d024689b8929d6067cacb3a0a087aa6d71aa4c9eca55cbb7ade55f8049a5241a

Analysis

max time kernel
2993263s
max time network
142s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
24/12/2023, 04:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

d024689b8929d6067cacb3a0a087aa6d71aa4c9eca55cbb7ade55f8049a5241a.apk
Size

13.2MB
MD5

5623ddd0dea301d8aa024793610828a8
SHA1

415adfd7d6557a22d40821387994c3a7d6403c7e
SHA256

d024689b8929d6067cacb3a0a087aa6d71aa4c9eca55cbb7ade55f8049a5241a
SHA512

e7669e09cfdbf29e7650844654c01fb6806ab82fe033b607a6970203a1ff2e6cf6c228baa99ba9dc81e678acecefae7424a6539e69e0f58a674538466ab08e74
SSDEEP

393216:x7QlBrIns4SErx1o/G6zV0BypUy1zAnlIHMek3C:x7QlhEs/G6zV+yppzMlIHjk3C

Score

8^/10

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.jifeng.voice.changer

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.jifeng.voice.changer

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.jifeng.voice.changer

com.jifeng.voice.changer
1⤵
- Requests cell location
- Acquires the wake lock
- Uses Crypto APIs (Might try to encrypt user data)
PID:4263
- getprop ro.miui.ui.version.name
  2⤵
  PID:4329
- getprop ro.build.version.opporom
  2⤵
  PID:4358
- getprop ro.build.version.emui
  2⤵
  PID:4377
- getprop ro.vivo.os.version
  2⤵
  PID:4395
- getprop ro.smartisan.version
  2⤵
  PID:4413

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.jifeng.voice.changer/databases/crash_reports

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.jifeng.voice.changer/databases/crash_reports-journal

Filesize
512B

MD5
a534433f372f3f8b8b7d432b3914794d

SHA1
13607452997c5212a01396e348c0144e271fa8c5

SHA256
b344d3d2763ac981afc9681761baa3be180c57843cb072c58f4ec5097013886a

SHA512
a824a132770e7e75090906682a5c4e8ecbd2a73fa052783245a678150c11519c6222c02246ba45986435c08927c2f33641ebe9c847976b8b6747d0a0d9a1f439

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db

Filesize
16KB

MD5
6b63b92f6d4ec960961ab1deba76d015

SHA1
bf6ffccf76f70b897c1a6cb46d129418190f509d

SHA256
a16377ad9b4b59218937f24a93699b9a7cc2409814ad71504ffb45c59fc699c9

SHA512
43e6e2290c76065c77021b625e5f31d41df9f98b2efec0db7e363c7b34bbbeccff92699465c899a34400ddd1195d67f580e4f0eb92479defdaebe4ea24fd9e21

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db

Filesize
16KB

MD5
5844be2017305ef2d6269ed4c4e21c92

SHA1
f238446ce26cefbeafed2190cabdde2a0cd2e6a3

SHA256
e62e32a2a004923bb8f0a1547910d30fed309a5450787bcf98e5cee84f3ec9d9

SHA512
4d3dc1d0fe4eb751a74d92f21b968ef9a4f4d8253f22cb1380602e15101b561330017e74ba1671a4c4c10b8c6498f3418bca220f3c91e1f5abeac2fbde13d020

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db

Filesize
16KB

MD5
c5a8d5757e919604d597c32d3fafaea0

SHA1
ff49a6d15492ed264de37f5baa7e2a77afb838a6

SHA256
3c12f1673410dfcbd53e2d254a22831e663cd3d29641804c7cd55318a285a7ed

SHA512
e301201cfabc8946ad3195140eec87cd7acc7ee8ab24af308a81c021f1cb6f4ac81b6cbdc4a5b7d1c7fe0d3a919b451f4ee453b309a2d460ae27a329d1b458fd

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
56a561d1e38a5286f10e47a9c4203e21

SHA1
9ddd60a42475a134bcaf613955482acd38fda28a

SHA256
630f041ecb97f0a893460826f5b832caba163d898e885a9f165e14296dfb5015

SHA512
580fee69cc6fa3d3298ffbc67136a99cd31a7fecd96a2b32c77896958dbbf0fec337d2685afd34218652806194c7ccfa1516797350c774b0ee913464af8f60bc

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-wal

Filesize
36KB

MD5
71b102b3ccabe19bb6dce564999b1841

SHA1
ec7ed52ea276e1c0b2a20469fac4dfda8eb51f04

SHA256
e40f6885d18410bd2e95879ce76777ac5a021b2136c632e6a72ebc29316b6bab

SHA512
01bc5d5555a700a518dba77523b1e324aafb0ab737c0a5fd49e223c44ccf1283b3184bd54a6729bc64ebbf0baf42106e26bf447889bd1650be46d52603e76967

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
a63b467be93e0c29a7becb1166176dff

SHA1
15b6fe03995d94284b1c42ab0afd2191fdeedb26

SHA256
2d9e9ab8eda4255298e3c5b86a46992900bac3fb92820a89ea9d19936d535576

SHA512
a4ea48662218d57f1f3657950c586aafd63efff44a928f238b5916c08c651a3ef2193af93812761994b1077bd00365512c4d0ebf35250059dcc8d9fce9a1dc69

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
46a5e3f751fd68eddc33fa87a96f5b4d

SHA1
6334f75eddc8f5bd19ad8aececd303e3799557aa

SHA256
c54e085a05ed45828dbf1fcbd4ea2d6627b49c37181669d29b2c47e6252a3a84

SHA512
d0b8d9922d28ba5bc4f0815f91cdaebf636e37ce934c909091d375380bc2f1ce6e72bba88227f6b583d83bdc4f7f3710778d34a37d516799f148e9b1bb3a6339

Download Submit
/data/data/com.jifeng.voice.changer/databases/google_app_measurement_local.db-wal

Filesize
4KB

MD5
63cdcd7ff6a4a38ec5488bb788f27ede

SHA1
a6de1a8ee454f7ac3f00c8d228159ce314433024

SHA256
383ff4e8ef116263df01438900e00e879bc2e414554057efb7415b6e7fdc2916

SHA512
c8c443a8eef577d5bf9f8ee5fea97cde33c23006e14ac5980b4add4e04eb22ae95034724c1150649c5d1adf94aba3bd8539ddfff6693743880b4c44470528a92

Download Submit
/data/data/com.jifeng.voice.changer/files/libcuid.so

Filesize
129B

MD5
1af43c52a8e13f7e145f0e683f393a19

SHA1
28fe3b7d68b75ed544b9cc07689305bca82f3e25

SHA256
7a0f852c3395827f8b781b1a83edc42101894947da091aaafc6502f3164b9f2b

SHA512
6988f9e8789b8a27afea1c96a50f0cbd245a178375348c95d85b1975ae5fb84451b4a4dd0551d5c5d07d4bd94f4425c45aa9e27f066818c72bec4a52c6407e7c

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
24KB

MD5
e149dc51c9f50f7e173b46847a197e54

SHA1
6abba05d5ea578779943f1d54a83d8e85152e39f

SHA256
57ae1959469f03d0278e58786bba317066e5a6997da8d6ef5a35315234c9eff2

SHA512
859f2f742c6b2d0a39fe1023d765d0ea6d6b40d2afb84e04c9c9da371c2654cdaff02a552430c3d70867f15bf22f4a36d6da99879da90ed9feeec7b38165969a

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
24KB

MD5
93248b1181bd46cdccb4113e2d958fc2

SHA1
176c07dfd352b7969a39459ba12dec457c7e4d18

SHA256
eb2ac50c69aa1b90c11b3d595555acbd36ee7b455e44c99e198d00d44353189a

SHA512
911719caaa94d3749e62dd59a9be7ba17fb7e19b9fead9980bd1dd02f094465899deff746b3cc038351b35ac5ae5112a704af288edf7378c8155e62074c0fc58

Download Submit
/storage/emulated/0/backups/system/.confd

Filesize
32KB

MD5
0ea1caf0bd551e22e7af49cc59469bae

SHA1
5037c6e62a0391e17fff8d361abc736a4fcfa5a0

SHA256
407bf0ecae6bdf93b7a8c8f3fddb3f547af6336d33765cc5e748d3135f6200ce

SHA512
1c3e46cb9fc074b4d44029a7cc8066ca570e3a07e6835e2773ffc63129a0dd7235db6e2803fde5c25f89a03a3d749f9fc391e16cc64f34f7165a4fa6ead4a17b

Download Submit
/storage/emulated/0/backups/system/.confd-journal

Filesize
512B

MD5
b5f9d370b7bb616f377273156c660e57

SHA1
0e3046c14154cb7bdb3dfeafeb353d6f5a2e78fa

SHA256
9a1547e7f557b1a0a2f066fc519b12d96caf70ba5d8a6ed4df20d5935e4c2fd1

SHA512
77bba5afed611d5d96adc4e4563a2689956bdfdd4a864a4ae452fb7ba76a37d93669a6c5c97b414f2b7d1a4117b59c87a6f3d77840f6481b441163995f1d2f33

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
5435b5deeaac7e9aa97dfea3978013f2

SHA1
ab1741546aef6cd828ef3b910dc41cf1ad0a9f29

SHA256
a77e55b034a895b26f855937124ec0ab201ee3d13675235bc97cacad6971815f

SHA512
97ffecd123339f353dd77a908a1527bf672757e8a37cc7a08b2d939ad6d20e440f36bb7f2fdfa9d22bdf041bec9ddad73dfc4c59b5dd7f8d25541ba65c8ed52f

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
dcaea08fe12defdcc9415c7895d9f999

SHA1
b7c4fbb7107fd24b716daf174baef7b649e6903a

SHA256
e8eed73f17b242f2830b1285cdb190b09d538e9e6a7010c06485fec4135f7d16

SHA512
bf456f04e342834b6b6a5e94733e371af57039c3286dd893e7e388e07ed9d84bd71de9718effd39855f69607e1e939bf217b11fd7569bd2cce9602d59fb037b4

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
12KB

MD5
657f80973171bbc6d67a544b80dfa2ad

SHA1
4fa1b761a648e363d979ac18e1b41592362693e0

SHA256
e192ce7d3f774d53257e5a809b1a5895385b9c2bd5ca94601b50fc139babd767

SHA512
3ad89c011448e12e692ee7d3dc244dab927dc753e83b2d2f3f7a975eb22d73db916f32b053898641147187604df291f62cf19e792a0884ca798e4040a2ba3d54

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
11bc45b7725bc34023d8478b82f83150

SHA1
f1db02930555c4ed2ea198ebe8e18aa06cd1b867

SHA256
14f5f78a39af9cbe6da47e9a633ab5c28f52a0712e4a2f34fc728b1dead52055

SHA512
6116b606b9de61a4062f4cb37167e767ddafeb4d4404b2c81ef05687d2234fbde4f16fe18b57e3d268cd4aa2ef30a1be9b624d70351fc5905b92863700d50bbc

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
12KB

MD5
fced94258c390d832f7060ae17b0fbc7

SHA1
c34b8d0ebf9c219479eef6cedd25f575b4bf8277

SHA256
709b99dd0b5d483aa23e717a4650eb3362dbc15416a038cb04406e005f252d3b

SHA512
8e70bb8db4769f62ecd36f7c3d5f86763995aa2ecdf88b5d354cc7c9fbe8d8d21755bcfa690fba98ca2b2aa428d6ec26b0692c804175763989195ffddddeeed1

Download Submit
/storage/emulated/0/backups/system/.confd-wal

Filesize
8KB

MD5
7df0efd12614f145292ab60ddf9592b4

SHA1
c8dd16df70a94b43bcd33e59091d5d51e93f64f3

SHA256
7614428ab940ebd24fae48c62975239a462319ba356481bb7a7882de04497880

SHA512
8eb7594e95b1c326b83f820b92cd2875a4b59cb0336657e9de5983920cf91f17350f3e785a0dc843ef68cf45826540c207338032845914b009a8329e09649a83

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
55B

MD5
8bf3d4c010ce713593636062cace1b89

SHA1
f5a334e90f9124929e56d112c08cdfaf70615eef

SHA256
480a21ea4a94ef358ca573e2561c2ff1ab5e035a5bd58153a7c3d390961173ec

SHA512
2788798759cf058e67129875b8b8588323d376d4b80a32e534468bdc88742ff5cba38847fe69379d106eaec96f2b3b2c04ad9e199b0c8f987a3be41f97b4e382

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
84B

MD5
4c8f4d79184a3f72772832aee2c914c7

SHA1
db4c7242d805f0f6153351c98274553aa9a27cd1

SHA256
5189a929409af503e7009c18fb78268679e62582e950e47ff57211d11269a506

SHA512
9508488b74f0ae2bbde1ca368df41effbbdc06d05a377cb7a6b2272fe823d89fd990ba06f67d432fe1bafb58ca73a5a938aa971b816f13890744db5251385655

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
114B

MD5
b49f143b18568b0709a4ac24d878a04d

SHA1
af0bf883618374a096d535e62f99452fdcc0b600

SHA256
ee75c41fbdf461646c18784431749aa2770c9294399282c7e0bd66e2c3d93c2f

SHA512
e87e7cf1f81abfb87bf85d006af4d0c4ed514fef40809bed55614e280a5fb7e98625d7e27d21726b95dce7716ebae7c69274dc10cfdb29b7bff3127fee718611

Download Submit
/storage/emulated/0/backups/system/.timestamp

Filesize
138B

MD5
ee5e6e661d2d2d21916602e3c6f7ef4d

SHA1
5af5493aa967936bcd94275e1f7fc540e9f0a77c

SHA256
f67dce2be4cdfb2f335352faceae3f781790bb901f139d48798a99973ec7f4f5

SHA512
fd4a9ddcdcd9d13642b3f1704bfae12ddd3bb2eee1000840910b2b6d52143d808d5f141d657048f807948730570b455d7e75b608e68320c398f51058d1b5c8c5

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads