a9cbc916689c5067c6f96efeec5c8d193cce7737539135f59c5c75f8acc84512

Analysis

max time kernel
2722895s
max time network
150s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
24/12/2023, 00:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

a9cbc916689c5067c6f96efeec5c8d193cce7737539135f59c5c75f8acc84512.apk
Size

27.5MB
MD5

5346be2b667bdb1614dfeb4e81e48c49
SHA1

7031c941d3a56b50fddb6d70b2dbc2e990ab30aa
SHA256

a9cbc916689c5067c6f96efeec5c8d193cce7737539135f59c5c75f8acc84512
SHA512

02d1d55bd1064d314369df7eae76364d21caa935e03f12575c848c13652e00540349b9ceaa65065153fd70c90a40c4d4a5729f4ce9a94096abfa99cab80a6da6
SSDEEP

786432:FuawBuzyE5z3b6cebaPVmZsgNJpsEkQn7SgpYIZzLIY/d48lQf1kbmb:MauuGE5leb+ma8s6n7S0J/68lQ9kC

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 2 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.fcyun.mpos/[email protected]	4986	com.fcyun.mpos
/data/user/0/com.fcyun.mpos/[email protected]!classes2.dex	4986	com.fcyun.mpos

com.fcyun.mpos
1⤵
- Loads dropped Dex/Jar
PID:4986

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.fcyun.mpos/.jiagu/classes.dex

Filesize
5.7MB

MD5
150a3cc56286525d18ff2c0650d75513

SHA1
5d4c7b8cb7ef44682d9432f55b4eb3006ecde43f

SHA256
ce306b87920c663d9b8150cd1fd7f1e62a33475295b8028c7d762b5c83a78b3c

SHA512
ada6be0464d738ae82d82f3013e619e1a0abaf6a1a5976f2a598292ce27a98c8b2a8c63ab91671d53ff54510c203d1402e7d66189458baabd0802b03f4b8ca7c

Download Submit
/data/data/com.fcyun.mpos/.jiagu/libjiagu.so

Filesize
382KB

MD5
aa01dd97609092ce310e17bf791069ce

SHA1
f000840a8f68ea7beb2e29ea466088daf55609db

SHA256
e432c191f918053ce368e1b1f155b2e1f9e84379611b93aabec0106172b73aa2

SHA512
766c120a06215d0950aae32026fcde3eafed8d18ae0de7bc8135a7378a9055c8f0040d61574d9af67fe2b5b90eeae64c62d787343858ae375bb6658df8afe7b4

Download Submit
/data/data/com.fcyun.mpos/files/.jglogs/.jg.ri

Filesize
314B

MD5
5792f725d4b73026eaf443c8f2d7c501

SHA1
51ea39c25a7d743a443c4df107846ea13a9d47f7

SHA256
3cfa615555fb52052edbeee185ddee4bf663da6bf782b536dc72e809b4132452

SHA512
018c05fd11a5f018aff7b7bc45490b00ee6d6e6a5c919f48c3ff444c43e215049bf3e7d9c3f97e37c813dc977e3de35b221e5d7f59f62f1101457a6cfefb6177

Download Submit
/data/data/com.fcyun.mpos/files/.jiagu.lock

Filesize
27B

MD5
a2a52b8e17c4e607b592a0be506b0536

SHA1
4587442f58e6c1bac9574a5fb9d8f2cc36c9f96c

SHA256
a0a3e486eb95e29dc91df18fae65202cb2102f8d909c047b4ef270833ad91185

SHA512
1d3a7476cff8f5fb164e2d53a4d1c358911847d20e9df7cc224b6167be2717fe0bcc2d3ec0c6262d0b061bd8c0739b32fa1ea6af7d03e8537d5cf88bb9b05472

Download Submit
/data/user/0/com.fcyun.mpos/[email protected]

Filesize
6.4MB

MD5
d818016d86384e0659c5db340f32d724

SHA1
177665e983e62fa1bf51cc8361e5abb62a6b7b2e

SHA256
f9d3824ca1166ca8f6a665dea60d709f26ebbe41dd73c9700090e18950e50903

SHA512
e87c36c9c9c569f92baeadaf0fc26699ace1e860b75b32e0ed5fa21979489283c170714e94c771dddf7a4ee2ea5df8584915476eb127206a856e21b578b75a2f

Download Submit
/data/user/0/com.fcyun.mpos/[email protected]!classes2.dex

Filesize
4.9MB

MD5
a24ac91084a719f998182baeeaffb113

SHA1
01f585e6cf47d196548cc339f9ebbc4172a2e909

SHA256
3be2183a0b243e0685fb73eba78e41a4061da7c8efb8ae8cc1a6e731bdbf287a

SHA512
da214811c1e6a095a3291fe916fcf312df43bddac910bfc481579618ac3d6d735c8b29ade62ff05559225060c12d1de720bd3aaa2eaaf97bb27d5bac27ad9e4e

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads