b77ed86cba5a6313e8a1dca9cf93350b930188e948df91b6db7edb09fbe6315c

Analysis

max time kernel
2738555s
max time network
160s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
24/12/2023, 01:53

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

b77ed86cba5a6313e8a1dca9cf93350b930188e948df91b6db7edb09fbe6315c.apk
Size

5.4MB
MD5

b8d09cde8d65579b6f00607837eec66e
SHA1

ca497ec82cb10141ca0f9a762e9ea96d879acd2f
SHA256

b77ed86cba5a6313e8a1dca9cf93350b930188e948df91b6db7edb09fbe6315c
SHA512

7fd2a1be98904b0351dea10222c79902f7bd3ac74a2349451790687c8534b07dead84a598195de19ee908bc00e16a77f4e83dae9e7294db3005ebf8a48abae3c
SSDEEP

98304:yoo2ypEVBIKa34Uuvrh2uecGxWSfxszdsJZyXjFTJDnWooNTTjry4aLapjA2HvK4:yooZNTU6nx4dsAJjWoopTny3Lyti4

Score

8^/10

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.xinmei365.font

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.xinmei365.font

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.xinmei365.font

com.xinmei365.font
1⤵
- Requests cell location
- Acquires the wake lock
- Uses Crypto APIs (Might try to encrypt user data)
PID:5002

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.xinmei365.font/databases/download.db-journal

Filesize
8KB

MD5
d3428c0133486f698c1e4f79bfdc8717

SHA1
c037831c1725f7873bedd1c3d1b8a9c494a6f172

SHA256
66ec1781176549b179d1b0e2d861afc6028b20db0bbf8e3e0e7e87222ded71e8

SHA512
3f37ca787926e0026d6ed638f5abf3a38f97fd4f658fda8bfde0a89bdd0beb7da4507fc17d66ecbad391d8b116467f2afe6f462506ec8a43fb16adca37f55135

Download Submit
/data/data/com.xinmei365.font/databases/download.db-journal

Filesize
8KB

MD5
e58186a11cb1d01ffa04a5851476f629

SHA1
3b27b28954bc4c8eca3581e710889ed3cd4d175a

SHA256
66b73266be458b3ee71fc3024a6fff2f55a8e312ad6a05ed55e0672936dc7a46

SHA512
59acfdf53a149a355528bc9b45a236928a9fe54e8ec6e3a2278621425d1b0ae63af641d63a98ae998de95e563d9ccdd8a160901451cffef0e62965c67555829f

Download Submit
/data/data/com.xinmei365.font/files/__local_last_session.json

Filesize
108B

MD5
f3c1d97253865cd7c9e20fbad08fcc93

SHA1
4aaed60ef8aa30734ba650d648346f95d1548523

SHA256
f80c2afc642d38cc8135402908d717b061130e0e73b8187a5a5907275494c081

SHA512
f55e61dfa116017259bdb47449a070c56682448463d6d3a580719afe43177b4631430eccb1c3b7a3ceb74da3046cd6cad0dac1caa87583908fec5dee10a9e922

Download Submit
/data/data/com.xinmei365.font/files/__local_last_session.json

Filesize
150B

MD5
5fc2aeff7fe3a41600bf8361417d2f7b

SHA1
bdc0d1cd8a1b6839e43ae68d012ee4b1765a4079

SHA256
20f0c41e60f58f4407b85e2852df4bf847f46d5721244f9d283cddd55a8060c8

SHA512
1014c9b532603d8ef7310cf8dc9d2324cde7a35db947e4aa2479598eb6f1a1777ae1106a86b37781de20969e68523ce6a735de7b10f1a7591151b21d2726c3ed

Download Submit
/data/data/com.xinmei365.font/files/__local_stat_cache.json

Filesize
25B

MD5
2d805b13f2f28dc3ca9bbcc000f49bb5

SHA1
9eac165b4d81258fd3967cde5cc53b53b1dabcb1

SHA256
c8a6624f390568f0ddcb9841336aec6a564460fdaf6624e562b32935b8956f19

SHA512
5db8c57bab36bcf9db698c1dce70318cbffc156dd1d1c1e09e5b7ba60aff07b598ebbf26c4bd8a2b03bd6e59ef2dde2d944a22a8d8a19ecc8378e83afb7c83b0

Download Submit
/storage/emulated/0/Android/data/.class/android

Filesize
33B

MD5
0f44edbc45401773c96dd5e2a39ba212

SHA1
116c913e3b6f4f77f9549426bf6e4a4d279396d5

SHA256
745fd71594e73895acc4a7b052c1c08184aa5239f3edf22c152826c49953fa28

SHA512
b9ebcb18204d3b6a6e18cf1f140eda5bf40026e893415488d5d69c7288002512955ba6d9b2811609d48e1d3352f7c58fea88188d1b47747eeb6339dbd4a3b471

Download Submit
/storage/emulated/0/Android/data/cache/AppPackage.dat

Filesize
16B

MD5
d795be42e319209234370cb73c37f7ef

SHA1
508e9eadc563825f841b7091a625aacd2df35e5c

SHA256
5a7ed387a0a1ee94361f11b0ebc70416c567036df9e4ee0ca11cc628660f0812

SHA512
dfcf25a6add45a7885dd91fc1766abbbd591c9a5a00ab8f03bd242517ed521a93d468cfc57d968521988d9fd12b1a0c2176e49692cd65c64c15829d0f69de290

Download Submit
/storage/emulated/0/Android/data/cache/CacheTime.dat

Filesize
13B

MD5
79a0bf8157d090d7b08c1d871c54a724

SHA1
81e4d11750b1581d804ae2ad43d8a5d8c8589448

SHA256
660eb877968c5b919e5dee39f293688a4076705a56240b25344ef942d5bb89c5

SHA512
09879347e55545a1ffe61ad29a361610e07a1d484fa4cc5e4471676409fa5a0ce6d499b92769a63195dc635a0fd185a6292a2ee56bf472ec1b4b2039e36259ab

Download Submit
/storage/emulated/0/Android/data/cache/UnPackage.dat

Filesize
19B

MD5
19ff1ac9b0a3255719a564f8dc6b1b4a

SHA1
0303453dd44bb21016617c884974ff766e195070

SHA256
f0417529ecf3b779f785f41ee9090e6bebbfda333718cfe9e66f410a264f2e2a

SHA512
3c2ac00ba2dbe2ec02604d26bc71e5e826424a1e985c8bafd8223a4119748c7864968473574521dbc8fb84b955a33e0a3b22f6c21f70ce9dcf555ef08c4704bf

Download Submit
/storage/emulated/0/netlog.txt

Filesize
78B

MD5
a87f669f1cd6162426fcfecaaa24e314

SHA1
b9a78f83f56e486dc0ce7a017f02e171f4138069

SHA256
165758fc6df8b2692ef3bbfe891acab6bfb6ac6b08be8bfe84002deaa8eae1e7

SHA512
683e333f2cf0b6ef8743f25ebf7250f4dfbdc38c2d2f5b9a584ec9923d13f0d3cde1e58795cc117dfb078766c0a2ef1ac793d5e958470f82f5c635d5a53f343a

Download Submit
/storage/emulated/0/netlog.txt

Filesize
78B

MD5
eec0a093d35ec0573b07cfad68909933

SHA1
f7ff885667d7db9d2fb668e3eea7358806465d96

SHA256
3a71419736a41030eb8381aeb141d8f62beee54bcaea2eb1014351e23082fbda

SHA512
ae7e2d68e54f581ca039fa79e8b5dd6292ea7718ca8a211509c4c5a66e2fa3b8cf100ccda04f42646e4468113f164f7df40308b11841ded826dd12c32c7eeb63

Download Submit
/storage/emulated/0/netlog.txt

Filesize
92B

MD5
a81ebd9f00d9467bff70ba65ef8af12c

SHA1
7ad9d3facffaff1956d6290be03dc355198f2857

SHA256
400ba872d303676def7c1d054a5c075d6fb48572cfa3d04f1c304d7ae10cea8a

SHA512
733eacb68522b5ac071e51839e0f22237c0f9c8efedd01f0792ab146fb7af08612c4c6b019024a9465a64a2d2c4992c05f932ad526e8ed9a397a5569ea858c8e

Download Submit
/storage/emulated/0/netlog.txt

Filesize
75B

MD5
7120c491fbcdb3ec8b32137fe4902cf1

SHA1
c3b68b31031eba05b6a4fd973dafe0bcf4ca9450

SHA256
79c40dd8d871962461a7dccc613e3f83128b5e364c60010f56ef4698618ea662

SHA512
538bd3853ce6ad8697c82e8d87d6720ddfdd68ab70c3110a3ccbbbd72f0437edb17e1078aa4052c3dd9ab24de4878cadd38539e732cc700f7ad70b6087900509

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads