Overview

overview

6

Static

static

6

b9a330b48d...e0.apk

android-9-x86

6

b9a330b48d...e0.apk

android-11-x64

6

Analysis

  • max time kernel
    2954960s
  • max time network
    161s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    24/12/2023, 02:08

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    b9a330b48d134449fb28ca31ecb958233f760af83d6ba4f2bc1beb432fcf53e0.apk

  • Size

    16.4MB

  • MD5

    c34c23b016369b9bfb1e371adfee71b5

  • SHA1

    971506073ee2b99a3410ae71e4b317e4cd328d51

  • SHA256

    b9a330b48d134449fb28ca31ecb958233f760af83d6ba4f2bc1beb432fcf53e0

  • SHA512

    1157edbf45ecb5e1fd3d60909c7408b0600a6b6036544bc60739fa1efc0678a524082712ccb476c571352922c7c42cc2f40af8819ac89234f1a7f5c68d4027bf

  • SSDEEP

    393216:B9+8y8LVQ/odmjnoM2wDtq/sQcmmnEvr25dBuAOXbcj1a2mB:B8n8pZdGnoRwokHsQ6AOXam

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

Processes

  • com.weiju.wyhmall
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4253
    • /system/bin/sh -c getprop
      2⤵
        PID:4329
      • getprop
        2⤵
          PID:4329
      • com.weiju.wyhmall:pushcore
        1⤵
        • Uses Crypto APIs (Might try to encrypt user data)
        PID:4284

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • /data/data/com.weiju.wyhmall/app_crashrecord/1002
              Filesize

              227B

              MD5

              46f4749f9506f0f6fefce7bbec082b2d

              SHA1

              67f6c4b9b9ac4f7bc6fa4579f222f1e0ba926b1e

              SHA256

              c1f3fa371ef811ddbb8d5b5c2c9f6362d4e468f8ca8052732a2e58fa2560c78c

              SHA512

              0409b05c952c279f0df7ef7a5d7a797db70b450bd562c175799e1f1b4cbf06d7a29ac2e093eeb96eda96b0a179cc1c5c8c3c1bf8fc135dbdd3fd82eb5c89b1bb

              Download Submit

            • /data/data/com.weiju.wyhmall/app_crashrecord/1002
              Filesize

              227B

              MD5

              d3c0d8f66b46768ef7c051158eb18f2a

              SHA1

              42bc0fb9cc1e581e925f03fd839acb10a1a89efe

              SHA256

              394da1d505a3a3e9036c27d6311c7cdf5a8f16e25e1b6fe6a27e6c3ba59751d3

              SHA512

              f395c6ff2300cb2fa01fc79283360e836ca035b101587fd526b5e77ca72a490c4813baf7804e24aa242c375c2c898062e060ff2cf052c69fb3e367e65ddec24b

              Download Submit

            • /data/data/com.weiju.wyhmall/app_crashrecord/1002
              Filesize

              236B

              MD5

              059a1f108bd0c53de00e0f1c6500e018

              SHA1

              e075c541372f50af2fec2288cd564ae7cd1861b9

              SHA256

              5ba5bce9f2e095f269e413ffd95ff76afc913d0b635b8b1a86010f6fc025e7c7

              SHA512

              095a5f5ec5688260212ee7df15994071959d51bd60a7e758e31a2f34d1cd20c9d0b9251cfcba6d6da0f739c73b89a7f39a6d60f515ffe6c5150357bfbf7119fa

              Download Submit

            • /data/data/com.weiju.wyhmall/app_crashrecord/1004
              Filesize

              32KB

              MD5

              4e8994d4beda752e9d28c1d44f678185

              SHA1

              c358a00bc95882ef1d86ae8eceb90cc81a69ebae

              SHA256

              b8930c6adcfbcb867f6b5217c15eaa296c8f685e4273919b87994cc42a016611

              SHA512

              e19af09d8031e1a224e6da57bac1105a3987c59e06d9c81f8d6a1a18311b083fe525426cb96dc2f87632c8cbe3d18cd46e239bc7d548ada5126aeb0008ea0263

              Download Submit

            • /data/data/com.weiju.wyhmall/app_crashrecord/1004
              Filesize

              227B

              MD5

              08f13da124d1a9e69ba067a9355a168e

              SHA1

              466b10132b43685bd496e081eca50c30d71aeef6

              SHA256

              ce01729d31362e48010a572e24864450c105ac7d9c23c05eda9cd8ee51958916

              SHA512

              49fbb59f95c76b4965a6909a53e7781312e7ec70223ccde104177d82fc1d840c619e7490e6552dcc4cb23c33d024bb86732448bc3ee5bff2204aeffa0b946e00

              Download Submit

            • /data/data/com.weiju.wyhmall/app_crashrecord/1004
              Filesize

              4KB

              MD5

              4cc7246576d3380100eee040b144fa12

              SHA1

              60e666a409ef46fabd6e24d27e4f2379cfb74c7d

              SHA256

              51919f50f21e144fc8831176edbb0a9c13b465f086aee0e6076ddaffbb70d2ff

              SHA512

              52cc2a1f6d7c093bbd7e5283009d5c3f6df6236306096ad2395bfbc9bb0e20a05d5420ee45d4f9f7f5dfd21b495e775d8ecca18e150f0acbb9eb8f16b3e41122

              Download Submit

            • /data/data/com.weiju.wyhmall/app_crashrecord/1004
              Filesize

              58B

              MD5

              0d210bfb2a0e1f1b4c082a6a0f79de07

              SHA1

              bb8ed9e364db79d1d9f2fcde3f15091893222faa

              SHA256

              988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

              SHA512

              536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/bugly_db_
              Filesize

              4KB

              MD5

              f2b4b0190b9f384ca885f0c8c9b14700

              SHA1

              934ff2646757b5b6e7f20f6a0aa76c7f995d9361

              SHA256

              0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

              SHA512

              ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/bugly_db_-journal
              Filesize

              512B

              MD5

              136d87c2c539d0a5685b3c1b48590698

              SHA1

              d80747245dd0643e3ef50d8bb88c37f43f06f807

              SHA256

              660bb095b912e91d15be52592ea3e3bda40c1559f1c5d88d1b5c5fdd4c25996f

              SHA512

              2800dbabde1a5f8dcac4e9f7519c0d1599a9ee467b1bec17fe35f456a1eb12a60e2eed8017cdd6b813bf0f3d71af6c7005398aa610f0f8b6c0eb807366f6d0a2

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/bugly_db_-shm
              Filesize

              28KB

              MD5

              cf845a781c107ec1346e849c9dd1b7e8

              SHA1

              b44ccc7f7d519352422e59ee8b0bdbac881768a7

              SHA256

              18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

              SHA512

              4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/bugly_db_-wal
              Filesize

              76KB

              MD5

              a4994a3e142190b6633ce47d87991877

              SHA1

              eead2434e347ed92ff8d85b43fbb0a6a5053616d

              SHA256

              c94b760dc02d236dce74810ff7221555f487bd37e1c03e3220450704361659f8

              SHA512

              e9efce1b5e3742292a8e2bb1e42a82d814e2ca41ef184fc31dc9b25efe0181190ac7f253326f1e63bca44636739f47fa0475b9fa4015dbbe49b06cde76f4f554

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/bugly_db_-wal
              Filesize

              68KB

              MD5

              ace88ff6e1ac988f437a609c06eebb8e

              SHA1

              8b2925fa9308b912b08d935912bac5216527a541

              SHA256

              f81fe772d3d0ce0af263ec2e25159e8563308d3b139f072d7f515b52da3c5269

              SHA512

              1e76dd98d94ff4fa5ce85e509e6987587cdb3f5c143c756e1bf2e9b9cd5ec697abb816708e6ad1cd71845fbc1070bea13aecdf7bd926b20859f48c1b1853aefa

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/cc/cc.db
              Filesize

              36KB

              MD5

              ce6135aa1b1fe4f2c2db2a546d2a5558

              SHA1

              79b59582154017aadab783dc266fcb158c252940

              SHA256

              7b45f576c08c7f78220168cca4a0e33198b13e9bdc8b1da406ddb6887412000c

              SHA512

              2839075fe374c8567c839ae35ce2d33ec72fdaebf170aa7d224b555e5b0e74d4a43f2f67d17ed806dae841da883e9620d788ea052d06152678afa927307c7ce4

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/cc/cc.db-wal
              Filesize

              48KB

              MD5

              16038394df190b52415bf6c02c28718e

              SHA1

              58f797951937843b21ca3f2d27081aa910826218

              SHA256

              6bc6aed8a5bdb639350658e897d6d06d9a3cd0936b74c6405e77f79b88b8e9f7

              SHA512

              9c7ae6c4ebb22b80ec7070a16d522146292932031d1122ea0628072a2d6fbeb3dd228c281501fe4e776192129e8a41846172fac9be2060552868573d59f54ad0

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/cc/cc.db-wal
              Filesize

              16KB

              MD5

              6c5e7aa4d241b4acc5cf5f60e217cd49

              SHA1

              6c3c3c371d4f79efe884ae4f0f468064ec89d9bf

              SHA256

              f3e894f65153278e77fee66f895833a8ce488295f5bdbced5f8e22730e167b38

              SHA512

              3c5f4e6f73b560ae68a52ffb70fe4404e3789d1a615621384ae1070af9b771fa20ac6df068fce543b6512c664b67f1bf95c3e42af03417f2aec203d71637e7e8

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/ua.db
              Filesize

              32KB

              MD5

              c51f4f909dc3f968e8e9d057223c1e8c

              SHA1

              6d686fa4fdc4d7057a3fba5dfde60e1e53530fbf

              SHA256

              a87e1f953741e7d5bc435c15a52a6ffbc6902792e7d86bfac5e1b67d44ab259a

              SHA512

              dba4e369339f77109c10ca83df99f2d090e185c3915c7a16b6417907a4b9ccaed5f752d1ab49b7e3cdd10166348d22a01f0d73c327aca918c9fd75b9eddc32f2

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/ua.db
              Filesize

              32KB

              MD5

              d604a3bf1f8d992cc320ea5b1f7609bd

              SHA1

              247f88df0b55c7d523ea5398637711a0e4a483a4

              SHA256

              329940b4d46326d58e73c842dd099704061d0ef7338777bf31ad895f29013c17

              SHA512

              67e28f6713cb5c238a9664df128f01a89a2efb7c8c9330c1e45bc0d40ebab81fa20df5166743d84d81dc0386a89ff0329f022281c098339baa2e851ff0a1e1ab

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/ua.db-journal
              Filesize

              512B

              MD5

              a23d0898b6d98557eb3567e2c863cec7

              SHA1

              796d253d60c11b7e98e84a8f56e1615d8bb6ced5

              SHA256

              ede1fe29be78b0b258f73d140d94e441fdd8717e5a5a2db30002c7789bfd96da

              SHA512

              3f59ce611d432d912890527b5aa6cd64d2cf28daf59d225e9378f36405a88473d1cca774eb5fb42370abc2916f69af742bf17249f26548c6f3c27034e96c35a0

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/ua.db-wal
              Filesize

              56KB

              MD5

              833a5740b25bbf8d2543c601963fa458

              SHA1

              fcc7b160141114dbd181d0772362fb428218ff75

              SHA256

              edd63d4568d86a4a934c86968dd6d71a6adcb49f4b877ea97019ea1a90da84dd

              SHA512

              ba952b96881f61c50d80a8e0b6b825047b175524f9598690bbdaad5f4f4ab638460af4455c5f515a4b1172f28136e2525705b7c17a89adbe6b3a19772715edfa

              Download Submit

            • /data/data/com.weiju.wyhmall/databases/ua.db-wal
              Filesize

              8KB

              MD5

              7ddf2624c5a0fef7509439535aee3a0f

              SHA1

              1a86b6f03b9374db370e093697c4b5de38840343

              SHA256

              946c2222107221381f7f9db543aec1eedc76b78786d21451a0b35d40529a9e3e

              SHA512

              de1a80b0e69ecfd1853c8ae136acc9ee754e57cb65bc8a67adfdf8aa7bd7cda0ed2780b8dffaba6640fc361fb48675be7e9911baad43508daddca548ec30e551

              Download Submit

            • /data/data/com.weiju.wyhmall/files/.um/um_cache_1703762000023.env
              Filesize

              1KB

              MD5

              d5a7f02fda803b73dcfe33976efca191

              SHA1

              870f38f657e47bc4c244aafb987fbf521d6abc0d

              SHA256

              2109273302a283ab9cdbd50b52c036190cb23bf65093b0a1583c2337b899b360

              SHA512

              679619f548248cda9427a7f4bdf8d522b84bee773a123177a3268caa90c362d3b38fb69a2663cf8df0c3b522abf8eab736e373dfd519bc6384f98949630068d3

              Download Submit

            • /data/data/com.weiju.wyhmall/files/.umeng/exchangeIdentity.json
              Filesize

              162B

              MD5

              fcd16616491ed1b8517c5796238284ae

              SHA1

              d44b85082296f99c361faae2239a69b99b0af1ed

              SHA256

              e1015eb4afdae118cc5bfec374c478555db8ae8275e34f0870a594ece3c9147d

              SHA512

              52979c526377e8ee1f987a2181e6f6d6829611a40e7bd82989d1ed6b5f8edff8e1896bac471d2e5ac78eb6caf35c4cd01e9960db52eea2c6d6f0c3a72c86aad3

              Download Submit

            • /data/data/com.weiju.wyhmall/files/exid.dat
              Filesize

              53B

              MD5

              72a6ef22285d4628ff0cfeecdb8eca58

              SHA1

              d37d3806a8888b6eed71c5e0a0ae96a9c86dbe6e

              SHA256

              c5e09886aa4634ab97c7b13fc40c212dfa12c79a682a828b8694492acb419efb

              SHA512

              9f4210361a9b45d3879657938d91ac6a07d97e48e8f6e801c535152c1333b877c058697dd78c0a53d63e6f4813b52c156c71e662929fd29b44decb8736fd484c

              Download Submit

            • /data/data/com.weiju.wyhmall/files/jpush_stat_cache_history.json
              Filesize

              174B

              MD5

              dc5325316ab5f901ab6e3170f34802df

              SHA1

              73893a41a5cc94d71e358c0a0899b6253548417e

              SHA256

              183ef68fb53b22183883f418f398c3bcc1760265541b47bea7ff7b2cc1805689

              SHA512

              8daa54e5de847241f252aa67eb484937d14af97e8943252af9de2c872bff12c50d716af2c0d2f79b002580e1309978331fb3919b7daa40f90c8f3d3c1c24b7b8

              Download Submit

            • /data/data/com.weiju.wyhmall/files/umeng_it.cache
              Filesize

              413B

              MD5

              974514c7751ad81f308e16701c8335fc

              SHA1

              1804d5052672e57f656369ccb585e23b7ed4ed95

              SHA256

              d9fb6e6d1dda617c336ebde8ec9accf248350cc21bc20c2717b1a23f580bbc64

              SHA512

              6c588ca82af8b393fe2261f50f4e7009f55444a90bcf4d1d4a4354bf1d5640767b22d653e24d50ecbfb95f5e2ced947785d9f0a7a15b39d976ce4cfad086f181

              Download Submit

            • /storage/emulated/0/data/.push_deviceid
              Filesize

              493B

              MD5

              94f7c942b550c091ea97b28529aae5b7

              SHA1

              18e4052d72ec82a7342a0ed5df2abf783c7158e2

              SHA256

              99c38e2093b5f826122583d0b10844605bcd821e46061255b1dc1fbd8eabe73f

              SHA512

              9394227987401ad3a5f6a63792c6b573a6b8aea0eeef9cf10b67723c879f344accf7adbf44f71b07e7de2ad52817e4ff0c9d53959600eeda4dd6db025eb3ce61

              Download Submit