3755447bb1630442b61616f65a7e20683f0172d88f20c0b3d6608db7160f9dd1

Analysis

max time kernel
2867418s
max time network
142s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
23/12/2023, 14:58

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3755447bb1630442b61616f65a7e20683f0172d88f20c0b3d6608db7160f9dd1.apk
Size

29.1MB
MD5

52370aa3abe431cebfed6050b1c7fe55
SHA1

bcf9f4e4c3e920bb62f9a73818469e0cce5016d3
SHA256

3755447bb1630442b61616f65a7e20683f0172d88f20c0b3d6608db7160f9dd1
SHA512

7abe5b31f0f716add27d219be39f4b97f3502a106ab692cace9cb8610aa3520268e4a32f6a87c049e766861391c9e0499a79138a818ccb35ff75aa1e4f6b5261
SSDEEP

786432:1iHfW4PvgT8IUSh9ZqLaaOq8Xr1kLyAbszpunXED:OfPPvSu4ZqLaM8XpwyAozp7

Score

8^/10

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.qiyi.video.reader

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.qiyi.video.reader

com.qiyi.video.reader
1⤵
- Requests cell location
- Uses Crypto APIs (Might try to encrypt user data)
PID:4261

com.qiyi.video.reader:downloader
1⤵
PID:4383

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.qiyi.video.reader/databases/hvt_analytics-journal

Filesize
512B

MD5
5af896e7f4e5fefac04c12aff233dee8

SHA1
586790d681b7c50f2b8cd85975abfc8d8c61fb02

SHA256
4ec944df6853c3f5abc58f611b49df4c91ece0749c3fff2660a7eb9b01991da3

SHA512
12bda0d20f0b4424cedf9f8a345637509fe57acd207b2c7f32bca5d3f6343e9727edc4dc77cfbae24af1195d20b4426f7631aa2c6a2963568569840b852a7d87

Download Submit
/data/data/com.qiyi.video.reader/databases/hvt_analytics-wal

Filesize
16KB

MD5
bc884c60c229400e9ea41e038ed74f39

SHA1
9e75ab991703cadbd0442b96a587c56e1af49d61

SHA256
0676ad3dd6134d7ddd6f16e9b52fb46ad05860940e7e197c0b32bdfd5069d908

SHA512
3f94fee6139a9a00107796d9ebc4a4efecd38d31519acd3e7c704d18e16a689c4ceb299eff3dea389ef4939a36357ab748d9e190b0612a87ae7a6a324adf4a51

Download Submit
/data/data/com.qiyi.video.reader/databases/qyvideo.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.qiyi.video.reader/databases/qyvideo.db-journal

Filesize
512B

MD5
4791743522e18c5cc4fe3730ef115d84

SHA1
b3778b52543c27fecebf0fcb23cc4393ca6221d3

SHA256
9f0025cabcfd72d10379052c1ac64d2f3bb322c758d0cac5c65e95b7d81d8923

SHA512
991fbcdb5e6ea4ebd95e609bbc35bc29b9a6afdefc6fdc9336109b188099587bbccd856fb9857cf6a10270a62364f5862253e43595f77048eb0c9331cd454901

Download Submit
/data/data/com.qiyi.video.reader/databases/qyvideo.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.qiyi.video.reader/databases/qyvideo.db-wal

Filesize
28KB

MD5
5e81e88ca310ede7c47568280e5e15a0

SHA1
2a8342dc7a4884124371abf2527fe42721375bc5

SHA256
b2923274b266cf40974aca5a1c466930ad23b6201af069954008a5efb2c79120

SHA512
386cf1c5c507651e23e7f5678ae76d3f34044377af428b1ee8bf3d68c56b5464d94ab2a79fe2e2553e19cc58ac93c8b88f25ccdc2a3841231ab46627e58806b0

Download Submit
/data/data/com.qiyi.video.reader/files/gcupid.db-journal

Filesize
512B

MD5
e85452e5d93c442ce400e53666160170

SHA1
9d9bbb256d4c9d77704585eecd921122ae4be63c

SHA256
a2cc81e28e70a2f88de860dc2152f58cecf8e068f5161b67c11ac0ac820e3b3a

SHA512
8ea21ca200b87701fab332ecd7f9a70fad78aa497117f2d39dc597bb88b105615b4c4495b618b53306d8839163174369cdf02a41cd9f4c357af05b4bf4859a72

Download Submit
/data/data/com.qiyi.video.reader/files/rn/base/index.android.js_tmp

Filesize
98KB

MD5
d5535f281109d62a64d51e84a8b695b2

SHA1
2b4c14f6c43432179abe61748e445e7b06b0935a

SHA256
2215ed190ecc5120f36d5ce99e9947c1207fe6b3428c26388c69d6471ea3b4d0

SHA512
934a9a57b5001915d3e2e822a9888b2a93f7fac9d7bac52762d775108190fbe75edb29dc420fd9a3654e5a989811a3c249240f367815bb1c74df4601689f2d24

Download Submit
/data/data/com.qiyi.video.reader/lib-main/dso_deps

Filesize
148B

MD5
db536790f510b59d8bd1eef6ac2bd21c

SHA1
6fbec84c4232f7e1aca5c73d59485aecec9da4b7

SHA256
c76acfcc28986d1b22a18a58b57e93e984850b595916ae05f4a2f093df6d423f

SHA512
b3325f4c931c527a81260054997380d7921e2ad89daabf7161c71c6f150c3e70996aa2c90ec3b861dd634364fd5382e4c142328991f44a335990c76f17225e3f

Download Submit
/data/data/com.qiyi.video.reader/lib-main/dso_manifest

Filesize
5B

MD5
c06857e9ea338f3f3a24bb78f8fbdf6f

SHA1
c5a0a2529d2deb60fec041b4fbd722a2ebe31702

SHA256
957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

SHA512
29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

Download Submit
/data/data/com.qiyi.video.reader/lib-main/dso_state

Filesize
1B

MD5
93b885adfe0da089cdf634904fd59f71

SHA1
5ba93c9db0cff93f52b521d7420e43f6eda2784f

SHA256
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

SHA512
b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

Download Submit
/data/data/com.qiyi.video.reader/lib-main/dso_state

Filesize
1B

MD5
55a54008ad1ba589aa210d2629c1df41

SHA1
bf8b4530d8d246dd74ac53a13471bba17941dff7

SHA256
4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

SHA512
7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

Download Submit
/storage/emulated/0/Download/.secIds/80bc4bce3a308d4fef9d7454dd33724e.cfg

Filesize
32B

MD5
e2a5e6bcad9d0e3b0658fbc3bcfec3e7

SHA1
14e0a8bff0a846e1b56a9b51cf6c64af278b714b

SHA256
d305dc8a4d16ffc37366b7c31ff0a7384d9bdcac9e879a3f3dc95c06f4770b9e

SHA512
b99c4df94f6f8da8952690e1272fbbc596f181be13cd96c820494e740fc670fd16bb589c49b97a52533155b4acc35f2ee13d3d13630a26db3e339210636d3974

Download Submit
/storage/emulated/0/Download/.secIds/8c2474ef11cfb106d70ea413d88def58.cfg

Filesize
64B

MD5
035746495dd59e6fc27a86b59f0b8f9f

SHA1
23f980e3280627445a6db089facd6a203cc53b70

SHA256
655be76a71f73a6f73eebe95aea261281279f619b2b4e86138128d8d92fea9ce

SHA512
d3a447c15ddb78f6c93fdf930688967a82c909e4c9a847077417a4a627ed6b6c06830c541ea7fbc9437cd187aa597926aec11036260eb647a793261e03724fd9

Download Submit
/storage/emulated/0/Download/.secIds/ceb00a9bc5a039b4d03662f41d2d1648.cfg

Filesize
64B

MD5
7bac27a6f42520541502d65f63f0d8cc

SHA1
5b44ccc20e57fbe5d7d7a76846cc1021f45c7a76

SHA256
d39beddf84c2666df29b2f8fa7b81eeca58a5e61c5ad239d7f0e6c4a03cebd2a

SHA512
3057104f61c423fe1fa7a46cbd82406c7c2f0ec09a487f6038779db42bdd7506b449e6f264584d6d2f90c0f43aa6e8d8e76c64511bd27a31cae178cbcd66e839

Download Submit
/storage/emulated/0/Download/.secIds/f42a308461b0c4c566b3d22eee64bbfc.cfg

Filesize
96B

MD5
cbf0db31b833140e8ed096c8a27dce32

SHA1
0afcf257cb24679dd07891fddd68d0054b4d2597

SHA256
be911b69a4de6c924182f4b707301fc2535624739450868ebdb6e2d3e2d0f26c

SHA512
ea5c655f5772c56b0e433d0d0abba7d29390738bcfa2acee9818d67a0ddbd8a95b51aa398ab3162a1f014bf10265f5cc9648e5da1d29adc6302d1f649a64d4bc

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads