Overview

overview

8

Static

static

8

90615af97a...a6.apk

android-9-x86

6

90615af97a...a6.apk

android-10-x64

7

amap_resou..._0.apk

android-9-x86

amap_resou..._0.apk

android-10-x64

amap_resou..._0.apk

android-11-x64

Analysis

  • max time kernel
    2772701s
  • max time network
    160s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23/12/2023, 20:59

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    90615af97a3df5f7cb4ae3c0402ab868b18e60189dc150498e339e289d3cb6a6.apk

  • Size

    23.8MB

  • MD5

    a30ed3df8d4c2e2be957b42bb4e74d9c

  • SHA1

    e17911a90ed551a0fd6d2fa0b8d4ceee8ca96899

  • SHA256

    90615af97a3df5f7cb4ae3c0402ab868b18e60189dc150498e339e289d3cb6a6

  • SHA512

    8d8c3a06de40686436dd619be4b5e5adc2f44816b3880cc54dfcf6a53961a435d5af0113d3e371406765f9bd98b89743dff4af48c6ce33384c57d8a5fb8b66d9

  • SSDEEP

    393216:976suyosNd72WTo8/OxtItSfGmv4Os1rgnp7h+FJhlsxbjCTASe+oqNhpamO:IsVbLOxrGSSUN8PGxRF+owa5

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

Processes

  • com.hsmsx.hsmsdoc
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4239
    • /data/app/com.hsmsx.hsmsdoc-5uAqGLVRUKDK1ip5r-yNkA==/lib/x86//libweexjsb.so 46 47 1 /data/user/0/com.hsmsx.hsmsdoc/app_crash/crash_dump.log
      2⤵
        PID:4270
    • com.hsmsx.hsmsdoc:pushservice
      1⤵
      • Uses Crypto APIs (Might try to encrypt user data)
      PID:4431

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/data/com.hsmsx.hsmsdoc/cache/image_manager_disk_cache/3e23c2ef392d06e93e348c3bf3f95c83161bfc3e45e2d6603378f4402a7521cd.0.tmp
      Filesize

      1KB

      MD5

      3268e97e651a0ef074cc313c883d586c

      SHA1

      73a37bfac7d6ceda9c97f38aa0e449f1dd33d2ac

      SHA256

      cdab8d0b53e8dd3cd0bc4fafc7b7ccb0167a7a8ecce6dfd70fa82907d3bdd2f2

      SHA512

      93172e62d54d6a57e96d1bfdb78ccdfd52e44756afa0638bc09841166ddcee21d1a639f2528c40ee119f8661791e307447590d6dfb83133ea0c2730336391259

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/cache/image_manager_disk_cache/68913ff261c85c29f275eecdba5ee5b9c4d34f628a4cfddbd3135d6cb73a7bf9.0.tmp
      Filesize

      1KB

      MD5

      e7ecfab27b4191f0bac86ed4183b9906

      SHA1

      7c4feb356241666e96431eb91ad19ba9d01e97b9

      SHA256

      e6c9124c15a3e5c1ef8a15990f642103d48dc05393ebd1146742cacaebe1c0de

      SHA512

      dba5c1ade03afd107236de5cd5640bf193fc2bbb1157d57b1ce477487e85ab670e9a9f3a1898d66aa41dae0d4a1bcbe6370efc341984e13d6ab7eaf96d226cbb

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/cache/image_manager_disk_cache/6a6ea9bbf226475d53a9be6cce20a03d3f0fc8375bbbaa824065d0128230e25a.0.tmp
      Filesize

      820B

      MD5

      b3adaf1f1edd53f6d9db12a69b557fbb

      SHA1

      19683ed2d3e9e934b0a941f2478f0d1365ebca62

      SHA256

      f416188904375b2893d6bd6ef2a3f2834cdd100cbc7480ab4a3364d0e2f990e1

      SHA512

      7287ab56513a55fc94087c6aaea5e1a4b32231da6057ba504bf77ddb4f3c7d576d21525ac7956b498ba595eb09777fb9eb5936f54cdfac249df71050298b7b4e

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/cache/image_manager_disk_cache/f108e30dc0ecea359a86c6b139d3f57def99b6b1d71a4f5b4a565250d782129a.0.tmp
      Filesize

      590B

      MD5

      04ff8f4a9a377400fb59cd7a22440714

      SHA1

      0f3db649e3cbaec5470076d47b77419f479f01f6

      SHA256

      969dde84761045eb5f42c32a40ba3050a884849f7109d9566f602ada344f21f8

      SHA512

      05f176220eb999aeea79443ded4c9d937155ab6787722562c700f4a570b0e2241063cf95074b111aa536b8a23c6b85674c71b5007b31376f9057f292fedb435f

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/cache/image_manager_disk_cache/journal
      Filesize

      617B

      MD5

      97b95c4e6343d7ac0d208c077942796d

      SHA1

      59c6576f8d8919cbfb37125d94495cd613d25574

      SHA256

      8e29b5dcc197bc7fc00911e1f46e7e88fa6312f57c781ef3ec80ae97baa9608a

      SHA512

      d11778a525b770031bb86f4354ea3be78b207654b04bf10ccbace2fd46b2c25b2cbe010a7184dcc4af64e310bf13ffaeca3163bb6845f2c107ae310133322661

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/cache/image_manager_disk_cache/journal.tmp
      Filesize

      31B

      MD5

      8c92de9ce46d41a22f3b20f77404cc1d

      SHA1

      8671a6dca00edb72be47363a7071be65cf270373

      SHA256

      68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

      SHA512

      30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/cache/weex/libs/weexjsb/x86/libweexjsb.so
      Filesize

      6KB

      MD5

      9bb067cd33b490d30f2c88054c732574

      SHA1

      d95a11e2be5c7a1fab9820e34cdd9e482523ea86

      SHA256

      fb993dc086feddf19af9700c7428386e3e4a5c67f273711c371ff4460a830ae9

      SHA512

      0b721c51332313c50ae466fff1b4bdb48a71791bca67ee83d2882a19e8abb59dc1406ed15d6dabbcd3ba922167fbf68a3828fd82edf4b2270ff0191b8fed0dbc

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/databases/pushext.db-journal
      Filesize

      512B

      MD5

      4e7e15c86aef31397e21336ff99e7e34

      SHA1

      a3fa68c39e2cd0081e9b7ebc3ddc9ce8ed83a62a

      SHA256

      80feafbfc74822bd2b0cc76a79d2c9e93cc8cfec41c3e450b87a61dd24a56ed2

      SHA512

      780641c8cbd686c128b5a88d3fb07ddba7b67e55ee0829d0c322c4a68fd9b71a27a96da8719f1aea42091e2c33f7c44786c5d5c790fe674a0d4973c0f8694a35

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/databases/pushext.db-shm
      Filesize

      28KB

      MD5

      1759cb6a8f68d4d175e7be816992b217

      SHA1

      a7e6f87e20b0c7511f27ac5885b1f106153ce255

      SHA256

      ee80290f4a72dc80bd45ba475e61a6223e67ec0aea371fb876277c2dab27d82f

      SHA512

      50e7ef5334351c74a9347e237f938a16f84b0d80add4e029fd4184f3c3a4874d8984c27fa158f8f1d79c704aaa7984c797885ef65fe215b98e5995d5c6e2ebd6

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/databases/pushext.db-wal
      Filesize

      48KB

      MD5

      6b328467773233388a2887da5fe00afb

      SHA1

      11073d4ffa551f8a2a06a7a17c227094b162e6dd

      SHA256

      ebe0aa041e6be905542d0656f22c2d9eacac8833b69f243d045487dc2dedb375

      SHA512

      ed25c04f5254f7fdffef109bdfd1ce8828e1d6e34a7d87dc90e973631a01c868a9a429116602f95d84a4f82380e0668d49ab39f5b58e9f0aaa87a33d4714b498

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/databases/pushg.db-journal
      Filesize

      512B

      MD5

      50d1163512bf695587a7408c530fe972

      SHA1

      e2086245ffc9de4ee0e6f3adf58d10b1f471b8a9

      SHA256

      9c74cb297ec37cd0908e9ec9819772d4af50256fe2809570bf48f1c68d800c64

      SHA512

      2c4d3988b18d9bb50c65ba4c16028d9dcba62895d861a0d57ac688faffd178f334900eb6f0bc8eb306747736594643e2a57aa501b45180702f40aa0f14f5c35c

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/databases/pushsdk.db
      Filesize

      4KB

      MD5

      f2b4b0190b9f384ca885f0c8c9b14700

      SHA1

      934ff2646757b5b6e7f20f6a0aa76c7f995d9361

      SHA256

      0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

      SHA512

      ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/databases/pushsdk.db-journal
      Filesize

      512B

      MD5

      83571005fc6c42c4bdd25ab1d1e3f874

      SHA1

      ef9e9c725517d5f32d45c1d5f2cef8ddc6509b1d

      SHA256

      46dfcbcd8c6a5cdae360a9833e4abb030a4c4d0a38d56eb198382ff0633d9f32

      SHA512

      b514fe32a9741d3357e507c387ff95d28373d8f7c1265068cb32065e8fed9ff69ef51f649d1a81b68740fe9e833d45e8d1a324c6ce7a3039287ed30a776e96f9

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/databases/pushsdk.db-shm
      Filesize

      28KB

      MD5

      cf845a781c107ec1346e849c9dd1b7e8

      SHA1

      b44ccc7f7d519352422e59ee8b0bdbac881768a7

      SHA256

      18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

      SHA512

      4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/databases/pushsdk.db-wal
      Filesize

      60KB

      MD5

      7b7f224e776301bbe109fe14e2cb9cad

      SHA1

      d8f8d5c79d20d5b44fa75643ada5f647eed3c66e

      SHA256

      90fbdab75c4b274d228c3627af34c9515be4105bed3e9b9e52de47d4e873fec7

      SHA512

      0fcbc930048319d2939ddaab1642eb703b5de1f2edba214c51f86382e04dc6084e5b944a78ee68545af6b3da4c42961fc1e0fd53b3c94d0c63ec13b5d633640a

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/files/.imei.txt
      Filesize

      32B

      MD5

      73c30c1c1d60222a3dbf1365c1d960fd

      SHA1

      03c0c4479fa94d547803e92669b5cfa0622cadb3

      SHA256

      d8ff328cffaccdafb9cd0502df0a80f3be1d74dc98c2d9f760e95a4eccb2ab36

      SHA512

      bee3188a81ea3b9f1acb3cc449ca5efa011fb8c68aa431b1a9ec4f71339e463e50c3e941df75cf8e3fd1f6dd40458a9a67dcf5711ee30378218066a986370f04

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/files/cnc3ejE6/eje3cnc
      Filesize

      39B

      MD5

      7769d4507985f59116153463f09235a2

      SHA1

      b081e84d14300ac7a7947aade9c025fa83bc17fb

      SHA256

      5ba33c69421ad27727832442cb5939d5bc853acecd0d8162d7c10a6b96757dcf

      SHA512

      ce5bb431a31eaba24c0cf467bedb1abee2205b74c4533067058b09ce7e8f9480b8baa01866e3dc89d1800d07da6007f36c1b4fea811e3da164b187903480d29f

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/files/init_c1.pid
      Filesize

      14B

      MD5

      b943fef56854652cedc26179a7dc6761

      SHA1

      4d3928877226b2f6f77d0d057100235ab7a9f265

      SHA256

      ed8e1e22d1d9b35fe46e39af48bd8b9dccd0aa9ccdd6346911e38a72fbde68e3

      SHA512

      b73b2dc85c28c246575fc7b53a1ad55f665bc7f5310bbf4a4929fa349bc6c506c647dbe593db13e2ecc617dafbb37dec0701db2a5603195c71ea87e4ce9aa497

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/lib-main/dso_deps
      Filesize

      284B

      MD5

      f584d15300263ff54a816f0e586b098f

      SHA1

      af854f0b417e5d788bff3385dec2237d90f6a80b

      SHA256

      2c3eecadf2a65274e8a065c867f3407ebb4c9cc61f326729464dfd9d8ccfa558

      SHA512

      048b0ce76bbb722ef7601b12533f0af743b488903adfde99304bfe18e5af5f4451cb1d32a9354c14f54193ee77bc8b04a58220b177a2fd4dd757e90e9ac09ab5

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/lib-main/dso_manifest
      Filesize

      5B

      MD5

      c06857e9ea338f3f3a24bb78f8fbdf6f

      SHA1

      c5a0a2529d2deb60fec041b4fbd722a2ebe31702

      SHA256

      957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

      SHA512

      29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/lib-main/dso_state
      Filesize

      1B

      MD5

      93b885adfe0da089cdf634904fd59f71

      SHA1

      5ba93c9db0cff93f52b521d7420e43f6eda2784f

      SHA256

      6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

      SHA512

      b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/lib-main/dso_state
      Filesize

      1B

      MD5

      55a54008ad1ba589aa210d2629c1df41

      SHA1

      bf8b4530d8d246dd74ac53a13471bba17941dff7

      SHA256

      4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

      SHA512

      7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

      Download Submit

    • /data/data/com.hsmsx.hsmsdoc/shared_prefs_ext/test_app
      Filesize

      29B

      MD5

      302d2126ab63fdd6ded249499bcfb252

      SHA1

      645e071a04b146666ff25f9ce02afd28d29b6d5d

      SHA256

      6d935a729d3db4a8fc8cf971788a1eb077b1af5c391fb586f48e8177cfafd5cb

      SHA512

      4a303bda4f0b05d430bc2f196624fa8ad05ea1c49cd26cd35a90f3a3f9442ac04161baeb18120e6d6d01424373378171d6a08ebc94d635dcebb5513207e74f00

      Download Submit

    • /storage/emulated/0/Android/data/com.hsmsx.hsmsdoc/apps/__UNI__7521905/temp/1703579613929
      Filesize

      868KB

      MD5

      e48a81301bd7d73ea6b5eadefa5907d1

      SHA1

      9b0be57682e12d5c43c09ad7c3aefc74bc16cbf1

      SHA256

      afccf337668b0c1ce98a086f02f1c9d71da420c7bae463ac174c0f0f204316d5

      SHA512

      35c9069748f66d46147b3d15f3470e12d7703e442b5f03b0b3cdc8ae3735c95edd1062e94b509087dd1038615c27f2d56bdfe291adcd0699f1d142f09e6f75df

      Download Submit

    • /storage/emulated/0/Android/data/pushSdk/defaultLog/2023-12-26.log.txt
      Filesize

      974B

      MD5

      049b40c1c34d80ee98e95901199c515b

      SHA1

      33daddd6cc2a6bf6e903bf224bea6a7320819dac

      SHA256

      2221f16f599747dfc886a814fd158bcdff31f119c3b257fb196581659330a949

      SHA512

      19ef274141f53a70b11c3ccd8f7ed2ed78f8811a4e06db46bc9d008761ae0195567fc0274d447f90a11d2639c397548449aae32dd63224eb2823cd2ccd4f5f4f

      Download Submit