c028756e4f7b1c1f35b6c874cf04bcfd44109a94f0822890a38249df49c2e37e

Analysis

max time kernel
2972053s
max time network
148s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
24-12-2023 02:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c028756e4f7b1c1f35b6c874cf04bcfd44109a94f0822890a38249df49c2e37e.apk
Size

13.7MB
MD5

ce45eeb3333b302188c44af14bec44ab
SHA1

8a7d0098ac0cb5892af0a02b1c9231187a0a4e86
SHA256

c028756e4f7b1c1f35b6c874cf04bcfd44109a94f0822890a38249df49c2e37e
SHA512

4fa5542b47ae22885ed6e2ef3a666a3c5eaf460556cbe70d61f27e6ed4edd77e43a35dad73d31d54e8ffa456685fb2e42b60bd0b500e0c38abee29d2e1866483
SSDEEP

393216:iWupTO5aUR32PU6w0J5n4DWf9P23iETZ9ymCvUO6ur+btV:iWke32aS5p23i2ZwmC56uCbtV

Score

8^/10

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.jifeng.voice.changer

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.jifeng.voice.changer

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.jifeng.voice.changer

com.jifeng.voice.changer
1⤵
- Requests cell location
- Acquires the wake lock
- Uses Crypto APIs (Might try to encrypt user data)
PID:4511
- getprop ro.miui.ui.version.name
  2⤵
  PID:4573
- getprop ro.build.version.opporom
  2⤵
  PID:4604
- getprop ro.build.version.emui
  2⤵
  PID:4625
- getprop ro.vivo.os.version
  2⤵
  PID:4643
- getprop ro.smartisan.version
  2⤵
  PID:4662

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.jifeng.voice.changer/databases/crash_reports

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.jifeng.voice.changer/databases/crash_reports-journal

Filesize
512B

MD5
b39082420811cafe71a14dfbbe4a8d74

SHA1
9e7c2928568b705bc497ef8acf189ccf72c4b1fe

SHA256
f918f378de8d99f26c9f0b964618810c6bd04a110f22825c6fcec678c1070a74

SHA512
68d190d905f24211cf6b3c8d7e7026fc8d76fec0f7ae1cf39bddf5fc4aa10678c4b8ec2117b41e85950506a7377b40bba655efca8603b1a5bae3b1996c28ceae

Download Submit
/data/data/com.jifeng.voice.changer/databases/crash_reports-wal

Filesize
36KB

MD5
418ce5bfea01242dbb46812677a6bcd8

SHA1
21e800d7e0b0ba44a2422bbeb38e01521f02fee4

SHA256
af38c4c57e5271fbd392d2e4a5ebe1779bbe35ac1e3f91b89ac5f78df05bb3c9

SHA512
a42e97aa37da1ec1e861f3084fe470675197ace94197a0817f4200c53bf86c2d67a04e73fdfee1f61e7302db46f7b4a587dc9d4f76964856767c75e807e04da0

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db

Filesize
16KB

MD5
6b63b92f6d4ec960961ab1deba76d015

SHA1
bf6ffccf76f70b897c1a6cb46d129418190f509d

SHA256
a16377ad9b4b59218937f24a93699b9a7cc2409814ad71504ffb45c59fc699c9

SHA512
43e6e2290c76065c77021b625e5f31d41df9f98b2efec0db7e363c7b34bbbeccff92699465c899a34400ddd1195d67f580e4f0eb92479defdaebe4ea24fd9e21

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db

Filesize
16KB

MD5
caeae51ba62d7851f99cee3fcee5c824

SHA1
846dee5d16500e3b39d7e3037daff63be022e1b7

SHA256
355663c64f2f8f0955ce46323fa215261332c9926b01c0eeb7112221f8adacdd

SHA512
00a0d4aa562334a39f1105dcaf4226c334a1726e89d3b584a00514676923e60ea20b91619aea6ec7166f1e17da0533c124cd2dd0da8d7c1b4d7a4f629118a6b3

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db

Filesize
16KB

MD5
f6aa128bde9088080abc5737803dca38

SHA1
64bd4b3b4917d7d4db9814748eaf985ac5ca5e24

SHA256
af1b630bdd6e4522ed2d1d7dc5aafa95d587b67dfce87dfd62ad7c39114a75c9

SHA512
cb1409c0466f9216e690b98dea26b6a3ae8a09ecdbc70df4a9a67ac8fb37ea8a9361ea5b0f2af1e8a69ef5a3e23226c7dcf09a5e56de8bb11c68839f0492c0b9

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
d74af8be1a4be65d593eacd1531c1f5b

SHA1
cfc92e34d04262adfb54b1a22d4db6cb8f4eb47b

SHA256
76cf061b5051b291a8e4bac8c1e3dd9c6581425003b454b0f031f20cf71a9d0d

SHA512
c4d59c3f9e5530dc59a2f0cd9696079c0df76d21b81a710c10a33561da06f97702d90f7793228896e2ef02774e30eabb035753a2ef5470aa5a2b5d3853bbd7f0

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
348ea74316be5f270d54e732f7fcf977

SHA1
73381af906c37a4288772cf2e5ae0c99c67a7c31

SHA256
9fe8eb5bedf2c073d806e06997a50daf0118e7c867afdc74e9ee83a1bbd15dcd

SHA512
d78df0c1028909494b726ffc7fbc43d0b3de27cc4ee4a076386d23cb2118f9aad99d2e62e64b07fde854be9dd572d0ed546c20bfb897df3f74bbf73af8e0aa7d

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
3f951e5b62fd4aef4a05c3ec8f1dac1a

SHA1
46b2c39eb5eefbfbad382c81b15c0b99fc5a4023

SHA256
17595b94cad08ad248ab37e72253c1109cbd5a42df0b2ff73c4d3a007a150e5e

SHA512
91a9c3eb9973f57c9fe0cb0aecadd2cf598ddabba70ec16b35e9fb256171eaf56f300769b087ad92e37fbdf30c88bd3a1a8c74f18fc4d6894c48a5de4897b94a

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
f76dcd29597c9a720c99eea45a9d54ac

SHA1
1cc514958bb6b1a044e3bd9f49cd0b0d567e5554

SHA256
10ffac79ff1c2662b218db6a3199aaf53248f55dcac31fc53626c5df30249d1a

SHA512
27c17f23c15ecf4c629fa4ab0197338b0a157c7cf198cc89a0f189b96ea6ead74e6a9d0fbe0cc1800e88dd0de221e33217577b201494d2a1e87f7cae08111c16

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
51b122c9db4e42ae6cb2dba2cc9e3549

SHA1
4081746f45e0a5a164a636f5c0c4b9adebd95b21

SHA256
b462272fd9e1bf2b6973c1040fa1408c85dc6152cd9521b1f624646af0813dc3

SHA512
19e93f2064fec621187674e2ad3d315a08041d0c94ba7547ef5076b8e6648431bf6746aa67d3b92e37e0d7b46e893c64ad873fd2678018564593d6e539e0c68a

Download Submit
/data/data/com.jifeng.voice.changer/files/__local_stat_cache.json

Filesize
666B

MD5
82a74de78ef4e5067855d69c93c12ebf

SHA1
d8312de734c5a6312c1cd8d7f9063dac1842d49e

SHA256
064d21fbc6455b8f9cf973178f1a74da7114d2bb463f57d49f558ac8086b57cd

SHA512
5b2a8749e4458b4511616b177a3e843efd3b80b365c42f4ed4da54dc9cac69ea22426cbc99f3c037fc55465b802e74452e36b6adb20c0d4ca3478cd6b97ebc35

Download Submit
/data/data/com.jifeng.voice.changer/files/__send_data_1703779000734

Filesize
854B

MD5
680977b65c3f36371a599f0f766bcd91

SHA1
13cfdaf6f31fc421e9337e000bbea1e47959d640

SHA256
81707c2705072a3bce8e6767dc4f9ca2e7b980aad2f871f2380717b608bcdb68

SHA512
f3f613fb4e09bb4cf17ed8b4b3448af2496e64fbd614d071f8c4d9c1dcf07b2d9ea3fa2d3590735a3e8915eba47508989e30f7e14026d8f802a8b09d78974ec8

Download Submit
/data/data/com.jifeng.voice.changer/files/libcuid.so

Filesize
129B

MD5
a93fb4ac01dc4abfb1c4a49d25746368

SHA1
162ce1214f42c4f36645dc6203b8df5ca0396dfe

SHA256
e818476426d475f0660b0c1ee5a16be583c343edb833408db881ad1bb4773b1f

SHA512
2bfab9f6d9204e453338931a2ccf28614ee526cd3d96406d6fab6f095f8f2b03efb91a309e56f09119792bccebf4d797458cb7562788152bd266e90cc4422c16

Download Submit
/data/data/com.jifeng.voice.changer/files/trace_circle.data

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
20KB

MD5
249e034c9703afc1fd6062371c7f3da8

SHA1
9ca489179488e0fe5a35f7c0d5887f163e4890cd

SHA256
18fc5cf216b05487a87be99a662e7474bd54120f214e034b3179f40ca989352a

SHA512
b819b152548431c7892678ecdf23abe44cbdcf80e8f22707ab32a2aedb5356346b27e3c3e750665ba893d602af1c7dcca97edbac3c820859a0fc20714c22c0bd

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
24KB

MD5
8c7f6e3b52e6e841b895bbd13644ed43

SHA1
ec8daf46a7eb99c75ea1ce8582ef77b2df8455d2

SHA256
6615188d5d8fa77b44fbae7a249d073b3623316e7489c5fec95fe53188ea467c

SHA512
cffafd628e62fa915872796ee02dd8119cfebd6811291155acd400986ee5d34b244ab3b5d0bd386566724205771f665571bcb04950d390c5c60072fdb90c5280

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
24KB

MD5
f4fe5ccc919262d029af38416ae95db1

SHA1
0bd2bc338dc303c74e64295c0d695ad10d85f239

SHA256
5bb759b368a76282811cf660da08c4177b8601ebda49240b895fac648cd3d956

SHA512
76d67932afd96a4b8b1cde73e81d76daf97cb228048077e894d7eaaedf00d9b2df52b28a1b27812a247ee33bd0c63fa44bf33d39a5b53c1f13db9f6918884794

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
32KB

MD5
11ffb4ce6d8cd8dc158a3608980b1c5b

SHA1
fa0ca7615babea4a21cfefc89e172217baf646e5

SHA256
ea7692be7041b542071942f0086db0a28f56ba008e2f5fe53f43c6d00486ecc9

SHA512
4d0cd825b17074e2904c1e4c87066f8ba4df7037349f10e90e4ca3f35a5e01a3cced21d10d716a6efc19638c6c0aea1de8366344de7bcf47107c4364d989c0e7

Download Submit
/storage/emulated/0/backups/system/.confd-journal

Filesize
512B

MD5
383bdacf3d3c6ea70bff539689d2beb4

SHA1
d9398d9561307d70d5677392874c35b8537186d6

SHA256
6c8cc22839ade0ada0caf61bc4d980de24149c2a3f02461e96079f418e9a2d74

SHA512
9cfaf8198a5069e601b32b30de4acd2520412c86f61143cfffcf7d8667d7310996b01638def9f1312926e56a92323bbb792fc18f3c1d13013c9d9f1d244526fd

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
36KB

MD5
f3cbf88f53a0136c7c5aaa0e73d17693

SHA1
26b04d3b4b5a0c7776c3ea3b4f34c3131ccc5c44

SHA256
48682d107395af0927a84b1a9abbfa72b8f8c9ade431b6629e5278c4573143aa

SHA512
568c26f7f4d9cf953ed65474cb9e159785e1779a7cf2cfe047522e2ba80f26baac6caa788d7c8c0587bcd3449a5b5f659ada4e606e5b71ad560ed1017d134f07

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
12KB

MD5
f5944aa698a97edac2abfccb78787d45

SHA1
f998aa30fbe026a53e40726a4eac862a2efba3ee

SHA256
9a184ead9e58ab06570b5a55dab645054e560e5e419eac39c3a656b5ec8aefc4

SHA512
6c77e8f82b7ee8f031c7f07d8455f3edddfd1f57708e44742a0dc6bcc0350f6e3aebf9e76a505822450773ba6d686ad4b74f82cbe10222e4ca426662fffd0345

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
af8b3c50f74640b474a561060ab46165

SHA1
0cffe7312896b894f3ea8557c21e2eb4aa5fb8ff

SHA256
96c20df03c7d48c75c7533bd7cd9de86f694b9bf6566453ab02df9df99d1ee20

SHA512
0ccab72c9aa60173ec56a6aacae0007ed01a3eb491d7f3c8a32dd5b4afd5f0497e13a9ed943590d945bc46c2bb831cfaef8dc789d6abf926e3034ca66bc1d61a

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
12KB

MD5
865e99ffb2077c3f8e19ed552da0a1f6

SHA1
cd9042553c236464c3734e9dca6946d0308fcbc3

SHA256
35a85c5d36d8314d6f0c6ed2fab677dd7ea4c9481b4edb5d50cdfbf314a16ef1

SHA512
f549b0cacb79edaeaf376d9ccaedb0db489bba685a2b1263adf2e7fcf6b426bb578430ae20cdffb3af582342eff183ba715388b2949f5bff61b7abc9076e1672

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
75eddad02c33b577fb41416cfbbde17f

SHA1
3c6ee97c7460f40986e7ac12647ee8ce99aa64d6

SHA256
6a5d142c1706716d07b2532bd59bcce500e6177b7567c33548c17cf16e6b3360

SHA512
1a5ef3240e562ac75598c4f903ea495155b40539dd354e3fdcb38e294af2e523889aedae7af50a696cebf99b2e96b2d850aed5b95033adab7b0dfd7bc217a8fd

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
12KB

MD5
491ead9302d78c3ba6192bcd9be23b36

SHA1
e537a61d7ab7e9152f63c680c1014919cd73444b

SHA256
c519e91affae170c684b3cbe7418af32b08ddce1ce5117915b0f6943c1107d68

SHA512
0dd415d9fcf2362f01773111a03090cee9890d94c551979576572fdbf917d4d8048e9e46a4436d0e5707d6f2cd65645bf838ad6252c86566fa8ced4d23d4267c

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
2cf1dc28fb47b40d7b3a7338cdde8891

SHA1
d42acec478b8f4dbbc8d3878323f167aabce5169

SHA256
c24da02b79b5526507d8885e67e858ba3ea3a48752b01332fe72e7323cb31320

SHA512
8192836e55f49ec0f4089518e1214f510bcf82b9203d23595750fd5cd81aa9a2f598c1c1f081f4d4fda0c86d56c7c452144a5d43eabfdda122ff7c8f08e5be94

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
25B

MD5
e14467b5f28867f71616a89d92a2b719

SHA1
6445a7d5d64d73a197e58f7a07979cb84726ac5f

SHA256
ae45ac23471e720705dcb433d73892e26b065ce8bb08040eee1d54246d1b085c

SHA512
fdad1f5da7ecbc33139775a64de6fdaa392a8eba14066a6088a70b256e1c7cb6bf053c332dc9305830853f87232deff0c5c5060d14e1cd25a787ee32e7029e41

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
55B

MD5
88f5356dd9a7b6df1ee6950907c03092

SHA1
a06be9729add91bc821538e96e36ac3c6ab90b5f

SHA256
5bd5cada0509bdd485b45991c40160b838e6dfc48e844c38828b5e0f94531e00

SHA512
7722d9280e26aef35a0d2f8748e5566fd112558eac8ca8eb48a72515ffb59efa969e130b6c37810e068a215f38735e28461cf0aba5f68311bd048d5a4f893244

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
114B

MD5
d33cea2b43a8d4245b921382851790e0

SHA1
fdb1a64564e24d0c93c3ad1f6706675db81bf2e3

SHA256
7ceb4a2c3fbe3f5846dd7e11287e08e713896b107313c4440126ffc1497c28af

SHA512
f8984cbdd0a907fe8b5dbb5dbdb99f1848963125efd5f6509b3e9e7ab08c43a0eaa18281584fdd58964951308d708ca6f4088d0ca662f9bdfb666ad9fc22934f

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
138B

MD5
f8b2ec925e7eb0dcef5e6860de2e79d4

SHA1
6520379d164394fa7be85fee68d0a3eb9e5cd09a

SHA256
f1c38d4c1272132ab01c241592cf2ab5780b7daa52062d241eb5b027ee901443

SHA512
ca6168bf376e933555bf738fb00647d5c8ac6c085c94e88a2cfb6f54db487cab183e4c4f2a498e18e57be0eefc818c5349dbb766856e6a259ad99d09dd0190c5

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads