Overview

overview

6

Static

static

6

7ba7095f5e...3d.apk

android-9-x86

6

Analysis

  • max time kernel
    2721196s
  • max time network
    159s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 19:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7ba7095f5ee8e7cf123fa6d3042da89b8e99c9be7168b90e1d08103f77ef253d.apk

  • Size

    31.1MB

  • MD5

    cac8202d09aab0058e1e4fc8e5d2c5de

  • SHA1

    ecd1e91f8ebe5623d5a0814b407df8abefb99cda

  • SHA256

    7ba7095f5ee8e7cf123fa6d3042da89b8e99c9be7168b90e1d08103f77ef253d

  • SHA512

    0814b85ced68e506456fdc062101e5e9b43435a13ba4be7355930b996909f37ef493b796dc9f2f090698d574835d3542b0bdb91ce9c0c93ffbd137e08a22f22f

  • SSDEEP

    786432:QgkOz1bIC7nSeMqYCB2RZP7RsE6diJ0mopgqYQDbacM:Qy1MC7nSNM2/P7RsjEJ0XpgkW

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.yxxinglin.xzid41728
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4240
    • /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq
      2⤵
        PID:4333
      • /system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_min_freq
        2⤵
          PID:4354
      • com.yxxinglin.xzid41728:channel
        1⤵
          PID:4442

        Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.yxxinglin.xzid41728/databases/MessageStore.db
          Filesize

          4KB

          MD5

          f2b4b0190b9f384ca885f0c8c9b14700

          SHA1

          934ff2646757b5b6e7f20f6a0aa76c7f995d9361

          SHA256

          0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

          SHA512

          ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/MessageStore.db-journal
          Filesize

          512B

          MD5

          0a43534b08c4f2e570de0c5d387367db

          SHA1

          ccb8dde68a37da6ed0d774cd13e6532a97546936

          SHA256

          b6bbf84368654caade5f6432294792cfa8cfabb2afd3cfae544fc31e30652949

          SHA512

          a1bc9f97f47aa0faedb2d936f0d344cb9e05fa7d06ab11b97f1a8e9111d59ed40f53855153ce5f54bcf0ef6f86bb54973768078d9f2c7c2d10c7e2066eb00510

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/MessageStore.db-shm
          Filesize

          28KB

          MD5

          cf845a781c107ec1346e849c9dd1b7e8

          SHA1

          b44ccc7f7d519352422e59ee8b0bdbac881768a7

          SHA256

          18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

          SHA512

          4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/MessageStore.db-wal
          Filesize

          48KB

          MD5

          13f6f90e9c55db6b8659bbff25e66125

          SHA1

          06378c140c59c2fe079c56c55020a0cf792fd8f1

          SHA256

          19828932b99a628a26b268067732cc12e4509cd201c2efd6abc644d47ba8c8eb

          SHA512

          36babf93b87a4c6ce0de8a4338ec5b8ce86935a8b6a086975c457840f8d6088e08e5ede74133adb8f7cc277482a37cada77743126718bac13781645e8fbe2f36

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/MsgLogStore.db-journal
          Filesize

          512B

          MD5

          651e75079f57e85d912113b9e7588b87

          SHA1

          fa6209b836e5c4bf0ba348f22e823dea439c0cef

          SHA256

          3d3a856710f2a1b7d2b19860c4ced6a3e3cea9977364c96a077a85e0c4420c30

          SHA512

          dd7d2d08c5096a3c67c330c360e69496c515870ef6578f2ab2d0037d319685d91b7dcb482d88fd0d30f59adaf53a8d53690f4a79ffe485fe261fe558ad92f181

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/MsgLogStore.db-wal
          Filesize

          68KB

          MD5

          08e209b2c2e31660f5b98c451dd8625b

          SHA1

          89314e9f91e5253b10428326a2f481cf9a88b8ef

          SHA256

          a1bb967a1f3b7783699889bfbfd1582493b469cc97a4019affc9552d63cfe2c1

          SHA512

          86c7ab7a37e4f123ddf19a6bb10dd89a310a87033fd251def812357e6a9256c33aa145246503abec7a3819c2e2283bf2a9cce0ddbd9db75166b5876fcebecd1b

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/accs.db-journal
          Filesize

          512B

          MD5

          349907e624de921670b12282f8d7df5f

          SHA1

          b86ecf1f833d516073e944b462fe4fd96ecd790c

          SHA256

          7ee80aa5e10416bb79e68af7294d0b4c53b93f8c1b2039ae81bbf4ba22920112

          SHA512

          f2e25bcfcd411269f76c152b958218640ca6dafad0751f66f1c04f6a9201f598cddcd91f767786547b4031cf0764a3b006be1568fddeba437a05e8f8462d4cd0

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/accs.db-wal
          Filesize

          32KB

          MD5

          0a9fd958fe9a4ed8c40969f291170d39

          SHA1

          812a174537bc0b181722f456dfebb0183856062c

          SHA256

          1e69721f48f5bc19f565911b0cede37f49f5acd6192c93333d62cc7e3d4380ae

          SHA512

          97d9f970a9871cd5cc54b7be8e4d6c3d614763a6b97515bbd5b682c8928aa608709522c4facaf79550b271d0472f74789d18098d78f3f7484d25d9a892df518b

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/bugly_db_-journal
          Filesize

          512B

          MD5

          dde403cf0452c362cd1c3c60046fb2da

          SHA1

          3ba9d2208a153ce4380827978074e656e95cb6c8

          SHA256

          2ef587a372d0a9e6cc0ccfde294116d6412c295fc62a0de2a5c33ec3ca9fdb49

          SHA512

          197f2887ebf178342606603ad568afad40c7dd4c37b3962b032bf73f029c1b3e5f2923a455a0610a4f44131a06f2ddd8e6782088a173f4c459892e6fdf703e59

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/message_accs_db
          Filesize

          36KB

          MD5

          486e2bac2b3e9e1cb411d2838a4854bd

          SHA1

          81dd0a7537f4af319b830ae834908986be85da8b

          SHA256

          5644a250fa6cef16c2c802b98275656a5fc39dcf89bcc22193742d85c7313f57

          SHA512

          c146789563dae163e373489b3df53f22efebd32b69643992969241eb5ad5eec668de67e7cd2aaf5c3a8af57b0842115d00183825734f57643d3fdb09835fe681

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/message_accs_db-journal
          Filesize

          512B

          MD5

          eaad4195c38b2866c0a4305bf2e040dc

          SHA1

          0c30fa3a53c611d54622fbbd50d27d4bdb8d41ea

          SHA256

          29ff408fbc17cd64d129179d0dbe70f4a3313066ab558e566e1f33529af50a1a

          SHA512

          cac6ca0d038a7545864fefdb1bcc43ea3bd42cd548ad20f65b4ff420ce4bc7c76dc6ab2d2776b62d0a2aaf243b10b790da35700298ae60f1b55d7b55ea83108a

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/message_accs_db-shm
          Filesize

          32KB

          MD5

          bb7df04e1b0a2570657527a7e108ae23

          SHA1

          5188431849b4613152fd7bdba6a3ff0a4fd6424b

          SHA256

          c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

          SHA512

          768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/message_accs_db-wal
          Filesize

          48KB

          MD5

          6ae4d00f37ca610517a8993970d0fce9

          SHA1

          bcbef39ea8f419a422efe49f22c010b35e0c0e9f

          SHA256

          ea3aaab09d709f4584280246c83216c262ed2c576045aa2a229f8c185629a79f

          SHA512

          f575170e01e548f2638384075f0c121bfa95a35cbcb6f3a771bc647ec7f8b56aba4b5987b6b5b9de08bfd87110bab3ee54edadef3eb75cf461f6fcd70f8ed7a2

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/tencent_analysis.db-journal
          Filesize

          512B

          MD5

          311e7893946c4ecbc82ce0202d622db0

          SHA1

          aaa505213e11e1331427c805e8d4b1dc32adbf03

          SHA256

          99bf0280e76e8ea30bae3c1f704ddf8d70b395deb62b8408f3f78247fb58b53a

          SHA512

          5f105371801a503b41559feb71dcb0fac9b91924860f4075882cbad91f6756606d7bd0835796d7b7d37b555bfda9971e17ba3225ef2e015b5db29ccaf792caf5

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/databases/tencent_analysis.db-wal
          Filesize

          60KB

          MD5

          f529c26af665a33a8133466777216889

          SHA1

          da062eed1a17b4f92ae0585c63e9369444d5c750

          SHA256

          af4e8cb3e0e87fab98ae8bafc184d1bf79b786ddffb129167c358eae69aeb7c3

          SHA512

          40fd01fa664c029191754e16970167819d6d8b8895b4aaacc8a8737e0fe7566e15d37179678a89b7ee4f4bfe8a7f6507497b7b34ba17817fa84c5d163487d5fc

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/files/agoo.pid
          Filesize

          32KB

          MD5

          d65b10c53f3c605916ecf6934311c1f2

          SHA1

          70fa7162aea7ade94ad72655c3ac6b3ad1870bd7

          SHA256

          9cd63c8534b7b5b2b2b842accd126719d3db465b45a880d33c936f13411a866c

          SHA512

          7a430da9e70f6eb198f3e442435e54b91fd73ed8b465c5311cca13123f6d8b6226b7a04135f2f4bbb8abdc4df92afe9c91805f0374b7198e295b9fa0da76c3d0

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/files/cclogs/2023-12-25 181508.log
          Filesize

          36B

          MD5

          1b994ff11f00461a858653c422031a22

          SHA1

          5a6a23a90630f7d3f9c645eddb4b3854928c4719

          SHA256

          0740b9c79773099480037b90065834bb1fa174b42e5280739452b794c976fd65

          SHA512

          ca043594a628921f111b82f6d66cb33755c4cf16e7653fa65d582474a0e1c02670d50cb7104aac569bb1be789952f90406051907d9b6997124a73bdceefe6e3a

          Download Submit

        • /data/data/com.yxxinglin.xzid41728/files/com.tencent.open.config.json.101400326
          Filesize

          1KB

          MD5

          f526172de1566b34fdcea744710d9559

          SHA1

          000cb54d9a008a807a1c5a3fd2b2e7cb41e7939d

          SHA256

          8572be02b59f4d514000939ec04a9b4e2380c55265256b724a617d8d0f4c6940

          SHA512

          dc81f0fe345b18c96b1638c67b9ef4c5e60059dfc4a02f3c30a23645d4847abeef46cf467d044c42597115c48052ce0e8ea24328382114a544c5dfd039a95e7d

          Download Submit

        • /storage/emulated/0/.DataStorage/ContextData.xml
          Filesize

          111B

          MD5

          469fd333dc20c8b23a1382b93edc60ca

          SHA1

          dc1874a76f507eec9b77da3db03a99f48e0e1103

          SHA256

          e1e184899461f22d6ba5c93ed2e790c79f17d93d7a8608d59b366ba51fedb7fa

          SHA512

          b60bef6d57c758c70f3f3134331bf41cae754459e5d6831f9c4da9f1e1671d59ad05d11f9cef6b8bb5e41ba984bc4198f506e0a4326420d696abfda23fd18a7e

          Download Submit

        • /storage/emulated/0/.DataStorage/ContextData.xml
          Filesize

          4KB

          MD5

          5736eb2494d99e994b51da5ef4473e28

          SHA1

          6f1853a2b487aed4bd1d20dbb6517b849514bf30

          SHA256

          e5857dff0276e2656acd513477c09e03373447ac3a268558acdead535a7966ab

          SHA512

          e65f5d1c3092152531955b16c790063a5546c9f60464c4d664ec9ff60ee7ee1e52ce438ec9fc69f970c3b2182c81b6d10b45859728cffebc420d3850bf79be48

          Download Submit

        • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
          Filesize

          65B

          MD5

          9781ca003f10f8d0c9c1945b63fdca7f

          SHA1

          4156cf5dc8d71dbab734d25e5e1598b37a5456f4

          SHA256

          3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

          SHA512

          25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

          Download Submit

        • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
          Filesize

          111B

          MD5

          91bda0de4f13545784ee6dd11901e55b

          SHA1

          988b40441f4d3dc4936f0dea4e1334490d600d28

          SHA256

          6ca930ad3a7da4236bc4bc15d7658f5ab17b07131d105fff1a158a467c4013d8

          SHA512

          fb46901b6c9284036312f19092a03c1deb02087c0e42175cd9ddf418b32cdfc96fc3395273694737bb52281c0733d600bfbb915e9aa5f98f73bb25dc0668c7b7

          Download Submit

        • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
          Filesize

          381B

          MD5

          be42c668c9d2ba13cf76074602b50dd4

          SHA1

          4a836403c25366b7ae19cf3e307f83931068160f

          SHA256

          f2b170b8cb333e5481459f265fe23d9f74782cbf8c1c628ef21aa0214952b0a4

          SHA512

          c0e665b33154b569ad5ddd497043a2bd8804e7952c9e4d9d4b0be80fbb29ab414c3cdbd9ad345388507d40f507c2a9e3aed028c9b60a261d72443122e08a9028

          Download Submit

        • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
          Filesize

          32KB

          MD5

          90fabbffb627568634c5963d85b25f18

          SHA1

          bdecea83d309cf79a7423e891150253a94e0e9a9

          SHA256

          cc5daec871a19b06e4f554903d9fe6ffeea4d7ac2bc2bc1382d276212144c1b1

          SHA512

          8ca8ad1ec429593137024303282c7007c57d9463fa205e66dc21c1ee55dccdf5204a9f50521adfa90815b7821f2cc0ee106ac5eb7ed16d8c2355e97ebc61db7b

          Download Submit

        • /storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
          Filesize

          512B

          MD5

          406602e37a1b94ae27a232eb7e002c9a

          SHA1

          4eec1dc4ba3429e04c54ba0e612eb173802dfeaf

          SHA256

          01ab2823541ffb9a8d9fb70772740f1ee193c743202f19c9558ce7af0ecca4f7

          SHA512

          bf99fe23f2bcde018834c6ebb64228635b96780291344f80c2f6fef9426edbf34873cf943bd53729991ae7f3d563cd688f9272939226c9ad005d2b554e9cf5ef

          Download Submit