Overview

overview

8

Static

static

6

91a2512a31...cd.apk

android-9-x86

8

91a2512a31...cd.apk

android-13-x64

Analysis

  • max time kernel
    2776555s
  • max time network
    160s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    23-12-2023 21:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    91a2512a31ae6d566e6239ee7c000c8e82d1a6daf9e347e5976457f8ef5b1acd.apk

  • Size

    12.7MB

  • MD5

    1cfe5578ef993debcfbd3e34487500a5

  • SHA1

    ac043cb8ac75d58b76b2b2655dab3cc8ebeb838e

  • SHA256

    91a2512a31ae6d566e6239ee7c000c8e82d1a6daf9e347e5976457f8ef5b1acd

  • SHA512

    1fde57a8c8ac1acbfb7108dab0a0a16d38ba13fa46729dc564645feb6731c75a4749e035bb50230fc9d22e2c287977b74effb97387d8930dbb27e5e0e8d77ddb

  • SSDEEP

    196608:M/kphp9yJVq2kSwFYkrWL8DP0UIYtBNcryV/z98nrheGYqu596LkA:M/WNrS6YIWL8z0UBI+V/zOnFewj

Score
8/10
banker

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 IoCs
    banker
  • Checks Android system properties for emulator presence. 1 IoCs

Processes

  • com.huati
    1⤵
    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
    • Checks Android system properties for emulator presence.
    PID:4478
  • com.huati:mipushservice
    1⤵
      PID:4592

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/data/com.huati/databases/HlxFloor.db
      Filesize

      4KB

      MD5

      f2b4b0190b9f384ca885f0c8c9b14700

      SHA1

      934ff2646757b5b6e7f20f6a0aa76c7f995d9361

      SHA256

      0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

      SHA512

      ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

      Download Submit

    • /data/data/com.huati/databases/HlxFloor.db-journal
      Filesize

      512B

      MD5

      bb88fade1767096cb00b3f77abeb5844

      SHA1

      13e0516139f3ba04c77f69d67198f2cc9802a449

      SHA256

      e8bd6abcecc9e78e945a506cb920d040f7ba4326511ea9f2a9db817b162004d8

      SHA512

      99730fb06a6b96965038f6c3f9fe3601b2937a995dcc791c0673307f1aa6afbd0137b3ae98bb9e7725335892991c252d2d03dc5e95f5b06e5aa1ab5562c4f66c

      Download Submit

    • /data/data/com.huati/databases/HlxFloor.db-wal
      Filesize

      16KB

      MD5

      be59afdb0cf42b33197da179eec17355

      SHA1

      ad1ce0a85a19abdeddc2f617f3e8ffd8a884b19b

      SHA256

      94f95600cf5cefcb3c0923bb361c0c093c3be371cd2357cef62932137eda22db

      SHA512

      bcf6245c9d4ce51f6d80c956b1f97b53b4db54b247809bbceef221a9f4d75d2257300ff074097185f93aeb8fd6042eb253a7b34593b3fca051fde9d71f841797

      Download Submit

    • /data/data/com.huati/databases/hlx_wifi.db-journal
      Filesize

      512B

      MD5

      ba395fec96780cbdd16d029a1d2eead7

      SHA1

      d2a00a636bacf167ca477a0977280933ca17c3f1

      SHA256

      9af95268a0cb1209f44a0c7453b9f9cf07c4098eb05cbadbaa125945a8064845

      SHA512

      5696cb5627ab87ce415520ff1f57a070000837ea895877ef4cf26a8b2bdb157c79558872e6f95a54b54e5eec9aa3cbbc119297faffc1a4e6a31f2ccb3a789182

      Download Submit

    • /data/data/com.huati/databases/hlx_wifi.db-wal
      Filesize

      28KB

      MD5

      9c7cde5da76994b7e171f363cb79486c

      SHA1

      9180c99193da94416236ac538d18d7157108485a

      SHA256

      1cc5ea8f3e728d589a8617f5d806c1c5ef7539ea043d8dc2470db2f7552b3393

      SHA512

      0ca526aa3e78bd1bbabd7036c390116b6c33bd93cfe7e68f1737ccd7caba0d1c90fa176624ca58415858cf17af0b71f2fd8a0e67c25d07a30a3da1dadebe9e3d

      Download Submit

    • /data/data/com.huati/databases/pri_tencent_analysis.db-journal
      Filesize

      512B

      MD5

      f906e9e679dffa37bc8b330bfc3433a8

      SHA1

      cbea35968ae0e0b7c93d4bb5135903e8b99b6a39

      SHA256

      5c82b8b4ae786ddd3e3776eb1c31fa2e9f200763b3aa8b03eaf582f9f25cafc6

      SHA512

      39bb16288ef1fb7c434eddfaf40f53023732bf42db587bd44fc700e0360c02428abd1001760ed41ce3d6edb8969fdde42ab1317e8bb830deeebf19ac5b3939be

      Download Submit

    • /data/data/com.huati/databases/pri_tencent_analysis.db-wal
      Filesize

      56KB

      MD5

      a33c4fe2ee925ff412917de9b0c0c49e

      SHA1

      48ec96eac7d0b0546a178620b4e5833e4be1b80f

      SHA256

      9c553b8c18d3b1894abd065c841064c3d8d120d0aa40f6898f67f4d947902f1a

      SHA512

      2c5457ac4831a14901acf0b8a095e1f353276954a9ad6891d08b7ef2c85a89db26963621f136319b9d3acd35b867ffdd613e68c64c610b4c9271df9f3fa0796f

      Download Submit

    • /data/data/com.huati/databases/tencent_analysis.db-journal
      Filesize

      512B

      MD5

      3c9ebe0b34b34a0d0a51751f8a12e365

      SHA1

      a89aa527763ddd7dac9911684a776a6a6c48687e

      SHA256

      0e990b71077eb95fa4051ce4bc3c38be49d64a5ae4e6503714afa419a3805408

      SHA512

      5fb02417fb4ed9ff206058e9aa65e3ab93a62c48470462b7d25ae1726e18f07a62ebdd31f55826bf8423a35078c47b9622f8e4fbab85e92e2ddfc5c111aba2f5

      Download Submit

    • /data/data/com.huati/databases/tencent_analysis.db-wal
      Filesize

      16KB

      MD5

      b626c109221dce0e18b8a42155e15f6c

      SHA1

      4b8396f76fcbc691c9db02d95b769bfaa45f4a53

      SHA256

      c7b5eaffed2b2bc617d6eae6bc93acdec0d8739ef911d3fee5b370df7a3dfbda

      SHA512

      32f5819c972cbed4420d478f4a624ced179c33a7f1d11fd8e1407132544063498cd3a68c2a10a97f0b54e8c8f7da9cdeaf4794ccb600920d17d78243fbfeb105

      Download Submit

    • /data/data/com.huati/databases/tencent_analysis.db-wal
      Filesize

      8KB

      MD5

      6113b432d8fa11ac72ce1ee271b8af84

      SHA1

      bd49b93e95c7702464b18ac2cefead9e12a6b07e

      SHA256

      a84f62a5cc844f64c7bd7ede058bc3e5454b79a55f550d6f98788b926d64724f

      SHA512

      6510d6e5db255aa807f558852bffcfbcdee0b38afa35d6bddc2e1c42e76f66fa0dc53a24468072702ac20b701b1122ea466a0f562c450fd80e9d32600eb1de8d

      Download Submit

    • /storage/emulated/0/huluxia/floor/http-cache/-1188893047-383281629
      Filesize

      993B

      MD5

      047762bd4b0496641a5cc77f4af6166a

      SHA1

      8791eabfead84d718e348b1e2a6a7c5bd45e05d0

      SHA256

      636f5c66c12965ba52685b1b3c99ea16a133a0945e88cf7effa69361d4719f98

      SHA512

      1474aa13db3bbd86d1ddb19902ea7d8d0df86d45b834be97e708bdda5a1b2d88e3db7b6818fb0f115edf2023d05cd060d53106989db771c0b37feaa301030b27

      Download Submit

    • /storage/emulated/0/huluxia/floor/http-cache/-1710740540-880958036
      Filesize

      97KB

      MD5

      2204130dfcbd213fa09d2f1fb3c4a62e

      SHA1

      c60f1137834028088323c7b5c7652fa91ec6b6f8

      SHA256

      4e637a627db5c1c9e18810f2b970f6f041a0667045b0d6dead035422317acc68

      SHA512

      ee004eff7db9094a5d224ff61c8bef0d065cd4ad169092aaced469fc513af16e03067c5b06639ccedaf2dd7188ee968fec8b4cd31244ae03dc53ba746ae706c2

      Download Submit

    • /storage/emulated/0/huluxia/floor/http-cache/-18653946-383281629
      Filesize

      898B

      MD5

      c83556b83e9a59dd2ddb9b498840feb0

      SHA1

      d127d59e6764a7c16ea5c3db0d3bc739b5840006

      SHA256

      60b670a2b544cfeb0f93628a804882966af8788614ef7e2a12be666eb0bde549

      SHA512

      7aebbaac47f850a0f13bb9f9b576cd90fc1c62d5e3377e044bce07662d31c7ecc308a241f4147478d153579ac521df55c144057886088de99810c4be9a656d56

      Download Submit

    • /storage/emulated/0/huluxia/floor/http-cache/-78020442-383281629
      Filesize

      990B

      MD5

      12409916cbad94beeb94331280871ae5

      SHA1

      16ef5f96176b1f354bc643955b378462305d3b73

      SHA256

      b2aef2f7cfa0b49f573f3fb8c4752cfb4a1c59d54d9802094f5773eca7ba9d5e

      SHA512

      861e2a5186fd5944e29b39b7178ebae1d36560c1ec048b83e440d2ffba24a02fe65692408f4426b763038bce6639fdea3a5d90b740248d12cea150d35d3cfac5

      Download Submit

    • /storage/emulated/0/huluxia/floor/http-image-cache/images/journal.tmp
      Filesize

      38B

      MD5

      d23e625b8c007469b2e71d570080beff

      SHA1

      a5033e8b65c9efd3e2bf225cb32f8b4bc2baa225

      SHA256

      c65e5454f012853a618c8b3ac874f1fd5734314d68e5135da6b644b78be7ab9a

      SHA512

      ae270ce2347b0587fc60ba298590463fd89a7cc489e95c1234d6d8ae3e7067eef59e403a8a381fe9f71d930291490d79b866af79e306ab73ca846c9f744391ae

      Download Submit

    • /storage/emulated/0/huluxia/floor/logs/logs.txt
      Filesize

      116B

      MD5

      837da529ed83047999a16cc30f3b4067

      SHA1

      f624156e169b9fecc51b9637e916eb5a12739082

      SHA256

      e7a370755c7623958b9c4f5a9342d001daecb78c2c073911b3aa8dd105b5e2d1

      SHA512

      ce1ba88558c30187ccb8e12cd4884c4cfdf8f759e04e2e5e3f029b0bb461cd15299d92dd079d08e0f3f9bf1d4d90076b8ddc6205bb758f06f13339784d9cff76

      Download Submit

    • /storage/emulated/0/huluxia/tool/logs/logs.txt
      Filesize

      134B

      MD5

      b618f938917c9ef071b2dc6a7c4e5624

      SHA1

      8ce0120048313b681d328208de1b21c54ec1bb66

      SHA256

      63808a23a20cf6bfc9b91c141bb3c207e4a5d6a04be8cdfd53807a4bb26e8a31

      SHA512

      c1a33b81bbe85c853c7c42de8b7771f71bfe1661277d42e2d2670d30c4ee8b1ba9684f89eba23cdb0bbff91191d71092162f8132946f1fbe7a5fd874fc5a6cff

      Download Submit

    • /storage/emulated/0/tencent/tbs/tbslog/tbslog.txt
      Filesize

      552B

      MD5

      be9220c42dc89018e0779b06ebccc11d

      SHA1

      d14beec591270ca04c36e1ce40413bf6af0c8044

      SHA256

      4ee2f37ef87cc3af908d97a85e5b66f7688ccb54da074a1df1f27e2921ed8112

      SHA512

      c141bbb538c5c684b8bb222ba446af606d30ca5cdcdbae033b46f6403bc54d457b15b19d80479c7832273594eb99e533f51bafed15adc1b8a8bc8bd789f47ca1

      Download Submit