af06e9b9a611864f9370ba654ad98cc184e664d6a3185de5d11c67467a2159f3

Analysis

max time kernel
2925046s
max time network
156s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
24/12/2023, 01:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

af06e9b9a611864f9370ba654ad98cc184e664d6a3185de5d11c67467a2159f3.apk
Size

17.2MB
MD5

79b439e492e677752a094856adfcd06b
SHA1

a130dd8096531f94554faa605f5e8bd66870d666
SHA256

af06e9b9a611864f9370ba654ad98cc184e664d6a3185de5d11c67467a2159f3
SHA512

09dc4da8f65d9dd8023de177113d9723351846c598b5950dcc97382d8209eebad20fa91237e6dd965391f49d5b41f0cafa32c72c427e018afe2f674758c91b1f
SSDEEP

393216:NnJQ6P32epsDYLFULgXfi2Ayezy8KtCDp5K:1ammepswFUyi5yFtwpo

Score

8^/10

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.duomi.android

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.duomi.android

com.duomi.android
1⤵
- Requests cell location
- Uses Crypto APIs (Might try to encrypt user data)
PID:4245

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.duomi.android/databases/sharesdk.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.duomi.android/databases/sharesdk.db-journal

Filesize
512B

MD5
ccf818ccc04ca0831206b15140df0a72

SHA1
18280ced8f0cfcb75632ccaec716edc7c5d97cd6

SHA256
15b5a365ac69e8bc34a48ef57eb9fea12894afb31a26a9810de35f1324887072

SHA512
3ca8fb4f8f93ebbe6ccd4979265369f4be321e29b50bd6c679608304e41eecc1d2d3eaf358382aae07ad40a820943102fe4afbe09a1220727e4b39dc5f80d267

Download Submit
/data/data/com.duomi.android/databases/sharesdk.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.duomi.android/databases/sharesdk.db-wal

Filesize
40KB

MD5
a207dcd07afc1850890f270acaffcb80

SHA1
48fdf040a31407bf6e4eb3334fd3c304a6a52fa3

SHA256
e6268a4d146cd19336e99a17444cc17f706e94441f345f2ebb03d518387ff9b7

SHA512
b14894fa528b91b42c5a71aae930e2690ae11ac11c7999ae318bbd985a379616111cb467bb2c701cdabe5a85fd9d225422c3b959cf39414b45b0254a06f0abac

Download Submit
/storage/emulated/0/DUOMI/cache/-1468876515

Filesize
7B

MD5
95d3b765fd08eb1dc9fef6fd15af6a7b

SHA1
2f98d9b1e41f21e3f71180f2ab56ddee5bf4f775

SHA256
becf0a8854284dd1344f2b2a93be01f704f9c4d76634583be60487b15a71e5ae

SHA512
b2c5edefd44addf96fc15553edb6965d8227b0823b3395187b514aea19f4a194510754372d8874287a4f4a193b83c419679de7671f805db518b215e036fea3de

Download Submit
/storage/emulated/0/DUOMI/docpath/playlist/curr_playlist.dat.tmp

Filesize
26B

MD5
ca3b3b7a6a624037f3a665d09e3fa3f4

SHA1
6e95464ec529a27f42d713944c0215514427342f

SHA256
1f584ea8bff3b311c742a133b75235945dcfa9a5fca0884d9e826e25e9ca4f89

SHA512
4ac022feb32044f8c7f512fdfd6efb1f1495d3f4317ac7316f17aa95deba75cca5602fd6d9b5151a4cfecbed59e1a0c769dc0f671f963f2eab667c57842f179e

Download Submit
/storage/emulated/0/DUOMI/docpath/playlist/playlist.dat.tmp

Filesize
579B

MD5
72cd8bab8aeb85102cb6989553057e71

SHA1
6b23139e2aa605ee702962cd191f9d34d6463594

SHA256
79775c291b5aaff23f11dff373ef968b2dfa1d8f16f16ceaf8f5e371026f759f

SHA512
6c3e4a6395e7d5acfca3c1e51a9fda0f00d736886f44e828ebf58516ffd5b2ec45ed1a64a760c6a7a2e3e790748e70b17ebe949cfd3857a607454270d656f91f

Download Submit
/storage/emulated/0/DUOMI/fo/EMF

Filesize
16B

MD5
2dd414df0eae663f9a5bc860e0ec0783

SHA1
21ea2621004b956027d16221170233543011bf47

SHA256
615a375c618e8f7a95983c65e91ee3f28cc690c0b4e9984c2877defcaa8971f5

SHA512
ed7cf20abf01004c87f0a75228c640d592c1b548d4ebea51ba1670cb43b2817e66715543aa721700fc7936c5213a14729309e93635ffc518694d48fe5c26501b

Download Submit
/storage/emulated/0/DUOMI/fo/TS

Filesize
277B

MD5
2391fd7b40d863c5ac22abd0ad9919f8

SHA1
9a869c0e904227f264a748384dae8af558915090

SHA256
6bbfbd1cc41ef4b5c97baafe22818a1498f2cb0bbda19fbe31cecc68d3f5b79d

SHA512
3d1f1f6b825e604e6c503dd5d9aea8cdd7665ccfd9a3ccf479c9fb7f26fadf36b43aaaee4cf26f44cad2fc660e5d4bc2fbbb63a8559e49f4396710388356d080

Download Submit
/storage/emulated/0/DUOMI/log/duomi.log

Filesize
249B

MD5
4564fbe21b9e7bf10afabe9b50963647

SHA1
93884b5e26eb2b6f3b3bf236c8451227c438d9cc

SHA256
34a475e6bc480d50deb2eb6f20b9f3dd8c224e4890617feb2ec17ca7a5c35cc1

SHA512
4d8da1356d99ce6a8ca03d8ce81c04f207bb258b9683e590d06cef13abc0cfda84fd75990d33110d957271d54dbb3cad926686ad4585898679caf3429adff5e0

Download Submit
/storage/emulated/0/DUOMI/log/duomi.log

Filesize
509B

MD5
e22cca916b6bfa2acfd9f34708100ae8

SHA1
916c08af1a631fdff12d869cae465b6572758817

SHA256
c025567666a2c0dbb392646d3a8ca718291bf20fe7d33aa3988be02ffa256d12

SHA512
f0f2738c404ca4883178f9b078f2ee547c81128e8517d639980e2fa8dce78d68cd5fea1d3abb3d158e3d2228207ac66cacecf0790f94a4b93ecaa0b115775aac

Download Submit
/storage/emulated/0/DUOMI/log/duomi.log

Filesize
735B

MD5
8ea2a1a1d783069bb160477e471db067

SHA1
8e5d7b3f6759fcfc1f6fd6a3443c7ff379a4b349

SHA256
5c595f645d900c6b2259d28c25220e873fa2479ecdfaeecd08564b9fa07fdf91

SHA512
7fa49085c2e6cfddeb6bf3a2dfbbed47ce2f709c3d953397f989f87e4e7fdca29ff67d3634eac923e8881ca129647e77f5ae3a32f775bbbe28179acc0c9fe973

Download Submit
/storage/emulated/0/DUOMI/log/duomi.log

Filesize
962B

MD5
2f34c6282f8157249183ea2fb5419010

SHA1
d7f3460b59eb91dcc43a972095ed08477c629217

SHA256
6493ecd98a64123e074fa8d34c48c59ead0646ea851953d195088d5224374c75

SHA512
8e0b0f97d6118c0e2cfe8a8131b36e87ab215b11937ec052421ad89e0ec1beeaae28ae68c7e316ed8d801314c722ed1ae6a8e64164311eebb6764ab98d0da696

Download Submit
/storage/emulated/0/ShareSDK/.ba

Filesize
377B

MD5
5a2ebddf9551e7f8b3feb711d5e3f0a7

SHA1
6758242c459d4a930d97bf7cfc36a78f40dac0a4

SHA256
c62c439cad8e734b881d66b5afca9dcaa76f7d3bb63b8c8a8845e4f80466d2e4

SHA512
e555d2ad6878d235331cc73b2926f7ac968425f9fec5766d6f67e959cacf0767a8d519cc962547a9d6527b6aa6ac2b180eee4389a16761cb91c7c1b44e0d0a59

Download Submit
/storage/emulated/0/ShareSDK/.ba

Filesize
476B

MD5
19ffa1aabddea2e8965eca66623c8c06

SHA1
d7f998ce867851c4c0a3f062e4d6934689d6ac51

SHA256
5b483b7460e8a688e7606659c58083f6c3cb43fbc5abb34df139fbfa70d1d758

SHA512
fcbe5ea5bc7c5fc87abf2ea0f9e99f5989891defdcd30f918f7161991c45d527e2cc6a58a5af2342dc6d0ddabf02ff07f1b6045156c619583ca1d749a416e764

Download Submit
/storage/emulated/0/ShareSDK/.dk

Filesize
107B

MD5
c9383021bd97affc44be4db7018c4d7b

SHA1
7e680409d1c86e35149bebc22f2cf8c484f0d23e

SHA256
b7b7e032170e3190a84359e5c37adede1d58b6bf4c455ef0c01f73335709bb65

SHA512
7303f068da97319891e2d25c1c737035f1cfdc365d75d954102b612000e54d7e2b5dfafe10bdf909563e2b46ec3ff9e546423bff6f0aa9496880eab1c1c36a81

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads