bdf553909435a0dc13a9dffd65b3e77dea5e25300c5409c56220f458659967c6

Analysis

max time kernel
3037261s
max time network
153s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
24/12/2023, 22:01

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

144afe2338afcf9f359a717b37582d8c.apk
Size

16.4MB
MD5

144afe2338afcf9f359a717b37582d8c
SHA1

922256f17fc65020b4179261e6b9d85d57d74c44
SHA256

bdf553909435a0dc13a9dffd65b3e77dea5e25300c5409c56220f458659967c6
SHA512

da9add5ccb80da443f2e834e6bb8565f3766c0c83f3adf11e7f535990c645dadfa0c05f3177fa22b68e9af3aef8156f42bfda368fad271edc6c23797e6791160
SSDEEP

393216:JHeUdpw0cgQUahIk267bIeNs3j5rl2qiTZWxPsxIcL:Be0brQUa1267zNEnOTWy1L

Score

6^/10

Malware Config

Signatures

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.yxxinglin.xzid5246:pushcore

com.yxxinglin.xzid5246
1⤵
PID:4258

com.yxxinglin.xzid5246:pushcore
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4287

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.yxxinglin.xzid5246/files/jpush_stat_history_pushcore/normal/nowrap/b947ff8c-6f1d-4355-9ca1-0c4df9b20cb2

Filesize
202B

MD5
55ced00f06190489cba7714e1890ca17

SHA1
785393b164deacbf102ed7d9f8b96d525f9931bb

SHA256
adbabde50cce56092d4405c12b322a3e80b4f7598ac34d3bff9e87324f87fb0e

SHA512
9767a7390487833e275f0edfd91d4b9bd4a51ca68815c419b48f48266a5305add4fc7dfbb08fd5c364d971e0141b2742c883c3c92c9d425cd2dd4b9260bda36b

Download Submit
/data/data/com.yxxinglin.xzid5246/lib-main/dso_deps

Filesize
152B

MD5
15b5b39c28f968cc047a3f4623ecca4d

SHA1
132e956d58088fec8205e7e531e1a601af6d2ff7

SHA256
42af3ccbafb7cc1ebde0711012e64fb214f2c319ce48af0137f651dfdb3707d2

SHA512
0b6453d036721ae77d0236f4fb602b731a8091046a266bea0ca83cf53e712571f7d60c6761d20f881f02881cc0768701a888847f71d1789a2ba00688c34c7ee3

Download Submit
/data/data/com.yxxinglin.xzid5246/lib-main/dso_manifest

Filesize
5B

MD5
c06857e9ea338f3f3a24bb78f8fbdf6f

SHA1
c5a0a2529d2deb60fec041b4fbd722a2ebe31702

SHA256
957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

SHA512
29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

Download Submit
/data/data/com.yxxinglin.xzid5246/lib-main/dso_state

Filesize
9B

MD5
bf8feae6664953b133f31827c4d76db7

SHA1
7e05dd62edd704ef6214ec2fbab0fbb32d969193

SHA256
84ba4bc68af8f591dbd78998df67a92a8e11e8923d925992ea8fee9abc6cd615

SHA512
daaea951178d37e447b3737de33ea4e5985823308dd8006db76836957e5fe4757f6fc15499e3cbdc9d113a907cffa0bb0fcf34e85212b335d648233a66a49860

Download Submit
/data/data/com.yxxinglin.xzid5246/lib-main/dso_state

Filesize
1B

MD5
55a54008ad1ba589aa210d2629c1df41

SHA1
bf8b4530d8d246dd74ac53a13471bba17941dff7

SHA256
4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

SHA512
7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

Download Submit
/storage/emulated/0/data/.push_deviceid

Filesize
32B

MD5
34282a23eb20d7290029b3eebdf7280c

SHA1
88a88dc68dfcbe4f08a060617a0c317947dbe2a4

SHA256
682ad73f03617a45db6407b1d976d1a2dc748ddd61e1406eba342648ceffb9fd

SHA512
6044fd82a980613cb34a29d3ea6b886736ad4301b6f7e8aefa9de9fe1b2d21155e7e1913dcea086c0088525192590c38f3f7a8fd5a92261163de9a98dab48805

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads