3de326e4bfca2492a56f4c7eb52970fe32238fc134ae035172b60c4a553c66ed

Analysis

max time kernel
2661415s
max time network
130s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
23/12/2023, 15:29

Target

3de326e4bfca2492a56f4c7eb52970fe32238fc134ae035172b60c4a553c66ed.apk
Size

4.7MB
MD5

123ffab94c4577622399f45035a37422
SHA1

c024b6688e015b38d42a78a7b57a609007222c09
SHA256

3de326e4bfca2492a56f4c7eb52970fe32238fc134ae035172b60c4a553c66ed
SHA512

19b5e9460ca749f73aad86f562fe41e3e39758ec869ed16dec35e837fc9cc14ca851306548e8522431364544e200214bac3301604150cadc765530298b6d2d0a
SSDEEP

98304:2JIRVbC0xIEJj5ykWykggm7hTS45cfP2NS4DfUnkeM57:qIRVWSj5yTy+gh3efP2NSAxtV

Score

8^/10

banker

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 4 IoCs

description	ioc	Process
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.qiuyaofang.jro:remote
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.qiuyaofang.jro:remote
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.qiuyaofang.jro:remote
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.qiuyaofang.jro

com.qiuyaofang.jro
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
PID:4271

com.qiuyaofang.jro:remote
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
PID:4440

com.qiuyaofang.jro:remote
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
PID:4470

com.qiuyaofang.jro:remote
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
PID:4509