539e0e8b93c19f19c0aec8a8fb9ad29b1390c23dab509cf65eb9b783a62588c0

Analysis

max time kernel
2569478s
max time network
168s
platform
android_x64
resource
android-33-x64-arm64-20231215-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20231215-enlocale:en-usos:android-13-x64system
submitted
23/12/2023, 17:10

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

539e0e8b93c19f19c0aec8a8fb9ad29b1390c23dab509cf65eb9b783a62588c0.apk
Size

26.7MB
MD5

1146c44171befdcbfcd7b5d0c2465af9
SHA1

df74658efe2ef341f57a1c845f280258577545d9
SHA256

539e0e8b93c19f19c0aec8a8fb9ad29b1390c23dab509cf65eb9b783a62588c0
SHA512

9461d96a39e00647a852daacb25b3eddd314cb20df62c51067f92be0a09388ee7c201960c48821bf5b5a4030da6231a9f1af896b205bd8c78298e0decc414532
SSDEEP

786432:V11DOIgGgCYroJOnMminqCQqLSdv3DIpMixu1:V11Drgr/MminiTdLPV

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/data/com.tiamaes.zxqdn/mix.dex	4292	com.tiamaes.zxqdn

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.tiamaes.zxqdn

com.tiamaes.zxqdn
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4292

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.tiamaes.zxqdn/mix.dex

Filesize
292B

MD5
63f77f99bd2c2b772a479923bde11974

SHA1
c7632e7d301e4463fafce85f84e9c3d7da3fdbbe

SHA256
4c76a3af64cdd2f8713ffe2733dea50dbe714d0ca41c17d1847ee5b62a7ca615

SHA512
3aae4a89d1ed51fdd911cb367eb10afe3c2264e4222085891b18a60d5412f85d10bf5c8f3c6642db70abb9aa42732bac5c42c42ee32d587100f53c21b5beb16c

Download Submit
/data/user/0/com.tiamaes.zxqdn/app_bugly/rqd_record.eup

Filesize
343B

MD5
65e739860e660de8eeb9b80f70deaf26

SHA1
7924a80b1fc9dcc2c9cc2c83695d75bd8adfa75b

SHA256
4b9b2f96d5869b39c2f0ddb0b1dd4d782f8f2032b1dec55c00a72cce0c4ea50b

SHA512
12679cac4dc8ab4a02e5dc056b6c05397b20992201ed8f9486b40e27d567b6f2ef665fc188bd70efb3f9616e913a344742e75f945ad51f55607b3ee338d7d99f

Download Submit
/data/user/0/com.tiamaes.zxqdn/app_bugly/rqd_record.eup

Filesize
1KB

MD5
d72fb1a8d291673b75e867508124b857

SHA1
25e9cbb5b5cabba53db48e5c78439fd910bee68f

SHA256
150dc5e467370812dc2d355ce1fde15137dacc1829b9926a7955645c9783fc0f

SHA512
7375a4d212e315896f7ab5d32a10452b2312eb93ae9caac02a824e5f656459994abccd02d0fbc217052c2c6b2d272fc440a93e6c917ba730828c4c3a4275344c

Download Submit
/data/user/0/com.tiamaes.zxqdn/app_bugly/tomb_170337652347.txt

Filesize
56B

MD5
bd0f8f8f3ad93fa07623422ec6e72003

SHA1
c3589295e7a4ddcf35bcd7a2c13bfd381783821a

SHA256
7fe875398dea7537a57a77c5275cbc8647aaf63ab6fd9148443b65df2e1d0647

SHA512
2ec3e073321262b667afbf98fe4e9f51e4c0c58baaad506b120239031f10699d699b94470bef13007bd6199df3d3b03f1eaf147c0cba5178aee7e267072b1c0b

Download Submit
/data/user/0/com.tiamaes.zxqdn/databases/bugly_db_legu

Filesize
60KB

MD5
8599ff13325be348e2be09d837d0ec87

SHA1
123e9829d2599d540e961c7ccc8712db2c43a99d

SHA256
925a527a5a576241b3287a68d5a7d17296d3b42c93da03a8971ef14a91d64290

SHA512
8e020a6374dd6ed9c1467eaa7d885e94281542033913d94d2076ded95f1fe6de269bc2380ab51beee74179a8ba8a20fda0fc93124f80aa77cacf1741a3309e85

Download Submit
/data/user/0/com.tiamaes.zxqdn/databases/bugly_db_legu-journal

Filesize
512B

MD5
bb1190a24da59a931fcbac199b194748

SHA1
572623dabc79f572c1e6b086e6505709c654a577

SHA256
aa66c3e11851674e6af4bb027f0e7cf9ab599467e728252a1f085c1624859734

SHA512
dd9465920902fa0ab7e3664b9853543c842ea3aba654b7ce149d3e9963af53b2eda5aebefd14e4ab021eb56b368a07c1de7ad0f34359f901cfde6a6aade32acf

Download Submit
/data/user/0/com.tiamaes.zxqdn/databases/bugly_db_legu-journal

Filesize
8KB

MD5
2a92c823bb2b471ac9ec9a8c3a3acba6

SHA1
afefb768134bc640cfde0c5898e12873b1939d5c

SHA256
e2604e538a966f9f3f885d77cd7d73c65881cb8cc1a5795dc84ac7d9b288fecf

SHA512
f5278255756e40686b839ab7a0746c992807efc5bd78bf7e87dcc05ffe36ab69f2fd87bf960f82e4af39ab7eafbcd1064f5b89801b596500e7d4d61499f20cad

Download Submit
/data/user/0/com.tiamaes.zxqdn/databases/bugly_db_legu-journal

Filesize
8KB

MD5
2822896d45dcb9d5c4cce219070a26bd

SHA1
9580c07425c1d9153682fa1772aa76ee490e0018

SHA256
75009fe9cfbe328c55753eb7514fd38d852ea8aa469e365cab321a6184a86afa

SHA512
1e992123805f8d3456fe9d5003211fce8a1823a7b8d801fe675856271be08592a8b456dad62162e71afb578ab5a4eee1401bc475c82d411a94d60a6844cf1f92

Download Submit
/data/user/0/com.tiamaes.zxqdn/databases/bugly_db_legu-journal

Filesize
8KB

MD5
693289b14e91117bc580ed1b0e21f8d9

SHA1
042ced99cd6eeb79c9d1159cc8f9150633a17de3

SHA256
1c13c076703a56383dd1feeb2a16c70f6d15ed7641c74c682f61d7d2b1230097

SHA512
e3d9519053582103761959be566965f9f14a680416496ae757d3ab1c22e7e314a98cb15d64000c13b2c0e11485dd7f7604716dcbf66b450ad3eb2b37254bd3f5

Download Submit
/data/user/0/com.tiamaes.zxqdn/databases/bugly_db_legu-journal

Filesize
12KB

MD5
0a2470d215495854490a50d6808e05de

SHA1
0f83b364edb9db1949800c04f3c44ae7dd17ceba

SHA256
cd70f70871048d6c0e02e51445758958af4da8a582deda8cca8b6135b76e58ea

SHA512
10c41e29145564f5099e97145e031f111ca862d17eecd30fba9276f246c80e611969701d94f56802b9d84a685d8b9ea51f1380839c4aef1d92487230cba44aff

Download Submit
/data/user/0/com.tiamaes.zxqdn/databases/bugly_db_legu-journal

Filesize
12KB

MD5
b1f97a9ce61ede03ad8dfaa89963d16e

SHA1
93aa0fb0a3a63d206171c05fde3e776568732a17

SHA256
5403a5e1705f8a42cbea34d0e36ea68a679e0e5153394edc4d26cd612fd5de7b

SHA512
f7015714cb5cdb88d1cdd5b58f04ea39e4af92da1610c595668889bcfc2ea6ff835153c8bd39065fd557e275025baabf74187a163fbc34160e8919a0c21c1519

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads