6d4a0806e8706078ac5e067bfdf440f11ccdeec7f4d43995d19f97aad689c1ff

Analysis

max time kernel
2651695s
max time network
155s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
23/12/2023, 18:49

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

6d4a0806e8706078ac5e067bfdf440f11ccdeec7f4d43995d19f97aad689c1ff.apk
Size

14.9MB
MD5

4497fc7ea11172c7b1907019524c16bf
SHA1

8610e83f5189c3d8926a3f250aa86b935d955337
SHA256

6d4a0806e8706078ac5e067bfdf440f11ccdeec7f4d43995d19f97aad689c1ff
SHA512

420da4726dbfea3f7056f4d27e17affad8fd87d804e04deaa9d92667efd19580a5a6207088a737d6f2fee69ba1d46fb78e100b42365cf357e610cce0a1b3d135
SSDEEP

393216:6RstXNpmPSwygp6KHuu1qwPrbKNFyV8KXy+xfi:7t9gX1qwPrGq3XDxa

Score

8^/10

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.tencent.zebra

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.tencent.zebra

com.tencent.zebra
1⤵
- Requests cell location
- Uses Crypto APIs (Might try to encrypt user data)
PID:4226

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.tencent.zebra/databases/WnsDBHelper

Filesize
28KB

MD5
b187af3dec8b6620d583199cc02b5bf7

SHA1
5be7a28a3a5082551b6bb97d320b4b107b58907f

SHA256
43c9231cfa00c45e510ac0c52c8527e9df01a26b0374664274da40c06bcd26bf

SHA512
dce75834ee662ed7dc689f1525b793724c5693c1e66c9aaf0dcd0978dad642413cf38afab4efd069dbe888176c8bdcf4c18db0999f4275f717efe0455e1c19d3

Download Submit
/data/data/com.tencent.zebra/databases/WnsDBHelper-journal

Filesize
512B

MD5
7aa33a39dc07fdf9789dc8dcca147fa8

SHA1
02030832ebd6d4f56310e1c8b42a25e736799669

SHA256
dee07d56b90a5bbe35bdb0b65a5cb3f3148f4746343bf75e616ddfc232a1b8ba

SHA512
025c5d04ab3f2a677afa1428539bcf33c8e051ca0fa7fa2e4f795a0e4129409f4257463ba5542a8d4fae929f43fc58eb286aadce41479fa8ece7eff43ed75fbe

Download Submit
/data/data/com.tencent.zebra/databases/WnsDBHelper-wal

Filesize
40KB

MD5
5fbceeddafe779bb69d6ee4d5e409f2d

SHA1
9248f693b8b9ac9be8fb86a4b7b2770910b2e6a4

SHA256
7977aa9abebb280402e6c81257a3d5484f01b4f0ae2465efe24f743513c18499

SHA512
77d656d19d68c34ab931163c7d0e3d9910f8327c21c19723ff42dab414900a89cf186ee736089da74911ae2423487b20badf72d1289afb4c69e2d5257916d80e

Download Submit
/data/data/com.tencent.zebra/databases/eup_db-wal

Filesize
16KB

MD5
d97e7f1b73f9181edcef0349ea96e6b5

SHA1
1e88edca1d6f09c3a646ac453f50701cd4ee787a

SHA256
9ae94cd65b1d1169c43eb7a57794a53bbbbf9bf234fe32b213d48ec81546210b

SHA512
bad8b244e39661f8634482a337a70e60040cf6841cafeeb0659a7cf676db12a427eb39024b932a51304534237497bae64a798d2a306a059b553c167f30bf72cc

Download Submit
/data/data/com.tencent.zebra/databases/serverlist.db

Filesize
16KB

MD5
8098a364343c68299905269cfd35d1c5

SHA1
27dfb334c2474844dd39ce5a421b45d23843b69a

SHA256
51ddc4fc109a7bd5b0028109cc0eafa60fda8c30435c7628cb438b180ce91e6d

SHA512
e96396374e2bfcf30a2b57780d18da875915a1125e5ab1cad186be3ea70df4fbe544dec568ff1fee0ec0fe1302076804fe5b113d5cf9112fec015b41f93863f1

Download Submit
/data/data/com.tencent.zebra/databases/serverlist.db-journal

Filesize
512B

MD5
4d7af47d9ed34807805cc61e784d4264

SHA1
bdd3f84043d08ca434ef21a85e25f0500549b6b7

SHA256
a39444d5eaa1b71f80b34343f9eb79639684eedaba028ed7f1f01ff1320eba79

SHA512
98815864ef818effd68fa9d350600c9771f5e835672e5712574e2aeea3de87e633338427d759db7e4247e645b83ce525cdb622dcbfb23e1904900d5782144c0e

Download Submit
/data/data/com.tencent.zebra/databases/serverlist.db-wal

Filesize
32KB

MD5
5a0c820f44cb2a940aa245925cb16117

SHA1
3c7e3965a7ca7c1e126e799c57c5f8017e2883d1

SHA256
ee06e308116a43e659ce6e012f2c53d27de11c299d1081d71980dce56ce00146

SHA512
b8fa632e8aabf4c735dc6714c0f7ef02be642198a12d94324f9bb0024d63dee22b1f8c826b2207a62379e3519ff80d3cea3bcf20f0f63c53bea5d14b6b064a9b

Download Submit
/data/data/com.tencent.zebra/databases/tencent_analysis.db-journal

Filesize
512B

MD5
88307a921665f282230ef3a12306b6a3

SHA1
0208e66121a19fa3838998fd4ce3535e6a39c6c6

SHA256
8a18e68c65b73b4288109b8edc342292286c6fd4d37ee2deee4470fa9f32e639

SHA512
9ece7f5121cef789fd3cf221762ac99b324c891920c2fc0dc8dd9646c70c54dafcb7e5212d27281fff50198407be39502ab386084ea9bea2d18e03d31f090e80

Download Submit
/data/data/com.tencent.zebra/databases/tencent_analysis.db-wal

Filesize
52KB

MD5
7d032a2df5b9f2b7f8f3f1542cbe03d4

SHA1
3bb0d3e5942ee2c201eb7a27b97ffe9377f7cbb0

SHA256
39e595906acc3118fa301a90e78dba25f4972940de298165a49d7ba29b166c15

SHA512
3440f140c30e560daa6af0ca7de8304ae1f300c99c37eae80df5423aeecaf799955d52d83426bcf7b131bdefd8e52f5d3e8df6f45b4af056bd41d88c9450f662

Download Submit
/data/data/com.tencent.zebra/databases/water_mark_database

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.tencent.zebra/databases/water_mark_database-journal

Filesize
512B

MD5
c78d0ce66244bc548dce1ee97c3a88bc

SHA1
6c2c7abe9065ed03399926b5d86b9afacfa95be2

SHA256
c27cd37aa9c1efda0dafebfefb556157844ac91f5107c9e19b3aa5a7c9218511

SHA512
2e67f619ac7878e3bc91784249792ee5712cdd7b30e82e3722ff21f02743cccf2bd7b8ebdce70dafbbde12058e219080f239675696d992d842c9a398d98b85aa

Download Submit
/data/data/com.tencent.zebra/databases/water_mark_database-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.tencent.zebra/databases/water_mark_database-wal

Filesize
68KB

MD5
34021d15a629ef6632c19a21ab7fe54d

SHA1
808aa20528841a5a7be95d428c2ca13eeff97e5a

SHA256
83588dc417a989da6d03a4185d4fac6d3cd919bb654eb4fc26831bc044a18594

SHA512
ce1d8980687e58cedb581c7ed40e806bac47b630204e091c6ff3b7463997fa158588aff5d306e4ba29bf64a5c49c0433e60ce1d44bf086ebd284d93b7337a7e9

Download Submit
/storage/emulated/0/tencent/watermark_camera.log.0

Filesize
64B

MD5
d4ca1ca5db968512771cdf3dbb53f658

SHA1
518285b299beb03a49ce71d616efa4604b92e21b

SHA256
7b769219354fc630475c355b75c4ffd5465120bb7fe02857adb0a45f8498ce9b

SHA512
983195deb0c1284e9134e25f9dfb84a2a2884963759cbd37e8bc4f8cde1efeae60547e595bbbc251462f60efc6efcfecf50c7959794a04be1a11c020df312e47

Download Submit
/storage/emulated/0/tencent/watermark_camera.log.0

Filesize
74B

MD5
555992342f1c9ffe28eeaa927fefb947

SHA1
4744847635ebd68b58238888ab594173200fc8b4

SHA256
d679d02fb560812a7cf02aba3f088d06306bca80f7e8cefa64b4f4dd50d3f094

SHA512
fc35ecf6e7304d30b5cd056f862ee9a6b773b5dc0c85978b33dcec450f0983d9e22b8e5d99befecf692b050b53fb4c0f058a94782a6948435570bb26a606de05

Download Submit
/storage/emulated/0/wm_uuid

Filesize
36B

MD5
c822616ddf1f26c77ab6202dfc93340d

SHA1
52370be59cc114803c9b375f7f245840a6114c5a

SHA256
428f51c3456d0ffb66103a2b146463dc759a1f3de2b7652dc967ebb29062c17e

SHA512
b4069a1fecbf235b95241f044d2670a412dabdffd24455e035f573686485c45c86be2255640601d02524407d16c5c64791ee8b98c236630d387d8ca4c6c86b3c

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads