be258f3e41fdbc27dd2a50cc97bdd80516198c2206ef4f9e10de361b903077a8

Analysis

max time kernel
2967883s
max time network
147s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
24/12/2023, 02:44

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

be258f3e41fdbc27dd2a50cc97bdd80516198c2206ef4f9e10de361b903077a8.apk
Size

23.1MB
MD5

8117e23d2d494350831d1828b4bef180
SHA1

1ab12c0ccabed06615f6b33bd28bb0c48dc7c6d8
SHA256

be258f3e41fdbc27dd2a50cc97bdd80516198c2206ef4f9e10de361b903077a8
SHA512

43c4ff6eb63ee2d4ce1c86d07aa835539266c86a92e323de1602311f40fd4ead94aca3865250a4932aca1faf5e053b27fd2f9e50d7043139693aa5cbb0bf768f
SSDEEP

393216:fXUdhfe8Xs0NCAbz0CRqVhpz9CupCIXkkOG0ZYhV6S+YL:MLr3NCA/ez9ClOk5GWbm

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 5 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.jierong.share/.jiagu/classes.dex	4480	com.jierong.share
/data/user/0/com.jierong.share/.jiagu/classes.dex!classes2.dex	4480	com.jierong.share
/data/data/com.jierong.share/.jiagu/tmp.dex	4480	com.jierong.share
/data/data/com.jierong.share/.jiagu/tmp.dex	4564	/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/data/com.jierong.share/.jiagu/tmp.dex --output-vdex-fd=44 --oat-fd=46 --oat-location=/data/data/com.jierong.share/.jiagu/oat/x86/tmp.odex --compiler-filter=quicken --class-loader-context=&
/data/data/com.jierong.share/.jiagu/tmp.dex	4480	com.jierong.share

com.jierong.share
1⤵
- Loads dropped Dex/Jar
PID:4480
- chmod 755 /data/user/0/com.jierong.share/.jiagu/libjiagu.so
  2⤵
  PID:4506
- /system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/data/com.jierong.share/.jiagu/tmp.dex --output-vdex-fd=44 --oat-fd=46 --oat-location=/data/data/com.jierong.share/.jiagu/oat/x86/tmp.odex --compiler-filter=quicken --class-loader-context=&
  2⤵
  - Loads dropped Dex/Jar
  PID:4564

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.jierong.share/.jiagu/classes.dex

Filesize
4.2MB

MD5
738b060550acae76be703f9239ea9eeb

SHA1
84b47406817ea18afe1c94cfe98dddb6299851b1

SHA256
61138bf881cf46833b15a9c772af55a3879189e8486ee066ab9a6cd942b1ed25

SHA512
8087a2c2beee3850e62b491410381c9b817f9cc97bd433a310c865bbef5657795c75315ae8910f0a56ef55584af8357adcc93ec9ee619e99762b07352e03b29e

Download Submit
/data/data/com.jierong.share/.jiagu/libjiagu.so

Filesize
382KB

MD5
aa01dd97609092ce310e17bf791069ce

SHA1
f000840a8f68ea7beb2e29ea466088daf55609db

SHA256
e432c191f918053ce368e1b1f155b2e1f9e84379611b93aabec0106172b73aa2

SHA512
766c120a06215d0950aae32026fcde3eafed8d18ae0de7bc8135a7378a9055c8f0040d61574d9af67fe2b5b90eeae64c62d787343858ae375bb6658df8afe7b4

Download Submit
/data/data/com.jierong.share/.jiagu/tmp.dex

Filesize
284B

MD5
f1771b68f5f9b168b79ff59ae2daabe4

SHA1
0df6a835559f5c99670214a12700e7d8c28e5a42

SHA256
9f8898ce35a47aeafced99ea0d17c33e73037bb2307c7688e50819966f4ae939

SHA512
dae27d19727b89bec49398503baa6801640540355688dfabbe689c97545295c2c2d9b0f0dcd7cbc4cfbf701d0c0c3289e647a152f49ff242d1ecc741efe4145d

Download Submit
/data/user/0/com.jierong.share/.jiagu/classes.dex

Filesize
6.0MB

MD5
c65b76aa61ca2e5b14f6d1ef7c16e80c

SHA1
c3b4e49085a4dfd868689494399fab46aa76cd5d

SHA256
889f23da3bfd1f9d6ef4d25f92eb74b67217f3093008e76cd91213e7ad5e22b0

SHA512
8c05543aeb74c31ab7db4f4739322075cd98dcabac63110fcc9f40abd6c2c024ea1cbea9418494590acc1ef5f3659d282cce6f82838f2d439ebb4aa13c61d9d8

Download Submit
/data/user/0/com.jierong.share/.jiagu/classes.dex!classes2.dex

Filesize
3.8MB

MD5
7888ad7a5db8bd233c90dd78492b91b2

SHA1
0982861694aff5b30a0a1db64ddbeb559a801bde

SHA256
a52c1b84ad8d20a95663a4d907957a08174a43ac43a82aba7207738497d0f707

SHA512
9b13300d8df247a56f420ec6e0e9870ce33cb78162ca52341dc732eea596af85e119b0f7fb1a8de922f9da9244fc0fd7aa5113258af7f90727fc208c84055415

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads