Analysis
-
max time kernel
2662212s -
max time network
141s -
platform
android_x86 -
resource
android-x86-arm-20231215-en -
resource tags
-
submitted
23/12/2023, 15:29
General
-
Target
3dfcefb0dc6eb63b76e647ded751b0e9b14a36627c7de3607685d5811a0f44a8.apk
-
Size
11.5MB
-
MD5
ccfdd74a51686852cbc7bb79b77f64a6
-
SHA1
0bb0168adf0ecea7ada47e03e4632df6bfe167ad
-
SHA256
3dfcefb0dc6eb63b76e647ded751b0e9b14a36627c7de3607685d5811a0f44a8
-
SHA512
37c5f0f867f8b01d93a0234a3a793078fceeac129cfd2e8e44cae395811aca05a18348313c498f9760209241326ea1eb2feb94068c3e03ac80a3e739e06a0673
-
SSDEEP
196608:t/tKWEcQ/5bDgFodxLjU3gNUnlG+1rVLhfKu2L4jEwPxc4WFFQPE6G:t7EcQpDgFodxLjUwNUlPVLhCu2LwlWx
Score
4/10
Malware Config
Signatures
-
Uses Crypto APIs (Might try to encrypt user data) 1 IoCs
Processes
-
com.xgbuy.xg1⤵
- Uses Crypto APIs (Might try to encrypt user data)
-
chmod 755 /data/user/0/com.xgbuy.xg/.jiagu/libjiagu.so2⤵
-
-
chmod 755 /data/user/0/com.xgbuy.xg/.jiagu/libjiagu.so2⤵
-
-
/system/bin/dex2oat --instruction-set=x86 --dex-file=/data/data/com.xgbuy.xg/.jiagu/classes.dex --dex-file=/data/data/com.xgbuy.xg/.jiagu/classes.dex!classes2.dex --dex-file=/data/data/com.xgbuy.xg/.jiagu/classes.dex!classes3.dex --oat-file=/data/data/com.xgbuy.xg/.jiagu/oat/x86/classes.odex --inline-max-code-units=0 --compiler-filter=speed2⤵
-
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
363KB
MD5acd3a64e22c56dc0628edd7615a74ab4
SHA1ec22ef7fa9dca4b475af2724d483bda140370ca7
SHA256c57cffd4175fcd618f29d48eeba1b8b30e2bfd4ce9e05c6c5b0bc4378914d008
SHA512ec93027efd827742d3f9db70c4d4aba51e817191ff888aa2337939f2ce518b98f1c1f7ed3d49d25d3bff47738f68ead6348b1b309c54a17e18c4460cc2142e3e