3ee9423c45f9108cbcf9044c56136f97e15be8aa9813424cb12410d409528551

Analysis

max time kernel
2667575s
max time network
154s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
23/12/2023, 15:33

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3ee9423c45f9108cbcf9044c56136f97e15be8aa9813424cb12410d409528551.apk
Size

28.1MB
MD5

7e0a10cb8094f4fe651094b3f9cbd7a5
SHA1

e85f0f138f0580c86ac3f654074059bc1678981b
SHA256

3ee9423c45f9108cbcf9044c56136f97e15be8aa9813424cb12410d409528551
SHA512

1cd4d46935b0662502cf8c1aae3a264be32f8abea2d813609c52f32eec3b137b756557da3fbb8496971a0fda9083a8ae0ee674f73c34227403d22904b1eab12e
SSDEEP

393216:QM9JxohGsdFrQOZP5QO7vDFXlEJyl3EK5jS6DXvjsE/A+oOtJlfVqHCSqusxTPMf:QImdFQO9DbYytpT/zzqbsxTkf

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.vs.micha/app_e_qq_com_plugin_fa9a19f315b4a1d2b4fe2f035b3b9432/gdt_plugin.jar	4250	com.vs.micha

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.vs.micha

com.vs.micha
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4250

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.vs.micha/app_e_qq_com_plugin_fa9a19f315b4a1d2b4fe2f035b3b9432/gdt_plugin.jar

Filesize
460KB

MD5
89119cea817b0c1d1da279af4c6e40a7

SHA1
6e8cfb74ac45e1b3ccef4ed31db3d3c763df1948

SHA256
6dbfa51034ecd0ff994aacdc04e74b3b6a7e366576002a95a5bddbbf37afcd51

SHA512
5b41d984a5c13f57be726186a7b03ceb66eda57f5aafaf2dad92cabd7f84b17e1131c4f7796cdb4276fe62ecf6e253022ddbc22fd519766764c20922435ee135

Download Submit
/data/data/com.vs.micha/app_e_qq_com_plugin_fa9a19f315b4a1d2b4fe2f035b3b9432/gdt_plugin.jar.sig

Filesize
181B

MD5
3cbb760fd5557b5097b1a2c851eae01a

SHA1
f6043e7964092e52b3b30fec74f93a75a39b15fd

SHA256
bac24f87da19ddc7d93b7fdbf23d6af46ad7f7528bba9b8eb704864dcaa55c02

SHA512
4f5096f6c626f5404fb02edf0534f6624a517457f6f368214e4880fcf4e237e6efbb549fc6f82ce7b65c09c85db6e71cd708dee9ae238626779a022372784729

Download Submit
/data/data/com.vs.micha/app_e_qq_com_plugin_fa9a19f315b4a1d2b4fe2f035b3b9432/update_lc

Filesize
4B

MD5
dce7c4174ce9323904a934a486c41288

SHA1
e117797422d35ce52f036963c7e9603e9955b5c7

SHA256
0c030586945fe504b604ecc2e875c38ede400cd5cd73da9730302162e6b02c6f

SHA512
d570ab6a8f4a7b54d426b0481219074b5277ace37d88438d87ab97eb387938eca1cf7b09fa42d596c56ada860710d2a7385d2a96e1cedff58ad6ed8900f1b143

Download Submit
/data/data/com.vs.micha/app_e_qq_com_plugin_fa9a19f315b4a1d2b4fe2f035b3b9432/update_lc

Filesize
1B

MD5
0bcef9c45bd8a48eda1b26eb0c61c869

SHA1
4345cb1fa27885a8fbfe7c0c830a592cc76a552b

SHA256
bbf3f11cb5b43e700273a78d12de55e4a7eab741ed2abf13787a4d2dc832b8ec

SHA512
91972aa34055bca20ddb643b9f817a547e5d4ad49b7ff16a7f828a8d72c4cb4a5679cff4da00f9fb6b2833de7eb3480b3b4a7c7c7b85a39028de55acaf2d8812

Download Submit
/data/data/com.vs.micha/databases/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.vs.micha/databases/androidx.work.workdb-journal

Filesize
512B

MD5
a299abc8dc5e936cc92e173044cca643

SHA1
7aa421c4f1ce3fcc2501f210c10f71f2da0a0986

SHA256
ae286312cd9b96e6e9c392df9377ff724016b1547f6ae43b66fb9509b742289f

SHA512
22e9845932e5ea67b6ba33add8f94d9f445b9aeee34db5e189178e9dad1ad5fa7dfeeaf7172ec7db73ec0e7d938101b615e959df156068e375ec09f83a72a4c7

Download Submit
/data/data/com.vs.micha/databases/androidx.work.workdb-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.vs.micha/databases/androidx.work.workdb-wal

Filesize
16KB

MD5
659734858e156114068b245ce618c35d

SHA1
028d0e8191e87e1ea937507e9de9caeff0ec6699

SHA256
d2d17bfb8d2ff0c01f352f1de32ccd9dbf1b9aca7bad4850fad77d1a489866a2

SHA512
064ebeacd1fde47f81178d37d849132414f06e88166a709d030606590d60786bf8781225d272334d6152644559adda6c64dac71ed0e842da60edc93dea145bf0

Download Submit
/data/data/com.vs.micha/databases/ttopensdk.db-journal

Filesize
512B

MD5
72bb333479889651cadfd31f686d1564

SHA1
0019fb81ff0b4ac8ac331bc7db652f36df4d6df9

SHA256
a4760f403752b58ebaeab40ff272bcbed54008c05c9c821bf76af393807c4bec

SHA512
6a72410c5dfccc429987c09fd2de619e9b92ec1bab389035222e5fd38eec69c1e83cdc21abfd487625064f513c55d9b8eeb59b5704a01f4473b15e3a95e9ebaf

Download Submit
/data/data/com.vs.micha/databases/ttopensdk.db-wal

Filesize
16KB

MD5
cf60a13f4d00997e552d0474ccd2140f

SHA1
2c98b5820cf53ceffc368a78c83e49d92eeac726

SHA256
86959f3a3342615e85ad0eaef90bd6c1fb9650549c06e73a52b09be15ffa0048

SHA512
97e57f29d53fdb571807d45845aea0086f1e258e00205c368570e561ac4d7ae1fa37ff3b8d260716eacd4f50cb7c98ae4b11b14652d55f3b28806a645f37d0d6

Download Submit
/data/user/0/com.vs.micha/app_e_qq_com_plugin_fa9a19f315b4a1d2b4fe2f035b3b9432/gdt_plugin.jar

Filesize
1.4MB

MD5
84aef58d92df80c80351d83aacea2cdf

SHA1
cd98224d1164b008b2ecf252dcfc3cd9ab4c2017

SHA256
60116698377b00160e3b0950d82c81a03ba41004bac7b10de6b536e5328e30be

SHA512
53c86f5fe5046b4be266a2124e328f82fd3c231a915197814be523a2fa94f17842287294e9d61955abcc977c20d1debab0457d1e2a812d7dee3c02bb62015608

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads