4084d96c0de612f144b24a2d7d811a5e8ef14e5986f3f81a0055d04f5cb9e3f2

Analysis

max time kernel
2607245s
max time network
162s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
23/12/2023, 15:40

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4084d96c0de612f144b24a2d7d811a5e8ef14e5986f3f81a0055d04f5cb9e3f2.apk
Size

16.5MB
MD5

6835dfbd651bd07ec0df3e70df5e08a0
SHA1

fa180c2ac02981f4e44ce00bd0afcc400f92dcb4
SHA256

4084d96c0de612f144b24a2d7d811a5e8ef14e5986f3f81a0055d04f5cb9e3f2
SHA512

1615907c47c8003545717e1bb1b9883b1fd0a2e111013d08e1f4fa45eb539e5159ba069534b75a74e1318b88f61c9cf6b1f96e804c30cc37aac6a71d8c9d5975
SSDEEP

393216:NP1eyQRdqzpnyiI8WQl3H0l6rjNORWCb1P5G6jjQ6XFBa2Xh7S:NPAyMKEMZ02jNsr1P/tXG2R7S

Score

5^/10

evasion

Malware Config

Signatures

Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs

evasion

description	ioc	Process
Framework API call	android.hardware.SensorManager.registerListener	com.yiwgtyxb.xg52202

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.yiwgtyxb.xg52202

com.yiwgtyxb.xg52202
1⤵
- Listens for changes in the sensor environment (might be used to detect emulation)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4636

com.yiwgtyxb.xg52202:pushcore
1⤵
PID:4673

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.yiwgtyxb.xg52202/databases/ua.db

Filesize
12KB

MD5
171aedf968e17a2744d2585715606cb9

SHA1
bbeddeb3b89fcf809619c35b4a318a80e7d5b029

SHA256
d2ab452d9360848f46af866b870b5c6fc98230b09c72b89cb1a4b2778586678e

SHA512
78a0f517ee3d21c153dda6dbfec4187ebaee9d520d7b1b63f358bcb125d08aea53f26943907a56fdeba40161d9fc7e4fd63f9ae3154dd2ad887ba0162738285b

Download Submit
/data/data/com.yiwgtyxb.xg52202/databases/ua.db-journal

Filesize
512B

MD5
162bcf478780e25e8ca0b003c07ff150

SHA1
8ea876cb54110a426cfa22c7d6bfe2bd4a037f9a

SHA256
d12f836e46eced270f9ae0966d9490f701e7c356c9284aecdc27895a83fce2b3

SHA512
d98359fe703bacf690507a0c63e04436757fd9fe897ca0790bcdd5fffd2a7c06f3d3c74de209bb7b7345d6608b19098a6e899034ae4c9e003f470bf659e46531

Download Submit
/data/data/com.yiwgtyxb.xg52202/databases/ua.db-journal

Filesize
8KB

MD5
c0316d0cd920a83bd440951c8769951d

SHA1
e6b1f1af722a44e6d1efba011a3331f127c48185

SHA256
b62fa381f4fc7623e0fa4c7c645ada093aafb09d7fd556029575fa285d59b0d6

SHA512
e0461bd573a0f7528154ecf37690573d3fdf1a30cc58e5f43652b05f26e3581ea9a908fe1297377bca3915ac95f4ace58d72d519c2cd6e9761d7c3eaa3554646

Download Submit
/data/data/com.yiwgtyxb.xg52202/databases/ua.db-journal

Filesize
8KB

MD5
f1d9d74a0c1fd87df64253ce23d74650

SHA1
a0df89c5afeeaea5b8858608b9d49c71fd6cd129

SHA256
a84d9bbeeadb7c1dca97894c5d2780618e4d848634d2d42e648563a12b9faa0d

SHA512
edcb30bcd455be106654efd0013863f0ae41b5c96dc8daf0f9dba2cbcd4581157e362bdf62820aaf22ef0f3f49beed2c829e11664a23af17552421b09ff6e8f8

Download Submit
/data/user/0/com.yiwgtyxb.xg52202/app_crashrecord/1004

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit
/data/user/0/com.yiwgtyxb.xg52202/app_crashrecord/1004

Filesize
236B

MD5
b9da6b6fac258869f01adc9244123487

SHA1
da81022c73d161845b3a91b20b4ca6d3fb06c4ae

SHA256
150226acd4c3d0bf52bcdfe7280f83c576cf9137561b937f730ede911d1e1693

SHA512
78cbe0f00b9027f68876a093f4ebb3b0713599b44eff6b612da706fcb6187fbd33fbea9a3e0afe598feb60f314072cfddfac61e5812fdffda54b1318ccbbf919

Download Submit
/data/user/0/com.yiwgtyxb.xg52202/databases/bugly_db_-journal

Filesize
8KB

MD5
43a105d8219e0832aefd74459b9f4664

SHA1
4776a70338b3d5d808294d05225b3aba9abefeb5

SHA256
801b3000b0b1179970d52b62f19c40cc29900077e34665eca61ee951efb517b6

SHA512
dfb27d1b0ab69cf01cf4b9f11f85bed5b3e395725fcf3a09e209b2cac2f3541628e123b2abe4fae4f89492f805c30b59371ffc02252d6143bd356dbe7c9f6fa0

Download Submit
/data/user/0/com.yiwgtyxb.xg52202/databases/bugly_db_-journal

Filesize
8KB

MD5
164d58468a2d6a793938051c31ffb057

SHA1
516cd817300b93ffed4a4bdb78e73796b2a6042f

SHA256
c3762948e629c52c385dec74393a5e2efe3b37978a8ef97c32a8b1567c093bd2

SHA512
5c6a58feb686822c146ab6c6564c4f5e8cda52e392f4bb3bc1ef2266ab9167c456e06c86b86c15eb3fca4d5f1441d312ca7fcf56883cc4fefefdd242a9d3c320

Download Submit
/storage/emulated/0/JXCP/aff/com.yiwgtyxb.xg52202

Filesize
9B

MD5
2418d847e2b5d755777b904170082fc9

SHA1
77afb5da1561bf997596be9a93cec319d237d974

SHA256
5ddbd2f46aa4d6db99359eaa340c3fc3299b1eac2e8d4cef4b4f5190db697de7

SHA512
fcd06ba70469329604d10b7d60a06f4871f71ca34861e75a855b95c41f17ef85ae727d2437fae27ea04b8658184fa9bfb37638e98e6cfd34ca026183ec6ce1f5

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads