Overview

overview

6

Static

static

6

ddb6f049f4...1f.apk

android-9-x86

6

ddb6f049f4...1f.apk

android-10-x64

6

Analysis

  • max time kernel
    2780362s
  • max time network
    163s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    24/12/2023, 05:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ddb6f049f489e7e82be7c04bef02aafe759f6116ff379b7aa59092393caab41f.apk

  • Size

    22.6MB

  • MD5

    8c0ae51206bec1b52cacd518b56975de

  • SHA1

    ec862c7aefa4490268f73cc353d5eed368fb769e

  • SHA256

    ddb6f049f489e7e82be7c04bef02aafe759f6116ff379b7aa59092393caab41f

  • SHA512

    85073b5e2f886803c2b4af5bf869695495341af957bd3913688a72204a77191f58d8bd0d674c2d7c3789c4808710d08672ae0ba21caac3ef1a787063aae734b5

  • SSDEEP

    393216:8E9IaUVtIBbb9Qw023bdcOEj6txQZHIU0eUFvuen7HccMO5hNT0IsQIJWJzJpJg:HmVubb9Y2LduUxQZHYeivn7LrZIcBPC

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.fwb.kh
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4970

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.fwb.kh/databases/RKStorage
    Filesize

    12KB

    MD5

    163b0e3f017becbc89b9d7f330b78f09

    SHA1

    1ef9cd8ac8655190468d0ccece0a4738634ab0f9

    SHA256

    cf01452c3b494692386f6c5faac340eb3eb894bd416391002d56645aa8a9ea36

    SHA512

    6a85a30d16fa58a4fbbb05d469778ee69ca79deaa74316ccb5be3ee07fdf78dde22e95db3edb1b88b18478e8747047445f85baaf9556b9a1e55d9a02a80baffd

    Download Submit

  • /data/data/com.fwb.kh/databases/RKStorage-journal
    Filesize

    512B

    MD5

    4af9f8a55e4395f6934d49e0d4c35d2b

    SHA1

    5685db40008d8b7c63ac0863b6c75044f592efd0

    SHA256

    8fcfa780acf01fed50902f10bd7cbe21632ee52bd4cd11416eb7369a3b17c285

    SHA512

    55b0b75e63b4a4eb6d7cb7d509306c0522e153652cdae7cca8c713b3ff5a4ca8101ff09ed61dd581d209b9119c7465ec9485492b7e823e39ba833f1c8551f380

    Download Submit

  • /data/data/com.fwb.kh/databases/RKStorage-journal
    Filesize

    8KB

    MD5

    973a105815b5cf4dfe6482a73c0a1992

    SHA1

    094fd3024d36954a2fa4e2f532a264b04334e60d

    SHA256

    beeae057c531bb24641e25968ddaf1ac7343a7737a68ee398640c7f65c6015d5

    SHA512

    6d17f7fa593873a0509b55f9992794114e2e99825bc4e87b1ac6165e46f5895fcc15631120cb510c06e2a34c4ca31205318dbfec219cd4326828d8345873f50f

    Download Submit

  • /data/data/com.fwb.kh/databases/RKStorage-journal
    Filesize

    8KB

    MD5

    3475a7285a11f72963f813b236689518

    SHA1

    2c215f607d89b5a3c3127f32e31a545f6c530760

    SHA256

    17f569dcdb6f438cc526771bd2f3372e25b9e9eeb5041b61f50f86c5d12920a3

    SHA512

    2306677efc48b368dfd5e6813efe1bc273dda443b310349b3cdf083f9267325a7fcc3a9a8d744a5aea0d1e83a1b9f925c1b2b53ed48c51cf6b4f33549217b985

    Download Submit

  • /data/data/com.fwb.kh/databases/RKStorage-journal
    Filesize

    12KB

    MD5

    ed0e8dcb1cc2ec7d38ca7f7e503aec1d

    SHA1

    3b883c06da593f121f5353f11d6b82bc4ad7eaf6

    SHA256

    ef9f29f9ffa583dbb0be704489f4349c81b97bdc85f6969296b4a659f838ff0a

    SHA512

    58efd894cd590f2db15aea06d7951f1367dccc045342a9405a2bdc7b367b9bb00f939a4b2868af530faefb66f546629d0e0e08a2275a3045ac334cf14537a3eb

    Download Submit

  • /data/data/com.fwb.kh/databases/tencent_analysis.db
    Filesize

    12KB

    MD5

    ea628e04765adaf4238a5dcdff4bbd51

    SHA1

    a801947619ea8c368efe9c006a324dc6339ac60b

    SHA256

    885e337c2156e4dbf2176a9677ade50418740532d222ccae5ad4aa371b54c6a4

    SHA512

    c0287b0e7b690a7231a37d1745c49f3d861b22aa65dd769ba6a8b5ab9da55443f749957781ee05a405019c39e1be45d37a971b821bffd62a1d5620bc39119abe

    Download Submit

  • /data/data/com.fwb.kh/databases/tencent_analysis.db-journal
    Filesize

    512B

    MD5

    12874ff2a6141630ababb49ada22d624

    SHA1

    87b8110d44ffeee4c4fba980ac2cb5bc10342d21

    SHA256

    cde3379c312d611321db953d3dfcf6d2a2780570d1f7ae51fc01dae61d854e71

    SHA512

    3ce947633212a62be8df256312d4cd5b9e84f5e9b44cc4468969836ddff126759acdeebbde60cc6a965afb3c960565daf4663537f69f8623f0c7881ada4dfb63

    Download Submit

  • /data/data/com.fwb.kh/databases/tencent_analysis.db-journal
    Filesize

    8KB

    MD5

    665d9c5cc4d2b26db3a2d11a9e50b88c

    SHA1

    f6d3cc0071b0986a3ef7246eeb6aa74206ace86d

    SHA256

    6f837d0824861b1a616876a865960ee1c598cbc29715a843efcd6b7ba22c8dc4

    SHA512

    a86a4093fc501b8745db2aa5dbb242c16b8e1b62079949d0da93b39ae9f13a84645905df1495309a25ab81f836ce4221705d47f5ccd9a000ab8a063ac7c7acc7

    Download Submit

  • /data/data/com.fwb.kh/databases/tencent_analysis.db-journal
    Filesize

    8KB

    MD5

    564cf16b17c0fa83165e052c20eeab97

    SHA1

    e67b9abaa4385923cc29ef995c906e741af22650

    SHA256

    13474a5b8110a9f1c72f38cc2382dfc54ec6db812a774da23d6a185ecb65cba2

    SHA512

    4a3c9bf4419a5d33831ec29934ca64026a5d4def28b2916d10a0d51fd6849227c4498273c1ea9a03787fcf102236bbd434339e3cf25e936d247c49f0db16eada

    Download Submit

  • /data/data/com.fwb.kh/databases/tencent_analysis.db-journal
    Filesize

    12KB

    MD5

    dfdc936cb92d5e0b52ba88998b5729ad

    SHA1

    d07b4cad8bcc04047b9e9c22c6b8d4e8ea52a543

    SHA256

    7cb0d9584361afa6c42228b829ffd30b2b54542f3d75d995b747c147bf48e118

    SHA512

    f36e162ed50a5df8da1c1744bf3c11345818e7bbfc418ff3f342018e68491142eef918ebece705c7d5fa7e50b1f27d0d997a6530761fbb441f4ae57712f7d6eb

    Download Submit

  • /data/data/com.fwb.kh/databases/tencent_analysis.db-journal
    Filesize

    12KB

    MD5

    e88041785dfea92b68a6b471b964b955

    SHA1

    d79d4b8d38b26a4b54d8c15db0fbb0a707d5a8fe

    SHA256

    6279f4afe80216a22ba8f4b3ee641adcb5df5bd8ae876ec15ad2b64dfbebfc98

    SHA512

    62e6b17f77f4f5f9011ecbc12ddeaf17ed6678c035e4bb75f4b2614a14556b184f539b30991694e3940a0f7a15c7291ef9740b642d05b3fc81906ac0fee51b74

    Download Submit

  • /data/data/com.fwb.kh/databases/tencent_analysis.db-journal
    Filesize

    8KB

    MD5

    67583299778789df22eaad433a512d0d

    SHA1

    72123c3d38f45456065837711aadd3bb75015818

    SHA256

    cf5c7556cf0069e5b1ff30f33c747d2549bd6ab55c944c3b64f076f780523b10

    SHA512

    5f975420e8255ad6cfb25a12a50193acb2175f577cfaa4446a072c4e3381f8515dfaea047deb20499917bf0ec6cd646b5d04c029a10156e87e682c98fd0055d3

    Download Submit

  • /data/data/com.fwb.kh/files/com.tencent.open.config.json.1104838485
    Filesize

    1KB

    MD5

    f526172de1566b34fdcea744710d9559

    SHA1

    000cb54d9a008a807a1c5a3fd2b2e7cb41e7939d

    SHA256

    8572be02b59f4d514000939ec04a9b4e2380c55265256b724a617d8d0f4c6940

    SHA512

    dc81f0fe345b18c96b1638c67b9ef4c5e60059dfc4a02f3c30a23645d4847abeef46cf467d044c42597115c48052ce0e8ea24328382114a544c5dfd039a95e7d

    Download Submit

  • /data/data/com.fwb.kh/files/libcuid.so
    Filesize

    109B

    MD5

    5086ee0e195aa638114fdb9448df0946

    SHA1

    0cc2bf1530ce39d907fa198777384d3c575fa25b

    SHA256

    6191b40345c66b2a385880fe94b619bbeca07577bc183cebbf51722b98a19e03

    SHA512

    a23bbbf2b56b7e60b83c55497a02c9ef407cd8c96d74d6f955c3b71bee60c551ba757db5ac34d4f0610ce2c4dd9190c7f5febfa4d192e2b2d79c186c5291be7a

    Download Submit

  • /data/data/com.fwb.kh/lib-main/dso_deps
    Filesize

    128B

    MD5

    ab896f1767139fb9153ee87c893b94ec

    SHA1

    069b0cc36d3ee69967026ec0733ef7dfd4517b05

    SHA256

    d0a7be64ca5f5a2c837e6914bed364a2b868b387238bbbbf3573bd2b77bdd5b4

    SHA512

    8a3f4ba18960f22173b992d40f37290a24e5c8da420dae62bdd5cc80d41ff44faca38bce46fd7f22b9e30b4b4d3ba42ef2e2dc18dcb4843768568be7c515fc16

    Download Submit

  • /data/data/com.fwb.kh/lib-main/dso_manifest
    Filesize

    5B

    MD5

    c06857e9ea338f3f3a24bb78f8fbdf6f

    SHA1

    c5a0a2529d2deb60fec041b4fbd722a2ebe31702

    SHA256

    957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

    SHA512

    29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

    Download Submit

  • /data/data/com.fwb.kh/lib-main/dso_state
    Filesize

    1B

    MD5

    93b885adfe0da089cdf634904fd59f71

    SHA1

    5ba93c9db0cff93f52b521d7420e43f6eda2784f

    SHA256

    6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

    SHA512

    b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

    Download Submit

  • /data/data/com.fwb.kh/lib-main/dso_state
    Filesize

    1B

    MD5

    55a54008ad1ba589aa210d2629c1df41

    SHA1

    bf8b4530d8d246dd74ac53a13471bba17941dff7

    SHA256

    4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

    SHA512

    7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

    Download Submit

  • /storage/emulated/0/data/.push_deviceid
    Filesize

    32B

    MD5

    a44d3087c6dd79d13e748c5e866e7599

    SHA1

    9eaf6243e0c2679b4b43babd221e32d95a46b7b5

    SHA256

    29dc6df9edbbe9586cc0f1aff6821fd2d8fc9db84e58cfe1d20a7ae532b7fc01

    SHA512

    4437c6eef25e0708e9caf65884c4ac2a9fa8d4799e42e0261707261f9d8bd9e6df0e47de6ed9a5b907d3503fe097dcc168341aa3119f6da5f234de4085b54dbe

    Download Submit