c1054f18b2d0236cbcf09aadfcfc4ab6fac03d26e5

SHA512
15b436589e0750e5fd322408c3f17b581a5b434cddb02793791c88130103530a2e5d7304ceb0ef6a87fe02b446d8f9299f326fcf380f36606080f68c8d519e55

Download Submit
/data/data/com.suryani.jiagallery/files/__local_last_session.json

Filesize
48KB

MD5
c8f15da19830f828f5ca3cd6b79a52cd

SHA1
b5ddc5c18eafd347be27391bb2e19bf7c06f3bac

SHA256
85f80c54bd050fbfcad41f635d3dcb6bfd1c97b42b4d83e48895cac7ca118623

SHA512
0db621aec3d8ddef8e03a6952fc08bbcbd3938ff74e51629a82acd121908aada313c0a9149f65d4f7eed4bcd36b0fc82ce53b0a8ef0b9d6cf4483146e502db98

Download Submit
/data/data/com.suryani.jiagallery/files/__local_stat_cache.json

Filesize
32KB

MD5
38317bb61bdf3fe01c1c0569ac35835c

SHA1
aae56e8f54117fcceea1ca4c1196c43a526c2f4a

SHA256
67a0c0ec4c0f21f14cc7515e15695794f55b436a8929f138d4a78ae7c0a3cd25

SHA512
5503da5334132faeafba2ee0bebc5b7ecae73b4148cf0bde5ddf4a7429fd21dd6bef0c440851796109dcda9ce4fbec8119c6c34e7a7a56fad7b93713f907a69a

Download Submit
/data/data/com.suryani.jiagallery/files/ofld/ofl.config

Filesize
235B

MD5
3c1ebfe42360b9fc1e0f35b3ea914616

SHA1
c5248e0ae34933e2f27a1e3be1bf0a34153f5995

SHA256
9812d7ba0b64732924387f5b8a68a5623eeb259829c89a9754e5f718a6edb070

SHA512
c96255788a329f8994ddb09292fecc7be8556e1873bdd1a3bcedb50234d68021778319123bf760ecaadaa945c2c377f5816412310625f7837c92bf35fc65355c

Download Submit
/data/data/com.suryani.jiagallery/files/ofld/ofl_location.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.suryani.jiagallery/files/ofld/ofl_location.db-journal

Filesize
512B

MD5
764d54f924f198b0eaae9a173ecc8e6d

SHA1
be19714403832d5093205e5b0167600a50f3aa59

SHA256
1d149e4dd58a8a1d68b8c03ab0691d6a0e411d18ef91f387f1728244182c9434

SHA512
ad7d6695f0dda8656dff15be9c375cae510c34259e1d7456ca9384ce306533b92a2779da73ab814b48a1cd3e0481fed03d0b5183eb473e757053c94a614b65c5

Download Submit
/data/data/com.suryani.jiagallery/files/ofld/ofl_location.db-wal

Filesize
48KB

MD5
10965ba0a5a60f26877cd8b74a5a0952

SHA1
f1f5496989b158b6ef46dbef434dfff6a7c84a6f

SHA256
490670eb163cf180d76ed3d8712d004ecc572c96215ce396ddfe34135313d011

SHA512
1bbe87f16b72e5f69ca831f7ecc0d2b967f0be947a98cbf9b9b5a306960497881f400aa655803d4ecdf6c9fa5e4fbac3962a7bddba62da28d28dfc1fa8581390

Download Submit
/data/data/com.suryani.jiagallery/files/ofld/ofl_statistics.db-journal

Filesize
512B

MD5
719a551c586aa9199766dad9e93f4ed1

SHA1
e5fbc9aeccc1b4e0def4d9df4b55a3bba9f33183

SHA256
4549100af312c0291025f5bfe0d3b9cd961d13cebb449830dc3c43892e201e80

SHA512
cd47a23fad1f74fa9443ff0901ff0b9dc143e111bc760793c07855aa072f27aead911ef3cc635f914d3ca3adf6e9fbe3651311078e2911289779fcbe952d0c27

Download Submit
/data/data/com.suryani.jiagallery/files/ofld/ofl_statistics.db-wal

Filesize
48KB

MD5
699284b8ab369b8421b9e74848252264

SHA1
e847c520a6760aa5cfee65313ca5db9834199461

SHA256
c74fadc42ea002569982aafd6cc538ec1de17cba1c46708fd8114c5069d92e54

SHA512
bbd6ab0598d3de96c08cb3d4ac31feddbda595e77e08e24d0756c915371425259c1cba8cbf6384cdab04f052c3dba470f6bf5e04a7daee57ea3acc5eb31ed6b4

Download Submit
/data/data/com.suryani.jiagallery/files/umeng_it.cache

Filesize
310B

MD5
125e93f697ff6a92fd6be361960bc294

SHA1
30b679b88d766c58ce3280dbc589980c442c003b

SHA256
d51efbb54e3f41c8d2a17cd4ecc043cd83cedd1a2be1040c9c465cd2edf02063

SHA512
4423f367ec85def444328efb509c5c8adfa7a2c72891afa221cbd95665947ebaf6dc68f77d1bf459659b1d8608b267fdf7ac4bf82fef61cb95a92165b8a9a862

Download Submit
/storage/emulated/0/Android/data/com.suryani.jiagallery/files/baidu/tempdata/conlts.dat

Filesize
12B

MD5
8d80bc8ea90e9cac010d3ddf97bda5f5

SHA1
f063bc0d356e6ba9ab1eb9a851131ffbefd8fa07

SHA256
f52db31332534833414abd5e870f78c810b8ebbe5b134bbf599506beecfd1b93

SHA512
9ea732dd572a9a4ba91b70891972230a09576687ca1bc19e62d5a98b5b84e0f2ae11985108008bc9fbccf357219b8bd3dbf146bb70752f618f70dc5d0c46a7c7

Download Submit
/storage/emulated/0/Android/data/com.suryani.jiagallery/files/baidu/tempdata/conlts.dat

Filesize
159B

MD5
2f0108de1c4991d6e4af32ca2eca48aa

SHA1
21219e99467a62501fa3970435953d904adf955c

SHA256
13262ae1e3c1041fceb408d3b50b2fd527f14831596a4979041e1eed32e4c187

SHA512
389cd76f2744cf2cc2bf587fcea043e7917101ed6f8a09a64dc299ffbc12badc0742492196a63c82e89feaae92bb1966f0725e29088ab36e0970494be5fb2c38

Download Submit
/storage/emulated/0/Android/data/com.suryani.jiagallery/files/baidu/tempdata/llg.dat

Filesize
24B

MD5
161557b06b4a4d3ce095528dea370eb7

SHA1
8bfe9c4d916fe58d856b5a6ecaf8cd9ea4df2c9f

SHA256
f054ef19481234ee5b2db1d1c681839dab235a857ed3a4bc02efa8f785f478d4

SHA512
96ce8aedbdbb387438efc86aaabd13a6378628bfae203d2bc25ea1cd7daa6ddbd6dd2c81d631fbdc9b653a93011d3c80f0c085580275b683d5e0bce077e6e449

Download Submit
/storage/emulated/0/Android/data/com.suryani.jiagallery/files/baidu/tempdata/llg.dat

Filesize
446B

MD5
207ca1b359ee7e493d1c8bc02d1a8cb3

SHA1
dda71b6a0895ffcd44610c80f454a55d5e9b976f

SHA256
1ea5db429e984657e24a69488d004ecb47eff19f006342b409e2f85556b95757

SHA512
cd2c57c2a49ec852f14ff2f23f929b69c187361b0760b9b3402b7f8d35c22134e4b930e3fb5c6767e00fdb75057036513776effe9d05745818c1e85ff34137f8

Download Submit
/storage/emulated/0/Android/data/com.suryani.jiagallery/files/baidu/tempdata/yoh.dat

Filesize
24B

MD5
a936690571e9104e1922dda4a0ba5bd1

SHA1
65f49c57edde2f96be2a1dbdfc3f7351f1e66554

SHA256
f0f5049c51879dd7da0ce4a43349b5b34ce053d072a0ca704f62cf22ba4a8412

SHA512
3be1c3693963aebdfc04e86b1c820ee0ec3cf0b200e6a4788ef1141f39fd6c2f77f4227247ae4affa66c0a6c027df8466cc0dcec1e67ebfb953e36bee97de394

Download Submit
/storage/emulated/0/Android/data/com.suryani.jiagallery/files/baidu/tempdata/yoh.dat

Filesize
24B

MD5
1681ffc6e046c7af98c9e6c232a3fe0a

SHA1
d3399b7262fb56cb9ed053d68db9291c410839c4

SHA256
9d908ecfb6b256def8b49a7c504e6c889c4b0e41fe6ce3e01863dd7b61a20aa0

SHA512
11bb994b5d2eab48b18667c7d8943e82c9011cb1d974304b8f2b6247a7e6b7f55ca2f7c62893644c3728d17dafd74ae3ba46271cf6287bb9e751c779a26fefc5

Download Submit
/storage/emulated/0/baidu/.cuid

Filesize
89B

MD5
7844f164a0a59d5d9a2b55d8cc779c3f

SHA1
8df345c3c76f2e72c8e80c4f3691a11537b86a99

SHA256
4cee1c3a1817649bfc7ac9f4b4be26acbf6819de011c1f6f1ebe7f3c5b8f7eea

SHA512
ace1e9bb2f2b76f7e4ab8c671f3bd0e70e7a756b017d16e02fd225b057fa057b67b623e965452d9a320b1a1cb73417d5c393849de532722fe263635fd02ca170

Download Submit
/storage/emulated/0/baidu/tempdata/lcvif.dat

Filesize
96B

MD5
6c66c97ebd59d8e802ae904895a6d9cc

SHA1
4a155b550090f2030569b05e48c3eb93d792d602

SHA256
e4b9e7c41308a44b77d4f8f54c39a30503a8a36c0e65a2a558c7ace8253d7b61

SHA512
a996ce5e16507ec154714a4d5e8bb5e81ce8c82b16d9ca7ecdc018021231256ffa02f9fbbcc36c379b0aa539883a668a07c256407fa65dcd9110a5aaa742581f

Download Submit
/storage/emulated/0/baidu/tempdata/ls.db

Filesize
591KB

MD5
2e2416c055e8ebad344fd5efdeb3fc12

SHA1
fbc3fe0bf107ad1354c8be362ce159483ecb0c2c

SHA256
f764268d76ff17253e3635af4b4dcaf8a072e46b5a18dcb63b7f02ffcfbf5614

SHA512
5f648c3a2d5ee7c6d64d2bc4909f1f3a369759c753c1b41c730f00fabeae55ad565af933dce218a321e361abafecfce48d45e48cdf7c3bc19412202be770064f

Download Submit
/storage/emulated/0/baidu/tempdata/ls.db-journal

Filesize
1KB

MD5
a21471759f9e2c471f8143e01462b468

SHA1
54bfbcc83ae5ac1a1eec40473b2cedad2f5133b2

SHA256
58ff4fefa3b325ef0de6246ad0423f2f81de4aaed9ab29a2e1ea4821878739df

SHA512
cc9322bbc2dda77841f9700c22521a32e25d4ecb7ad882b50500716fb4b7337e2ada071a856b925fa63b886b746afe6bec8bd53bbe07f3e695bbfb041b1c29cd

Download Submit
/storage/emulated/0/baidu/tempdata/ls.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/storage/emulated/0/baidu/tempdata/ls.db-wal

Filesize
52KB

MD5
b1bbb7fcd254e494b48ed3d3c35cb56e

SHA1
ccf04f173de3d78c172912b4679b9feafdcde507

SHA256
d7366eb6c2d8d58939707acdeb8dbe1e9eecd33653d3cdbff8afb3da901ad472

SHA512
7ea08484d124df6aeab877e9423f471486c8738aac740f786c1a97c6ff948228b1ae8712a6a3eebdd759bc802cf03109fe6f8ea20b0001933aba8b9e659d4706

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads