Overview

overview

6

Static

static

6

a5d6f25a05...1f.apk

android-9-x86

4

Analysis

  • max time kernel
    2906126s
  • max time network
    129s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    24-12-2023 00:06

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a5d6f25a05e8a9b5e29c22db5af71e556d3a21a02cb8dd4a754294b24624ec1f.apk

  • Size

    17.8MB

  • MD5

    c37e0278bb8367808ba101170c96a3e8

  • SHA1

    571788cb0ce51801b2a613a7a00b3af6f963eb98

  • SHA256

    a5d6f25a05e8a9b5e29c22db5af71e556d3a21a02cb8dd4a754294b24624ec1f

  • SHA512

    012010fe11b05cba4547404471d6f52e7f3b69d96e9eb3143f6eb7c52579d88b8f84a38f22ef3aee6625f69cb5dabbf8408ceae9e18dee28da539f800cba2e24

  • SSDEEP

    393216:u141rSzeKz8aFM7zXG8TlzNJT/jIQTtJf4SVIP6FN4Zui3X1hG/O:k4YeY8p71JZ50QTtFzZFN4ZuinDG2

Score
4/10

Malware Config

Signatures

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • microwu.hybrid.fanrenjiajiao
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4260
    • /system/bin/sh -c getprop ro.board.platform
      2⤵
        PID:4290
      • getprop ro.board.platform
        2⤵
          PID:4290
        • /system/bin/sh -c type su
          2⤵
            PID:4318
          • logcat -d -v threadtime
            2⤵
              PID:4343
            • logcat -d -v threadtime
              2⤵
                PID:4361
              • /system/bin/sh -c getprop ro.miui.ui.version.name
                2⤵
                  PID:4382
                • getprop ro.miui.ui.version.name
                  2⤵
                    PID:4382
                  • /system/bin/sh -c getprop ro.build.version.emui
                    2⤵
                      PID:4408
                    • getprop ro.build.version.emui
                      2⤵
                        PID:4408
                      • /system/bin/sh -c getprop ro.lenovo.series
                        2⤵
                          PID:4433
                        • getprop ro.lenovo.series
                          2⤵
                            PID:4433
                          • /system/bin/sh -c getprop ro.build.nubia.rom.name
                            2⤵
                              PID:4459
                            • getprop ro.build.nubia.rom.name
                              2⤵
                                PID:4459
                              • /system/bin/sh -c getprop ro.meizu.product.model
                                2⤵
                                  PID:4490
                                • getprop ro.meizu.product.model
                                  2⤵
                                    PID:4490
                                  • /system/bin/sh -c getprop ro.build.version.opporom
                                    2⤵
                                      PID:4515
                                    • getprop ro.build.version.opporom
                                      2⤵
                                        PID:4515
                                      • /system/bin/sh -c getprop ro.vivo.os.build.display.id
                                        2⤵
                                          PID:4539
                                        • getprop ro.vivo.os.build.display.id
                                          2⤵
                                            PID:4539
                                          • /system/bin/sh -c getprop ro.aa.romver
                                            2⤵
                                              PID:4564
                                            • getprop ro.aa.romver
                                              2⤵
                                                PID:4564
                                              • /system/bin/sh -c getprop ro.lewa.version
                                                2⤵
                                                  PID:4591
                                                • getprop ro.lewa.version
                                                  2⤵
                                                    PID:4591
                                                  • /system/bin/sh -c getprop ro.gn.gnromvernumber
                                                    2⤵
                                                      PID:4617
                                                    • getprop ro.gn.gnromvernumber
                                                      2⤵
                                                        PID:4617
                                                      • /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
                                                        2⤵
                                                          PID:4642
                                                        • getprop ro.build.tyd.kbstyle_version
                                                          2⤵
                                                            PID:4642
                                                          • /system/bin/sh -c getprop ro.build.fingerprint
                                                            2⤵
                                                              PID:4667
                                                            • getprop ro.build.fingerprint
                                                              2⤵
                                                                PID:4667
                                                              • /system/bin/sh -c getprop ro.build.rom.id
                                                                2⤵
                                                                  PID:4692
                                                                • getprop ro.build.rom.id
                                                                  2⤵
                                                                    PID:4692

                                                                Network

                                                                MITRE ATT&CK Matrix

                                                                Replay Monitor

                                                                Loading Replay Monitor...

                                                                Downloads

                                                                • /data/data/microwu.hybrid.fanrenjiajiao/databases/bugly_db_legu
                                                                  Filesize

                                                                  4KB

                                                                  MD5

                                                                  f2b4b0190b9f384ca885f0c8c9b14700

                                                                  SHA1

                                                                  934ff2646757b5b6e7f20f6a0aa76c7f995d9361

                                                                  SHA256

                                                                  0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

                                                                  SHA512

                                                                  ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

                                                                  Download Submit

                                                                • /data/data/microwu.hybrid.fanrenjiajiao/databases/bugly_db_legu-journal
                                                                  Filesize

                                                                  512B

                                                                  MD5

                                                                  d166fd147404d3309ecc66ccb81cc046

                                                                  SHA1

                                                                  2a734f9457d9eb982117e832463cebef670cbdce

                                                                  SHA256

                                                                  705cbfaeaab1e67dc85e76d54adabb89e4620c494bda9872a70fdad01f154832

                                                                  SHA512

                                                                  e93d42b3e787a3db711320ea9bd9346e221538ada5ddb5b0350d99d9b81b1d582684a8e2610898873012eb1862974cc9be51ea3c451548dd97bcb683453d6ceb

                                                                  Download Submit

                                                                • /data/data/microwu.hybrid.fanrenjiajiao/databases/bugly_db_legu-wal
                                                                  Filesize

                                                                  60KB

                                                                  MD5

                                                                  b533493cd9a610f07abfb73865f96038

                                                                  SHA1

                                                                  779aa73cd8bfc84a3f157b5db48dcc74b4311e15

                                                                  SHA256

                                                                  7bb24f2f8a462c2983a5250100b93fd6a476da8682b77875c99fb1fba2eb2b5d

                                                                  SHA512

                                                                  2c0071a354eba7642571a4433c1cde52d9f987c645ea0b300f8faf10c3ca7f17b6f6265271cd9c2a820a80254d436f07a2290b5b4f62eebe6795a0d0287a42e1

                                                                  Download Submit