87a15bf136d156a91efffbd9cc475954a817851c8e5873cf72160d11272f84c0

Analysis

max time kernel
2642576s
max time network
169s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
23-12-2023 20:16

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

87a15bf136d156a91efffbd9cc475954a817851c8e5873cf72160d11272f84c0.apk
Size

9.2MB
MD5

efe4b89aa61d404d2bebf923f238eba2
SHA1

60acd0c7e9882889437322c5caee4f1520c38061
SHA256

87a15bf136d156a91efffbd9cc475954a817851c8e5873cf72160d11272f84c0
SHA512

e6db6f88a8ae0c208bd5305ae5ee602f918b4c96bc9f7336c83b6a185bcce253a6adc5a5376d92265a953942b7b51949140466777acb2679ff4a74e23aa77d64
SSDEEP

196608:BBvCfJMZz+TFaPyAO4qQzKrWIHfgn2+l7SCac7U7AbrGqUQ1wX+b2IcbG:TvCfJMZQIzqQurtP+Cc7UkPGqz1M+b22

Score

8^/10

evasion

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.lbbfun.android.app

Queries the unique device ID (IMEI, MEID, IMSI)
Reads information about phone network operator.

Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs

evasion

description	ioc	Process
Framework API call	android.hardware.SensorManager.registerListener	com.lbbfun.android.app

Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.lbbfun.android.app
Framework API call	javax.crypto.Cipher.doFinal	com.lbbfun.android.app:channel

com.lbbfun.android.app
1⤵
- Requests cell location
- Listens for changes in the sensor environment (might be used to detect emulation)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4484

com.lbbfun.android.app:channel
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4697

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.lbbfun.android.app/databases/MessageStore.db

Filesize
12KB

MD5
171aedf968e17a2744d2585715606cb9

SHA1
bbeddeb3b89fcf809619c35b4a318a80e7d5b029

SHA256
d2ab452d9360848f46af866b870b5c6fc98230b09c72b89cb1a4b2778586678e

SHA512
78a0f517ee3d21c153dda6dbfec4187ebaee9d520d7b1b63f358bcb125d08aea53f26943907a56fdeba40161d9fc7e4fd63f9ae3154dd2ad887ba0162738285b

Download Submit
/data/user/0/com.lbbfun.android.app/databases/MessageStore.db-journal

Filesize
512B

MD5
f24c47cae38ff2c4274c305be3ed309e

SHA1
a45c9f84a16f4445625aa090cacb7eab36eaa7b9

SHA256
88dc4e75cd81ab459acdf09957ef30c06f349de2c7545436dc6b226d2913299b

SHA512
a60eb9f0ba5b16fc458437f77aa2470d2fb462e4bd571ef93ae6c99258f1552748d518413b3ab55f0e03afa4e5e8a486875556de7dc1bd0a55910e69f83e358b

Download Submit
/data/user/0/com.lbbfun.android.app/databases/MessageStore.db-journal

Filesize
12KB

MD5
3c3ededa43b433c95a7a06a293b6cc7f

SHA1
543afc632237394291a4b23ce01832839e0fea39

SHA256
3543d110499ef2ab0cfd763d1b83822b5df8fcc80f18fbca54e574eee5883b7f

SHA512
27564de5a2237b88872fa66995e396208fe17fa23f1bfe98c45d3668ba5ce4c1d7731b997b69851c34e0537acb6033e26efac4961fab6feee6503c3950a5ee15

Download Submit
/data/user/0/com.lbbfun.android.app/databases/MessageStore.db-journal

Filesize
12KB

MD5
42ca581b59bd11fb7a7b0c422632ed83

SHA1
8d1fa2fc4dcb542d0b8b267c1bf55ffbe871578f

SHA256
6f30496b859fa5e11ff9efb1deb9f1a0b6f709242544f6b74155482e20b10300

SHA512
ebccdb5f233851ae440281e04d5d30cea1fbf29dda1e82c702140a9780b2cf4e4246fe8ac0edf48cdc2aa9be242589eed52cd59436408cef9cdceec536ca92bc

Download Submit
/data/user/0/com.lbbfun.android.app/databases/MessageStore.db-journal

Filesize
8KB

MD5
7001400bcbf8805f99ee528043b95afb

SHA1
f4ad18b054642b4e29f4524d22871d9f2449b7ad

SHA256
75f472f186b3ea4cf177daa57494ecf5ecab235034556dc18bcdec24b12626d6

SHA512
ed53ef80c14ed6369fd3fb781c48259407aa94da1aead85e4c37b07d79d1b3b57af3e353b1f03ea0e99857ac4ec33a5c232aef0e73f29cd39302a72cd2d5eb8f

Download Submit
/data/user/0/com.lbbfun.android.app/databases/MessageStore.db-journal

Filesize
8KB

MD5
d00c2f2b2bf8efc882235076dd8b5592

SHA1
1ee48cb1e9e376f315326dcadbf393f0a3b5de2d

SHA256
39bb6f4c11c6fb09532ba502045016208ae86c0ccebfe9cf1a479272f135e93e

SHA512
8dbf8e5d52e455c67db3e7b0610ed1cf1437332beee6b5cb56365d11a91dfba1cc9238c61bd51404df5b5d2646113738a24bc89cca4be88c7560aee5ef7a87b0

Download Submit
/data/user/0/com.lbbfun.android.app/databases/MessageStore.db-journal

Filesize
12KB

MD5
4e633939ac32e48c94cc54808fcebee4

SHA1
e9bcba91ac3dbedf3470b65b654b122c30ab0a4e

SHA256
1ff6ca1710e4b1e4bf8453c3e60a118b4d1a2cbbe3ce84cdd6afec774af59a46

SHA512
d7f119c3076c28909ad550c150d9da3fc3e25d3561084cd3cd143bc79dbdbd6d76ef22d8a5fada1860afdf5795cfa04398c700d7e8fdac6c08dfcefedf273c5c

Download Submit
/data/user/0/com.lbbfun.android.app/databases/accs.db

Filesize
20KB

MD5
064201502ce25754236b3b5c12e24c65

SHA1
e2c89961dcf8306440bc99f7b058ef4680eacf0d

SHA256
b4ef8a71919ac4b6ef9a895a991b527f5c3316fd6204eb815366c9614dc71f00

SHA512
3f5af9d3e7fbca1c0a3f9ad5a8d8d8e1d3b3e3c79cfda89b6baef007aeafb4ec5738626fca1f682b73b0305a94a4e2bf17c0bdd4fc7fbacb80ed02c7affa44a1

Download Submit
/data/user/0/com.lbbfun.android.app/databases/accs.db-journal

Filesize
512B

MD5
6c2488950fa76bbd01f0c5768860fc52

SHA1
6ae2890882c311df51aae5ed11fb60e6761b248f

SHA256
5432c75b8257eba93b84a8ba7005fbdbf04d59caee2f32965c4a65e7399a0b60

SHA512
701f6e0ccbdb5cfafb8e93a822577b9a80724bf3d626bd9a4a3459089c2e1742b6d5fa5da7a7fc2ac7b49cdecafeebdfb2f1b284609794bf4c16c7f8e64c1097

Download Submit
/data/user/0/com.lbbfun.android.app/databases/accs.db-journal

Filesize
8KB

MD5
8e8a6c8d48b55833f320ee53cf64fcf5

SHA1
8c8f433f1fb84e95a18a4d4ccf60e76bec1e0099

SHA256
de1ecb848cae0048bd3b584a6852f8185843a29214698a82a5eb6faab346d27f

SHA512
b373ae6c3b5b9882801b376230d438783d6779faafd04762aede1298df56ccc7af83caa6e279fd4b9b86a99fded80636c7589c08aba11384bf817800f55c910d

Download Submit
/data/user/0/com.lbbfun.android.app/databases/accs.db-journal

Filesize
8KB

MD5
ef7c5eb1b4afbddc36e4ba41c74b5bec

SHA1
edde35e23c5ac10313b4337af6c16644091a9399

SHA256
5fc63ddf47a3957ea89d093a9e714d5ff09120e877f8d3272d764746c5c49386

SHA512
adec870a1f3ded36fd7f402f7cb1951f472e7704d1132d0ae1f0b09dfcc0d30c81d72c925cf83c5fab5b20f0021ab80c24e286147a1ae5c57bf573a93ef3bb25

Download Submit
/data/user/0/com.lbbfun.android.app/databases/message_accs_db

Filesize
12KB

MD5
3cd9e0f51794ba56c6b658620c4a776e

SHA1
1a4c8b4baebf348297d3ffad7dc164208c50243d

SHA256
501b7371cfad19d926f53de991d54259fa0674618efcf344ccb0f2787d9a21b7

SHA512
36191d3e6b6a1cc90a5bb8cb49eb4269a563fad34c1f523ebb3eecdc98b4783e067296beee01959b46188621c2ba5732ead240c70daecc52fb3bf577e6e4d6fd

Download Submit
/data/user/0/com.lbbfun.android.app/databases/message_accs_db-journal

Filesize
512B

MD5
a9da718329a7d0fdacd2d6ddea8a51f8

SHA1
28791c237e267804634d065eb254b4aa5cc436dd

SHA256
e1195351383df04905c7e60c019f2b364d536c90ea6b130089cd2a2753efd85f

SHA512
6136d35289a4a2199a5a50a8592ffc7cbb2653b12f2a312f3e4801e07e3876c92458da75bb8a91a41c6f598fe9dd25af8b0de46e35fbd22de0f7fa8241b33be8

Download Submit
/data/user/0/com.lbbfun.android.app/databases/message_accs_db-journal

Filesize
8KB

MD5
90e864784230efeb2e0ee24f019a1183

SHA1
0279fd858c0e0f98ba20088f2f9f5e66067e0698

SHA256
5cfcd05f8e0f4962d28b4801084a7924d6de5de6984e73600ec90391d15f227b

SHA512
7b76e889228b64708b1c33744f27f2b2efb0a2e753693cf0eac3a210f7479be769b149340f660514192d89f98f688d3809bb0ba8f316f626f0d33fcb0320ddf8

Download Submit
/data/user/0/com.lbbfun.android.app/databases/message_accs_db-journal

Filesize
8KB

MD5
06c77c153a1a54f4d55f105550b05c32

SHA1
49dec9fae261abc4d998ad82324fc99bf667962d

SHA256
f5009488512ddf9fe382b05bec2292140f69330be81a9e7646ab78b926558d57

SHA512
be9d135f4ca1026bfd2e1bfb6307372fa7535abe5bb695d1ec1200e57e9e432aca1fa44ad85f1ca750ee26f3cf97bdf8f92d15d15e58e2e7ad42fca833c84ca6

Download Submit
/data/user/0/com.lbbfun.android.app/files/agoo.pid

Filesize
20KB

MD5
64691cffdd20d9e0b80eeab663585a4d

SHA1
d0637644e1e2fd402f3d94d56d81734b7665936d

SHA256
b44af3ad45251776ff4b1665306804a6b4461b667ebc9641c6d1fb825b21e667

SHA512
aff9a48b0377c1e7ddf911dd4199086f9b0b9df4bbbe99ea28e31010fb748b6a1494474c39e1bc94c92cdf63d11a49a6bafa88bdf4d04b98cc2086d631a538a9

Download Submit
/data/user/0/com.lbbfun.android.app/files/common_js

Filesize
6KB

MD5
b9affe610c7612d64ee5b8a042bbda5b

SHA1
daa41900031dbba0fdad6efdd3490daa585bfef1

SHA256
2e5be7f8b378ea777e6d9ea744a7f0cce07e103cda938cbb082fb2c8c9f241ea

SHA512
070eabffb07d94d062408d99cb9bb8b3dee9231ba10b2e5804601947d2e528cdb25bf7d917c2aee0fb5c925badf34228e27566e9440817a226f74c7ee80d5eee

Download Submit
/data/user/0/com.lbbfun.android.app/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNzAzNDQ5NDg2MTI3

Filesize
1KB

MD5
30a0900c02d9ca6421f4be4f5bad7670

SHA1
73cbd68882b2170b16a908751cfcc940075a8f9b

SHA256
3380f70d075ad00ea292d4015860e0d5618f36078dc6f61473c36c00890ba8e8

SHA512
51cc86b4c3edaef92ac2a42985430598b8239d26ece9510843f15956f684a4d0b3747e6508ce1b05db4631e43a535b23f31bd6b03392e8cf5886fdc024363ab5

Download Submit
/data/user/0/com.lbbfun.android.app/files/stateless/dW1weF9pbnRlcm5hbA== /dW1weF9pbnRlcm5hbF8xNzAzNDQ5NTE2OTkw

Filesize
1KB

MD5
f66f5bb1a28b81c68fd160a990d34632

SHA1
9c7fa4edefb39717c1eec53055de78c52a291e91

SHA256
2f5e860edafc5b78b2c30320729b5376c66cf98fba1521a5a0f245ea82439a61

SHA512
a77b72be89579ab781a93e546ab52a67918a57076158c2199ba63c3e3574d0cb33ba5fae868d0fbcaab5fe79323ddfe1539ccbbc5db85649cd8c8537990b9532

Download Submit
/data/user/0/com.lbbfun.android.app/files/umeng_it.cache

Filesize
433B

MD5
17d5d5ee8b172be9375acbbad4f7f1a0

SHA1
215fa9f79e85760dde173148d73875ec4e74daa8

SHA256
90cf20e3515c3ff7b426447d500852e94319f8100b5da4db8537f9fee31e8678

SHA512
a9d55591b9a8f8c254e0434d81f37cb0be796aadb7e1dfb0b19bedf5e19034ff1bd30f6b6b055d63f6746dc6a8a452b48259bda04afeff24dfd9386b30294b6e

Download Submit
/storage/emulated/0/.Android/.a4b154574052b48a9b945f81425d8adb

Filesize
32B

MD5
4798d88ca24ff63260f0b66e599c4f8c

SHA1
10aecff096b92a5cdc86ff58155d270cc9056ca3

SHA256
04b25150187fd43fefaabd310d150e6a0c179333d0087453fcaad8dc0f8cfb84

SHA512
92193d9639b0f1397f7eac6f83e8067cfc6b0f197bfbf169111d486fb819ae3667bd8e9763f606c3616d01a31ae4404890c66c9a1f84ed0f1ec0ead43a2ba2ad

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
111B

MD5
cd959b24146f802b21e65dce73817a7a

SHA1
21298cc37ab861d47fb57a73f7a24383e093df7d

SHA256
5964008bf204516500281eec8c5b083ad837656049f683aa29853353fa363f8b

SHA512
089ef1ff296f50421d9f89a186b2978474bbc38916f4337f7e5c62b6c3a0193335ab9318da737587c06efa2005c8d5bbc7d721f29f1bfd30696684e3139ef055

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
213B

MD5
3462ae3d2c92b917628877adc3f881e4

SHA1
4b758ef4a939bd2e4bf8f3b374835c949f227745

SHA256
b4baa5702e69b8b2b0b80fa8c3829884090562d84b84949a60521640f6e3e2c2

SHA512
4d673dd984149e47716b48c1b59dd252b50bbfebfbd635cbb9e8095145054a3f9aee9de12927415615351478eaa669c6326d75d5f9508e69e6a7b75c37d721c4

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
8KB

MD5
175106b16da7f4b398624f880612b13c

SHA1
308c2fa6e74b2904e205f2d147de41c475f6e2e7

SHA256
ea45d4c1185ca441bc3d07c3e36c6edf49d85e83c05c9d4273ce97ae662cbe18

SHA512
6473846ff8234e8217c4849bfa368506d2d84d1b097e1b7363913c586d17fddcb6316882328eeed16b96b272576d8fcb2a8217bf65b5f14740fc6194eeabaa95

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
111B

MD5
e07e22be7ef91fa533ece3fa7fdd5825

SHA1
0af9d89aa1b06ba63df6b61e2e649603f5961492

SHA256
f0d065f8c8365b0efec7b54c85debcfc6006931e4f6127651a0f928185c14134

SHA512
a1ebcd55eb919570292aa31c9955dce380b57adab05297330c11b77320674ff51b34a3a1efde435becf771c2215ac87c864cfb3e2286483dad69c29ec3039141

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
167B

MD5
8cca89e101742fe87924af9b4173b529

SHA1
4db7188396f9a575fb8b7a6f1ec2f08c22421336

SHA256
2e2ab08f42fe3453cddf59156a9e5fa24ab3874c6cbd21be680c72075db548f7

SHA512
80d9a6636277c78f10cff023e2d7ddf3d9a43f27bbdddf8a5e6aa8044e8e34791d27857c8506e56bf99eb0a066219735bb117d7c645e29af42dbb25d8b627dd5

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
8KB

MD5
15fb6143d2a54ea6933584d56ac36ccb

SHA1
a5f33efd2bed25434538e653769ce53ba2b91fa6

SHA256
cee36f08ae5bcb087c6778ed069c055661174931dcfc2a784fcba6b7b42aa4b2

SHA512
b9274730333d0758dac3eb2dba4a5e29c695fb14163f52a4e4953224dd7ca8f741e274a4c28f5ae7d351eb5b7afe332089eaf0fdee6d00f704bc059a3355194a

Download Submit
/storage/emulated/0/Android/data/com.lbbfun.android.app/files/tbslog/tbslog.txt

Filesize
8KB

MD5
16b9a8e51d2957f8b2c0f420f09a24da

SHA1
497dd6e12c5b9360aeca2d1fd685e1f655646523

SHA256
ba167686fc478bbb43330b92aaaba006014993b46b3f257f70f71e2c63435cc0

SHA512
8ecbca3fc2e40b3507d248c4b5c25c441620f2d6576bfdb2bcaf2adf3cf23640d2d51eff8194d546c82a8ef6885724263642de5089518c2b354a7c832af86323

Download Submit
/storage/emulated/0/Android/data/com.lbbfun.android.app/files/tbslog/tbslog.txt (deleted)

Filesize
1KB

MD5
329ada07fa048c15f98ac080208e78d1

SHA1
36936395ddbc207eb305cf2c3f72b0761f2adedc

SHA256
d3fdd676d714c9e1896e6041d7e2f3817049b1b582e00f771a9b671d008dc585

SHA512
3d978559b0e42bdbf5068bc5be43fd510e4242a3d845559771d8bec469ac5985af72e68c57043a731e6c0290fc63e39ecbf149578454a0c8c200bbd5ba681784

Download Submit
/storage/emulated/0/Android/data/com.lbbfun.android.app/files/tnetlogs/inapp_20231224.log

Filesize
681B

MD5
f5b3b7cbbe325aaadf64f0e492f7cc11

SHA1
3912a38bb9ea7fcba6047877339e0e1cd2570f90

SHA256
1d14445e77edf03f50cfc7d35611585a15db8463d40054bf00d5eddf81512855

SHA512
af02ab0e673f0b25132eb1a22b6fa3cfaf700fa4537e65b6e79a385e832553e27bc192756565784c00cf062dc110c0a8aa59295096ec08c9614df6e11880d06a

Download Submit
/storage/emulated/0/Android/data/com.lbbfun.android.app/files/tnetlogs/inapp_20231224.log (deleted)

Filesize
544B

MD5
b64f42b0b9586f1b2866ac008302bcce

SHA1
e23b4807928e98adc057d0118ff0c7819bebda41

SHA256
aab2eb4a6be7bdad782c0cdd2c0c93c58f00697feb0a8f662796895a8d816e42

SHA512
74ae026e5f0cce0af8c3be5fb6fb553c468482e30ecec9ac402489d8b1b3544a9586fd8192a50d54136fd6454407c5b1e592adfa79138996be45ba520e7cb264

Download Submit