7b32a9514090374b84c82718664dc910b5e4e60b4a675fea5ee87c667839d6c4

Analysis

max time kernel
2626724s
max time network
160s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
23-12-2023 19:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7b32a9514090374b84c82718664dc910b5e4e60b4a675fea5ee87c667839d6c4.apk
Size

19.0MB
MD5

a123c184320eba7dda667e9577fece8b
SHA1

089a81094fce14dfba890f6ef5824d6bd94f4f0c
SHA256

7b32a9514090374b84c82718664dc910b5e4e60b4a675fea5ee87c667839d6c4
SHA512

7229695fe98252b5a040977c0e948857948cde76bf4b2065f17802aca5f3d4f1f323b912e92b363abda2f843f75306cf4c7c1537d24e96e2e388e77066e1acb2
SSDEEP

393216:9fXP6Hm9lZUusLzfZJvNo8VfCCB9q3R01yaHo7FkhkYqw5h3GH0b2Icbbjb:RCHm9lyusZf4Eq613j9B2Hmsj

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 6 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/data/com.neuqsoft.ggfwandroid_cd/.jiagu/classes.dex	4915	com.neuqsoft.ggfwandroid_cd
/data/data/com.neuqsoft.ggfwandroid_cd/.jiagu/classes.dex!classes2.dex	4915	com.neuqsoft.ggfwandroid_cd
/data/data/com.neuqsoft.ggfwandroid_cd/.jiagu/classes.dex!classes3.dex	4915	com.neuqsoft.ggfwandroid_cd
/data/data/com.neuqsoft.ggfwandroid_cd/.jiagu/classes.dex	5002	com.neuqsoft.ggfwandroid_cd:pushcore
/data/data/com.neuqsoft.ggfwandroid_cd/.jiagu/classes.dex!classes2.dex	5002	com.neuqsoft.ggfwandroid_cd:pushcore
/data/data/com.neuqsoft.ggfwandroid_cd/.jiagu/classes.dex!classes3.dex	5002	com.neuqsoft.ggfwandroid_cd:pushcore

com.neuqsoft.ggfwandroid_cd
1⤵
- Loads dropped Dex/Jar
PID:4915

com.neuqsoft.ggfwandroid_cd:pushcore
1⤵
- Loads dropped Dex/Jar
PID:5002

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.neuqsoft.ggfwandroid_cd/.jiagu/classes.dex

Filesize
6.1MB

MD5
49c8b8511cff4c939dcc7614424f7ffe

SHA1
b18bbffe3e30e564745a4a807eb033657a55b227

SHA256
407a350d746248a40722c6ce7c50d043a1d72c3f48b8fdee7674dc8794eb2eca

SHA512
717fbb743b0a57649dc60227c0d998ddf9ce05f2f7bb2186d79cbd70eab7c7c91e01ea0a76f4b22c3a26d98708eb40c7d02451613534ad1d456e1690ea748ab1

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/.jiagu/classes.dex!classes2.dex

Filesize
6.1MB

MD5
1fb11d9e9db82b259d56487684dda514

SHA1
da7ce283a781544c0e719a036fd3530e84542ef0

SHA256
1deddb945f97a96790d9c2bc58eea63003f6345cf224616f764a2e56ddece253

SHA512
f0abfd9e10672ff05c303ad55263b52d710e3c8e78ce5769ff331e18655bd370cb930ad43790467fedddc3a954110c1529d3bf2f4ca90a0fd69cb40d192f0cc7

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/.jiagu/classes.dex!classes3.dex

Filesize
487KB

MD5
4b917e7c9e2daa25fc7365981f1be9d4

SHA1
b5ff97375ea1f308fab5683abb111e6baf3d74fb

SHA256
c2d73f7323f8841cfdb4737dd6d3eb455c78ed6469a80534eabaae3cbcf5115e

SHA512
8cb0a59a34becd2e0c1697e3cc4f213d93dfcc47e15db35d46f3f73a8274e1749b79ab38fa45be038a0d6b2cae1d25c35cb2d771c653050a71052ab23c55f830

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/.jiagu/libjiagu.so

Filesize
475KB

MD5
5aea02f4e4c77fbf2e7a27f7ca9cc06b

SHA1
522db1748608e9173547b29b7aa82ddc3542c534

SHA256
5a1c513b347e2a929769e2be67552c1d591704f08f7b5590282b66cc2c7d7bd2

SHA512
5c979a11f5e896829db906f533756efc1cf3c5a7e35ecc9e376a0aae818f2dada013441649feac2e188bd51affbbf35156e32fdc6552e185bddbc547f3850316

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/.jiagu/libjiagu_64.so

Filesize
509KB

MD5
289fb443987b114ee4237b4dd97672bc

SHA1
9b898410845dfaeae3af212b5df41177ba9b8f34

SHA256
a55e9ee18285b41a4ea1bf375930a5bdb603dbfc530a3dcb224bbded14e68210

SHA512
debbf2720c9b132b5923eaa9fcb372a72a97d574bce59789d06b645925fa2d6a27473aae4c9f1e4968614d44fd98a8b0fb1eec217a595fb5c80bcfc056705508

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/databases/cc/cc.db

Filesize
36KB

MD5
67c12933d1e0e63d9801a6aa43092ce7

SHA1
b6936908554e4a1986b8eb08289e2d3545e8ff74

SHA256
abda5dd4cc2e7dbb951637c4b49d6990f9f34411fab4dee1a387dbcc8e7eed40

SHA512
db8b818daa3ff4ec7678645f84bf8b45c809bcbb758ea78b28982d071572655bba2d20e6f1ca4f0d057ab34fa655c5bc40457dc65050180351a2fc04a47175dd

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/databases/cc/cc.db-journal

Filesize
8KB

MD5
3c95960f72bc026cb8acd35ae128bb01

SHA1
5e5365600c97ab1956fad925cc53b95dfb620966

SHA256
00f5db1daeffb1a6ca75b4fee1333a0eebff229eebf2ed022985b7de9262ff0c

SHA512
d81e787ccb7f2df90dfe2f32e22ff338a9b56804b336a4d41dc320f6ec64237f90185f5cde276863377bc7b6c7c6f71f57e93fa13f977040f34b9efd3ca9a1f0

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/databases/cc/cc.db-journal

Filesize
8KB

MD5
9aff2c29b5201e627ca8e7aeaf1af02a

SHA1
455a92a47f0a0d25a09fef6e15e67c525c611405

SHA256
d5bb2166f200e936babaa0f99bd884bdcf1972d4af0e74117d5c695c8835df42

SHA512
7a220f27daf400cc1bc503a36d501858fab01bbd8e8abcd37019a9ada29658788550eff321845cc9ca4cbd893778ecf54f3f3af9fb7d8311c009cc90be2cdc23

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/databases/cc/cc.db-journal

Filesize
12KB

MD5
0ce911af7dc858bb436be465c48a5f10

SHA1
9528c067d6173c42babf8cab80c6b424e921a16e

SHA256
c224663de911c82b4aaffbd9a75ca1c9bf74f7bc025bb14d06401f5f5950e48c

SHA512
8c389c2266fbe0961f4653ce5ee1f41969d8c6286b9b3b76cc91cbf1295206105d760c9d6846980546db3bfae4956e2f3b44d92d610b8d02ba3eb87968226c31

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/files/.um/um_cache_1703433774009.env

Filesize
1KB

MD5
86045d46366771b68451201eec41abc2

SHA1
3e33cfa04c0558f6b3fabe107c2cc675daccd64d

SHA256
5d139fe7a2af3ed5b339c8fee443e001b0a5b9085afba6c44cd4c0787929131b

SHA512
59d653e3286e97635c39b6c7cb11d40240803a98a79fb1c51e4b047a773f2926cad73f0a6dbf7dc4001ba49abc3617ce5352e6f7274dea481173a7e58aa9ea4e

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/files/.umeng/exchangeIdentity.json

Filesize
162B

MD5
0807116b1791b846324a4caec9def913

SHA1
f5c9ecffd33d901d16172bf1e59045c0e2a0f178

SHA256
e3ca45d5016db6c48fcf4aef2d967254c0f3779953330218e7768ff61f56a052

SHA512
db48ddad30df71eb86c84649298bfd3e9e51190fa5a611d49f9d92d4ad721a842bb30e1762eac7d64dc6597fcf0e3cd683d5d4d4be4c9afa92cad970b52fc242

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/files/jpush_stat_history/active_user/nowrap/dcc0efb2-e014-44de-bbbd-537107c0bfda

Filesize
159B

MD5
851440a58b09c4038c0620fd98f06f2f

SHA1
74723eae3103289b858ea95e6e6a536c61e8e4e2

SHA256
9e2e2f53145ec5f4fdbffc6aebe8a3d51af4af4ed2a06e1912b05cd2dd1068a5

SHA512
2d5b9d958ca72e204e858687f60f745b333abc25205328ab53134b193e85dc1052b2c2d9c1175f3cad928483dffd5e94300167c636bfa308ef0128fb9af56184

Download Submit
/data/data/com.neuqsoft.ggfwandroid_cd/files/umeng_it.cache

Filesize
352B

MD5
d12ca9664ba987d63cfc9f4341f58e69

SHA1
07b17e49b6904866eb3439d1d1e13075244b1da2

SHA256
fdcbf1cec531c584a503733d5c27a4a05a740ddd3ef66230be3e6866da1734e1

SHA512
7340dde36372f7ac0ffb258c362aa6c96c35ea57d778691eddf41d4f04b48f88cf0b16bb0b524877a5b9df339bd387efc00575b9d28f9e259f6963fed7c8310a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads