Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

6

7647012c88...52.apk

android-9-x86

6

7647012c88...52.apk

android-11-x64

6

alipay_msp.apk

android-9-x86

8

Analysis

  • max time kernel
    2695176s
  • max time network
    158s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 19:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7647012c889e7d8527de2cea3bb088b4ba29d46e681b95bad1ef7d67c9871752.apk

  • Size

    11.3MB

  • MD5

    e16b15708cd117d47ff9def52013afed

  • SHA1

    3091e4c3e3192f5eb9fe237dd1d200493bed404e

  • SHA256

    7647012c889e7d8527de2cea3bb088b4ba29d46e681b95bad1ef7d67c9871752

  • SHA512

    ead7df1f943bb41f6c21ff1aa95b7cd068808d5fdecad7069842ca0e3a3b45ac00b16b9f9ae842b75857049f5595c659a42877fdf7a8b947b4fa589646861b54

  • SSDEEP

    196608:BQB28VDWNd3yPDuiaw1FLUqZnVsm3adJc010stMQPWG3P5tUfpVagIwqGxc:BrwQdoDK6gqZVsm3Gcy7heG3P5yfpQg8

Score
6/10

Malware Config

Signatures

  • Acquires the wake lock 1 IoCs
  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.xingjiabi.shengsheng
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4264
  • com.xingjiabi.shengsheng:pushservice
    1⤵
    • Acquires the wake lock
    PID:4307

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.xingjiabi.shengsheng/databases/pushsdk.db-journal
    Filesize

    512B

    MD5

    2849ec762d219f23bc460cbccbb48aae

    SHA1

    1cca222545b31e38bac99bd6a22a1da80c0d7ad4

    SHA256

    a0a85bac50cb5676ef0d5a3cde295fc7f9a02921f31908384da65265ee71ad3c

    SHA512

    3faa990a94fbb9b756be6c3b708ab88319a0b8435e6e07d07f0f37fa8a27706b43e84322758e6ba24ab309be943668988d6eae608898024156d221e533c7906d

    Download Submit

  • /data/data/com.xingjiabi.shengsheng/databases/pushsdk.db-shm
    Filesize

    28KB

    MD5

    d8a7ee4eabc3b56b835b1aa2eb2e6970

    SHA1

    e95b539b8a17c5527fb5e9863ca967af3beca625

    SHA256

    986297e124bcdfa874dce9bf9ae9810687d9255acf2d2d2f95a186aea2cbe3bf

    SHA512

    bb53087a91ed24457655f5429a4296e75b5c945a25d9ff0e61db989cdbf516f0757f9e8c256d917388b29810d86beb557aed1996248498b2dfb795a3476a4941

    Download Submit

  • /data/data/com.xingjiabi.shengsheng/databases/pushsdk.db-wal
    Filesize

    80KB

    MD5

    242cb2e5b13e6e09f0cf8a1cd675d9e8

    SHA1

    3b655398a2ca1c7252dcb6aad56d6a8cf76c4c79

    SHA256

    c10c6cea492b545296a7724e1e23a9b22f20b858ae6372afee19fc3215408997

    SHA512

    c5bc7019483442c6aaf31d9e05666939eb7e9eaf6a19fe91f97e2093ec9024f002e03a03d432993950a8f531afa5ce3ea03695ba301af0bc4b4b3256659e7624

    Download Submit

  • /data/data/com.xingjiabi.shengsheng/databases/xjbregion.db
    Filesize

    88KB

    MD5

    4cd1351b4d800a339db55aa997e4b1cd

    SHA1

    b25eb4d9fcf2364b57d03389e35ee3559d5c5341

    SHA256

    7926a4994e2646c302125ae7970069bd4b42d207b5d96bed3fbd4f8afbea5ab2

    SHA512

    d971399586fa67d5ed0e716dfa429ec985294a8ce11718fb353b4ef6f5c6f7fccb807d20e3a4eb45e3fe3de4063248602c985448200a19d171c989743201d743

    Download Submit

  • /data/data/com.xingjiabi.shengsheng/databases/xjbstartad.db
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.xingjiabi.shengsheng/databases/xjbstartad.db-journal
    Filesize

    512B

    MD5

    d28e309adf482747cc53a3621b3942f2

    SHA1

    caa876d018477438008762d37db5a1fd620dabd1

    SHA256

    0e8075b780b642b920ecd6b48d8982d3242ba1d199726912680b680dba32c505

    SHA512

    cb22251727bebd7e55cb5e58c243704312c1a32fa26a8cc8b8d8e619038872fccd297c144522b16e76df1b0b7ce053426fcd38300b5ef85cd5edea46a55380b1

    Download Submit

  • /data/data/com.xingjiabi.shengsheng/databases/xjbstartad.db-wal
    Filesize

    32KB

    MD5

    69bb2dd7a9fcf7a2eb3d252a39e2adb3

    SHA1

    532bd2506756e9677b666c08c0aaa37e4893d8bb

    SHA256

    d19d86ead4d88ab78e1f8b2c5335998993d4695e86e1f4f1d50108c38490f340

    SHA512

    60faa2ca47422ec5551f93bccf5d7fda55a36521ae54e44152b35fa8b656d1a31c20c485e84764a1c980d65793110a634ebc5e341f86cbe2879249fc5f0d8e16

    Download Submit

  • /data/data/com.xingjiabi.shengsheng/databases/xjbstatcube.db
    Filesize

    3KB

    MD5

    9f9e4f1f7b0fa6ef6faaed0921eab10f

    SHA1

    3f63aacfba6e7ea306264f4231e18cc9daf28ff1

    SHA256

    0c81d0f19911cbc75943ce22b7f0f66d79f2cd08d269ce9128f55f68f010087a

    SHA512

    06b6cfdada3f2abb33c8f041db396b49bf0e04162ccc9b6fbeee8ee2436c3d078c206521db6dd733df38cd40afe62f220d187786e4e918654b38d23275a5bf80

    Download Submit

  • /data/data/com.xingjiabi.shengsheng/databases/xjbstatcube.db-journal
    Filesize

    512B

    MD5

    05e4e7c046075e2ac69adab74b22a390

    SHA1

    a4b9740b5ec2f7bf7f62bd58f5bd1a324abbfc2c

    SHA256

    4a4034d1b156bf18f1b58f08d4c01959729c54c68d5302e6c867223c6d8477b6

    SHA512

    3490b71b96142bb657b9f20c4eb042be896818ae1fcf676bdeea598af3c1d27081a6fbdf52ff24b8db1a7ffcd5e8b84edf80af47d2cd90eeaca2741945ee0416

    Download Submit

  • /data/data/com.xingjiabi.shengsheng/files/mobclick_agent_sealed_com.xingjiabi.shengsheng
    Filesize

    557B

    MD5

    6a5f3b2f09a788cd40db10ce775b2959

    SHA1

    5c6bd1cc46b417e64b367f8be3fab49c102fe53f

    SHA256

    19dad0f19c43fb81b6bc4e875dbcf1a2a239ec0d09dba1db5fe9199be51a0648

    SHA512

    dbacc2925b13a9d6b8469f03555d93e19d75aa87896d4d0b9729283f42d63d1817a1d817d4457e40c74fc2bdd3e48e22dd15e84b8057831de6abe48d74b21e33

    Download Submit

  • /data/data/com.xingjiabi.shengsheng/files/umeng_it.cache
    Filesize

    211B

    MD5

    bbb74d92f28ee9d32af0dd5f42fd589c

    SHA1

    fa00e5a571de8d4fbcc1830a557203042a4f5777

    SHA256

    1c328f251291c64ae760fd59e4504692982dad482b278165633539592242dffe

    SHA512

    30159e6bbb07ded46ef494b057f25d13801912b2d5b1b3b160efb812ba8e844f48e1a82a182d4f65c2071ae65b5b6227b99d3452fa5cc6e8e108e95ad7107ef6

    Download Submit

  • /storage/emulated/0/Android/data/com.xingjiabi.shengsheng/hbtech#taqu/log/20231225/000.html
    Filesize

    172B

    MD5

    8d5c4463d93da2aa80a0793bc6829f38

    SHA1

    f65c93aae8e1acd1a22ab6f33d7ada2e0156ab2a

    SHA256

    6bca822f5b6a592f16db03a2d737717c86fffc6109bcd7087de103911a9be961

    SHA512

    9039b76c341eecc4911a1f77c302dae069e6850a8890f43264ee19bd2502848bb5d6bc934edfd4b2295cfe8de4e97f8c7e420971ecefa68437e8aaacfe2af3fd

    Download Submit

  • /storage/emulated/0/Android/data/com.xingjiabi.shengsheng/hbtech#taqu/log/20231225/000.html
    Filesize

    905B

    MD5

    107cb65d0f4c6c349ec548e531e30a08

    SHA1

    d2fba7dff3386b6c2935078a631216ea75765535

    SHA256

    04201a08a8d534928f30eff876f07dac0bb2d1c40355afe90fd0a3c47f995385

    SHA512

    cb4f4c08d88e01ed24fc8acfcf188577e55bb56189c3ae0d88df60e47b1ae2beac46faa176612dab9653ead463a7aafe879cc948439f804488f893644416bd90

    Download Submit

  • /storage/emulated/0/Android/data/com.xingjiabi.shengsheng/hbtech#taqu/log/20231225/000.html
    Filesize

    85B

    MD5

    7d84c1a412d3d5952894896913552a1a

    SHA1

    de7d0edbff9144d9c5bdc9c8e9b0254d844730bc

    SHA256

    60534af7464c2a88a176d9b3e99eeb2bc15c624e90341106b1e81cd4cc89fb26

    SHA512

    0fac236c73d2b9f289f09811605da552d1554b5b0989f4675be3135e256ce3abac0dc0bb3ac3ce2d9aa92e97b26017760d312356e42d0ffc3d8c2e017a4fc9fe

    Download Submit

  • /storage/emulated/0/Android/data/com.xingjiabi.shengsheng/hbtech#taqu/log/20231225/000.html
    Filesize

    82B

    MD5

    308c5c4fe9e26c5df15dca8c12f85a51

    SHA1

    355666a79e439779e1b0be088247116121498d36

    SHA256

    23c06b0920f282e622b200b8fecd70317d5bfdaee9743544291c3b4440db59f5

    SHA512

    16cfd472f063dedc6a49c1c771779edd8994932a49b784d242b7ab0c943e411b007222219664422ea5d128258284dfcec2e783d574896499f6749fbdeffea281

    Download Submit

  • /storage/emulated/0/Android/data/com.xingjiabi.shengsheng/hbtech#taqu/log/20231225/000.html
    Filesize

    113B

    MD5

    39ca493360d511f46e8cdfd5bb5c1458

    SHA1

    c7f02c82e8133dc7fdb0cb8c262b3d0be94ef5e3

    SHA256

    8ca1e8384990e0209405d127831235072da4a21eba6765ed289f8dfef0d185f8

    SHA512

    ef13b39cf46909b34a98ff2f295a7d789d114015667d4460c39f087bdec39e06f9b48f241c1d8e6c19805ad6cd04efdd9a09696437c1e1936285521c3fc056b6

    Download Submit