Overview

overview

7

Static

static

6

ca5e72e18f...14.apk

android-9-x86

7

ca5e72e18f...14.apk

android-10-x64

7

gdtadv2.apk

android-9-x86

Analysis

  • max time kernel
    2980869s
  • max time network
    134s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    24/12/2023, 03:47

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ca5e72e18f77b97dfd67f5224d371b32b6668f4da89e345675da5f82e68d2214.apk

  • Size

    13.9MB

  • MD5

    d9b6791b42abe0a1d98388874996befc

  • SHA1

    34f862a415c87b2baf32aef7d5a2d34a08987f8a

  • SHA256

    ca5e72e18f77b97dfd67f5224d371b32b6668f4da89e345675da5f82e68d2214

  • SHA512

    ed9298c40176ce70c9c062ec51cf6b5cb9eb661f1ba17bbd0fe4598487e8ea089cecf7bea71c7fdf889bc1b6909232dd048d080efec0f5bb63d26a7e249919c6

  • SSDEEP

    393216:O15OG2ENl4aSppIQ4y9QpUHJwIanMDzolysshm:gEijS+Q4yrHJwIEizoINm

Score
7/10

Malware Config

Signatures

  • Checks Android system properties for emulator presence. 1 IoCs
  • Loads dropped Dex/Jar 3 IoCs

    Runs executable file dropped to the device during analysis.

Processes

  • com.lushi.zhuanbao
    1⤵
    • Checks Android system properties for emulator presence.
    • Loads dropped Dex/Jar
    PID:4257

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.lushi.zhuanbao/.00000000000/37CF018B.dex
          Filesize

          48KB

          MD5

          75d46252620a12dd7343e91c8ba209bb

          SHA1

          6615b67e21963e5689685f8494f442dcd729d4d1

          SHA256

          c433c8e3f847da2b98ee8b704ea3b7d0f38d6249626dfe26a22bef0c08e5fa71

          SHA512

          9ae5f0ae0a77bc8c9a27a43252ba01d4bbb69a326eb028d2e887d701b202b66a7065765f2f0214d2b0701493634ff33c2104becdb80bf7e8c2657175857b7af8

          Download Submit

        • /data/data/com.lushi.zhuanbao/.00000000000/37CF018B.dex
          Filesize

          48KB

          MD5

          4e93a7a07efedcc6e3c741526d2d89a7

          SHA1

          e25833d7a51783c17978a7c5e7953d7cf1df80f5

          SHA256

          26fd97dcb56a0ae4ffee7b9514cb697de101ad39e3b2af2933b1eadf409b740e

          SHA512

          94a5e0b50c0efc69b79fe9b46513537b798a45d00234a7fe1c529e7d5eb153704ec9966a0e0819983f726260579707d7b82e7b31f845fa7602e06c078b98319f

          Download Submit

        • /data/data/com.lushi.zhuanbao/databases/npth_log.db
          Filesize

          4KB

          MD5

          f2b4b0190b9f384ca885f0c8c9b14700

          SHA1

          934ff2646757b5b6e7f20f6a0aa76c7f995d9361

          SHA256

          0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

          SHA512

          ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

          Download Submit

        • /data/data/com.lushi.zhuanbao/databases/npth_log.db-journal
          Filesize

          512B

          MD5

          3aa390319665734c46d13ee70e2cb7b1

          SHA1

          4e7a5c4b4364baf7ab0efad3ef60dc0810e00e65

          SHA256

          df9b9b638166de28e83d23f3eef992339cbdd6fd4f0b2f33dcdb0af0121f3876

          SHA512

          2125beccbbb217a796d459b035b8a5629770d6e4380c47a48e1c08bc3f50a07ab7f9ad2ce659ec9ac34775e7acc16e3faac8d302b7820dddd84fe609e5fcc44d

          Download Submit

        • /data/data/com.lushi.zhuanbao/databases/npth_log.db-wal
          Filesize

          32KB

          MD5

          47c4a5b5df5340d5d931c7fd89981919

          SHA1

          afffcf4f1dae5f7fa938aa455001806b24fdd6d4

          SHA256

          592439f4d743135991a582a457a9584f95add65b4ad8abbd1cf58972764a2cb8

          SHA512

          6e17a3e13931c041f12ad87e2afa84bc1283ee116ff8e84722bc0910a6adbdfa029457d7b8a6913ba052cff2501db74af40d92d01e129a5b3a840d84dde5a299

          Download Submit

        • /data/user/0/com.lushi.zhuanbao/.cache/classes.dex
          Filesize

          9.1MB

          MD5

          fb486f505367d208d369c5966a5b2890

          SHA1

          b83c2a6ceb7c34733f5d6b4f126eb649d949446d

          SHA256

          8269e03881be58f07ec8e6a6ef34959fa21e118300d7d9c98303396108ceb06d

          SHA512

          bfc5a05fa93b3b547f31a91e9bf938cddbd15374f7017ea32303b4a895164f01ca966036883c3b990e4f7d348c1cdadf767610ed65d2751a66ae3d00e6d9f15d

          Download Submit

        • /data/user/0/com.lushi.zhuanbao/.cache/classes.dex
          Filesize

          3.6MB

          MD5

          0586dc02a4d8a63d350ee7797c2d4b12

          SHA1

          3c368f9bdcd6a99729a9d4a0d1ee1a567c394111

          SHA256

          0157d405f9e631d85fc4bd6ad918d0e30ea586ea14c6765437b87397a237fc28

          SHA512

          1ef774629b48aa2effa1835eca24b5fe43dc150abe474f12ea2a4822de309c31048391dc64549abcf42e09fe5b6df56d74041c93de64c423081376478f8e17f1

          Download Submit

        • /storage/emulated/0/Android/data/com.snssdk.api/cache/clientudid.dat
          Filesize

          36B

          MD5

          3412e636efe3b049c15b508aa983381f

          SHA1

          a54ace0ad173bb25680d972ae3c709f2a140a7fd

          SHA256

          42917dce16c9324a0d99be406c3ffa6d6086e35b9ea1d269e7e279a8407bb2d8

          SHA512

          56d98833b6871f423b0f3ba7c375a24cc221f390a13befeb78e09af2dc91168b8554a56d0d80a94d5e0840ef981092d505e5221b9df6d965bdce000fc144afd9

          Download Submit

        • /storage/emulated/0/com.lushi.zhuanbao/config/5ac714da7be6d534dd74c84a097f98e0
          Filesize

          344B

          MD5

          4ac291fd990a7997c603129c524cdb10

          SHA1

          8445b41c0033079bb9227cadc3744d3b7f9a4d19

          SHA256

          bad46e50382b73c66bc73a63a90c66f198d7a387ebb890279eb8ed1960e5dbf5

          SHA512

          f41a4b242355e4108cd04f2d66b5b3f7ed94383c4a18b1a47e0ad4b7c3edaf4649721130ba3cbdb8252e5854d5914fcf297d56d1defe9bf71ea912695005f695

          Download Submit