58be14fb1aa031b7c7fc637701ca3a2366f482ce13c8dc273ada3acd6477cec8

Analysis

max time kernel
2563070s
max time network
160s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
23/12/2023, 17:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

58be14fb1aa031b7c7fc637701ca3a2366f482ce13c8dc273ada3acd6477cec8.apk
Size

3.9MB
MD5

8498bbe4fa7b80455913911646639ff8
SHA1

7a17c9c66db52d67ee394b4193d78583761baf8e
SHA256

58be14fb1aa031b7c7fc637701ca3a2366f482ce13c8dc273ada3acd6477cec8
SHA512

dbb01c2542b40665627465aca74c25c1b881cf4c1dcceda7caf41e8702cbda67d6ca89c08c11e4c7aee3bf7ad75fdfa51df5f522b0195b629635ce9fcef769d7
SSDEEP

98304:f/BWpC9wI56Bu7Z7875m6aPPkn7A2uNVUFZa8WbatEQCqxW8z:f/z9Um5P8Ypx/Qhn

Score

8^/10

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.mofang.mgassistant

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.mofang.mgassistant

com.mofang.mgassistant
1⤵
- Requests cell location
- Uses Crypto APIs (Might try to encrypt user data)
PID:4965

com.mofang.mgassistant.push
1⤵
PID:5004

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.mofang.mgassistant/files/__local_stat_cache.json

Filesize
88B

MD5
421bb319d7d81d38e33709d8b9599712

SHA1
d689d225d803f7128ab3cef7769e1faefa4bd027

SHA256
4b98d776fdd12457145ec4b85205684499a55beeee22ecf7dd6897831f50a1cc

SHA512
c2c4387357edc185af135cd5fd18239bd0d4a6430c6380e51dce1b50822fc707c5a1a3f80b720793b14bf08571a97f8d18b60ee390b7f061f52e173faf981699

Download Submit
/data/data/com.mofang.mgassistant/files/__local_stat_cache.json

Filesize
25B

MD5
2d805b13f2f28dc3ca9bbcc000f49bb5

SHA1
9eac165b4d81258fd3967cde5cc53b53b1dabcb1

SHA256
c8a6624f390568f0ddcb9841336aec6a564460fdaf6624e562b32935b8956f19

SHA512
5db8c57bab36bcf9db698c1dce70318cbffc156dd1d1c1e09e5b7ba60aff07b598ebbf26c4bd8a2b03bd6e59ef2dde2d944a22a8d8a19ecc8378e83afb7c83b0

Download Submit
/data/data/com.mofang.mgassistant/files/mobclick_agent_sealed_com.mofang.mgassistant

Filesize
587B

MD5
4395e9a89948feb1bbede753a2664eb7

SHA1
91d21ec9ce4f84003a880c7621b394cbabd65d49

SHA256
5919a2166dbcaca6b621335d03f0ded1b0260858bf83e9de3769818448507bb0

SHA512
3030c2f5a180770315f2b29f544728a9d2dde7456af191a8f805caaae18495a2972c5a9414159315c0143d395c17cb2d4aabefdcb77b93828db8fd6635b98183

Download Submit
/data/data/com.mofang.mgassistant/files/umeng_it.cache

Filesize
148B

MD5
4f5ce587e3e8443dee90cd526b62f55c

SHA1
34edc8da4aa90870599ca3f45d94aee4fa7122b3

SHA256
4964dabbf2a57f707045316bd69e13101a7c03b75adab9eac9d2ec1e7a50674a

SHA512
99de0c9e69f0f9cc9993203d6ed3dd83ef5cf59d47cb181e86aab06dd5a25ce53a5a4f0171d544ae261df23bd5527ac28307388ae1fea3a49526149b17601a97

Download Submit
/data/data/com.mofang.mgassistant/files/watch

Filesize
9KB

MD5
90440f20dd3b02e90a1160921f31fccd

SHA1
cd6802b20853c52349e4583f24750bc0ff078eb7

SHA256
c892a0657b07bd05cba8a86c35aab11b34c26d9e5583691c64ce524865e71ee8

SHA512
2da286e440f2f042bae76c238aa82abedef224881eb7180e996879fbb5ada48ab68ca0fba7e23b1b96a792b5bce8393ce5a0205c536b22bdc8d2ea858242635f

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads