d5b3a47d677470cf589f7db812eb5316095343be1a04cefaf43ee9a49f26b065

Analysis

max time kernel
3017240s
max time network
158s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
24/12/2023, 04:51

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

d5b3a47d677470cf589f7db812eb5316095343be1a04cefaf43ee9a49f26b065.apk
Size

14.2MB
MD5

3d05dfa1ecef808b5821503ccfea3a02
SHA1

7798a2dd36c35bf3d10c775db5f7b3e539b2fbc3
SHA256

d5b3a47d677470cf589f7db812eb5316095343be1a04cefaf43ee9a49f26b065
SHA512

6f44c1afa0e3a5e08ec81b340978b3b1b814fc29309df46015775982fec828d33c95ae9ae1fa3bd41f5e0eddde6818a43d5bbb61d77b9191bcfd62c7bcc414e2
SSDEEP

393216:A8le8v9LA3Vq87jiaci/pBFpyJND/SJL2nn21WpUl2Hx:Li3VhKaRhB8NrSJSnyWDR

Score

6^/10

Malware Config

Signatures

Acquires the wake lock 1 IoCs

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.creawor.customer

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 4 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	io.rong.push
Framework API call	javax.crypto.Cipher.doFinal	com.creawor.customer:pushservice
Framework API call	javax.crypto.Cipher.doFinal	com.creawor.customer:ipc
Framework API call	javax.crypto.Cipher.doFinal	com.creawor.customer

com.creawor.customer
1⤵
- Acquires the wake lock
- Uses Crypto APIs (Might try to encrypt user data)
PID:4509
- /system/bin/sh -c getprop
  2⤵
  PID:4693
- getprop
  2⤵
  PID:4693
- /system/bin/sh -c type su
  2⤵
  PID:4751

com.creawor.customer:ipc
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4543
- /system/bin/sh -c getprop
  2⤵
  PID:4671
- getprop
  2⤵
  PID:4671
- /system/bin/sh -c type su
  2⤵
  PID:4731

io.rong.push
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4567
- /system/bin/sh -c type su
  2⤵
  PID:4655

com.creawor.customer:pushservice
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4775
- /system/bin/sh -c getprop
  2⤵
  PID:4815
- getprop
  2⤵
  PID:4815
- /system/bin/sh -c type su
  2⤵
  PID:4850

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.creawor.customer/app_crashrecord/1004

Filesize
229B

MD5
cc9d07dbbc31fdbb3362a15ee8f0fc4c

SHA1
1a22897b581ce71bd4774213e8317d4c1a8870ef

SHA256
69cd7ede16b03157fe4ebcd765222fffbed4a7edf04dc7f5167cf49a36b34b46

SHA512
0a473847bff131bfa84a49ecb2959121dd4b5f24864fa19e91ba409b043ac3eb6c67dcb5a0b3782da129636632d61ad930bfcffec41608894ab6aba13205cca1

Download Submit
/data/data/com.creawor.customer/app_crashrecord/1004

Filesize
233B

MD5
16c0fb738c03686355b42bda16823cd2

SHA1
e8d1d49bd5199adfa97cdef8b75ab14bb7b938b1

SHA256
e261dfd12b1fb7d83c8a985123828fb4d5205a78143c110fb77e9acdeb992463

SHA512
111bbe13575a42faf831dbb1fbc858d3858ce39ea3dddf26b888c5682804baf20d8fb3071cb3df51d02e7c0c20ab0136b8ac5f4c9dc08d118a38c8dc728d2dd4

Download Submit
/data/data/com.creawor.customer/app_crashrecord/1004

Filesize
233B

MD5
e9030e8b71c77213cf4da4af08de0d31

SHA1
bd5045808bf25fc1f65723ec7d2242b0a4d6ca97

SHA256
c3db973a8d45d0570041527f6385fa212eebd1d45e7edc08d68e141d6243e433

SHA512
08f4a6b9d41713289015d060601114580aac290a5d25c35a5e608642b2eb8fe3cc68e70dab75f47940b5abb49245512c8e28429a9852e181af4dab17adcfe96c

Download Submit
/data/data/com.creawor.customer/app_crashrecord/1004

Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit
/data/data/com.creawor.customer/app_crashrecord/1004

Filesize
512B

MD5
4ff9feea07afa1dc503b081c2412bc67

SHA1
545d7b874500416cc7e7e705bbdb0881efc4780d

SHA256
62dff12a5d06ae611e66a6c54c046f754916d49a5fbcf8245592486e420a895c

SHA512
ac38fb0fef05f687c0d060de718034c9566cba35b130d62fa910d518f9eff9fc4060b10a93e0719b6ad2e2f0c9c58a5a5a2f4460b4c6db8f5c1e50861fcb32ce

Download Submit
/data/data/com.creawor.customer/app_crashrecord/1004

Filesize
4KB

MD5
57387213b21ef9d5f51bf350247444ea

SHA1
b1cb7e357cd2f31d0595ba62d9709c0196ede1db

SHA256
60a133cfdc560946a459e5c0b61430159dcc1b3fb16ee7caa25f3a31b63e39d8

SHA512
110da62ad6679cd17cdbe238ed5bd485ebc3b05236fdbe66def9e81dfe4998a42b9df2e98555e8dd07d8092e739ab971c12a82e4056b401152ed6fcf4c5ab70b

Download Submit
/data/data/com.creawor.customer/app_crashrecord/1004

Filesize
4KB

MD5
0570a3518019c6c71a5b353ca613871b

SHA1
811f94f63c01276428a1bc8365f8847001ed4002

SHA256
9fcb61f9510ddfba2ee5160bd2a3d01e72f8221b79cb9e80182477afae5478ad

SHA512
892a07dc3a275bcfe5bf92bb22aea58cfac2acaf2584495630df4b1b83cf57bf28656b425748fc93a5628b62765426c41b394d7dc1d53042cba700503bd10f6e

Download Submit
/data/data/com.creawor.customer/app_crashrecord/1004

Filesize
512B

MD5
c2a9db7ebfdbcfca5b6db1676e023bbc

SHA1
902b0ed64e07daedb1ad7b1d2add6dab8dcb2309

SHA256
71d21c4bd949739380d21e495340fdbe10326eea908a7f7031e29b6052011cfd

SHA512
701064c19b7b20a56a941fe9bf54fc9c1afbd930b641f2b1766dffbfc4f306209e20cdc44e84fa0ccb66a3fbc407a5fed77779627676820b2b799c2f9d8eda14

Download Submit
/data/data/com.creawor.customer/app_lib/libgetuiext2.so

Filesize
41KB

MD5
1f7b658815773318c192f5dc1737b8d4

SHA1
ae5d8e0cc8ec10cc32fbeb97e3da24493a641fbc

SHA256
4ca13fd6972a30fa034d636a3febdc424fc81217087a8d211de8e11a26cd31cf

SHA512
5b83e5e48183f2bd93a98729e4c1a1ddbfb8a8bc23e3ae53f266adf1fab3f9df932d7599dde9ab099f46704275b45e1c1faa1c32bb08b0a87f40fea715c0a4a5

Download Submit
/data/data/com.creawor.customer/databases/bugly_db_-journal

Filesize
512B

MD5
ad2f32e75ac3d4e659aacfe0d327829f

SHA1
35180cad3da8bab7e4b83fddaa7c6fab0c35b07a

SHA256
a717f9e5191d186ae9898a68c951ebb1f9157d70836f51185913d72aa216054d

SHA512
b13b6ee3f64e64663a8bea4bd5c75b6fcce728e02d67c836968421fa8cd5c7a2191c3a218347458d3530772e2fac2fd4ca7c44f8a4b7245d209ae07bc73ba84d

Download Submit
/data/data/com.creawor.customer/databases/bugly_db_-wal

Filesize
80KB

MD5
c8f28d6dff4395afc37f47f8379e1427

SHA1
f15873b7d3055e5221e1ac29e8cd464c26130810

SHA256
4021dfd01e63b3387c703e890558c9720922a3f56da596fcd4e7d975afc52f1e

SHA512
aa21338817112cc53a9a5e24f2bd1f76b1c7042d4c1bc45ebb32a07fedbb5e5a94f7083252fc00ca97f72b375b50062f6a0e51870fc31788efce45e3d6248123

Download Submit
/data/data/com.creawor.customer/databases/bugly_db_-wal

Filesize
72KB

MD5
dd42195ce5fa4ccd590e9ea50ad6d925

SHA1
3dd1622abcabd61e4e3c0ea346bf7c481c9ecbb9

SHA256
4d746d85c9e7d908e1b9b176c3fa1624160bbf1065a9e671de846bc41e8a2ea1

SHA512
8faf77cb7addb53765a1e4509abb0caa359459c7174b095736604819f0eb1cc712cb6889d2675ecfe27d5113d328faa4ee15d8febbc0f277346e9eae85d8f740

Download Submit
/data/data/com.creawor.customer/databases/bugly_db_-wal

Filesize
124KB

MD5
61981d27e3e5e2add2fc5be55a56d4ca

SHA1
db40fd7d4552e8a6b1e767daa97d724e9adff33d

SHA256
f90cb801dc766df2650e6616c0b07c55d3a1a1cb87d55761fce23f0a1a4e4d16

SHA512
ce7e76611ed64766830117e09cc3f06c5ecb5a44b4ce15c3bfb55dd6b808034478e2613aea9d027d8bd3fa2b9e88b0125e8a3c12869d3dd7777b0a528b7d1145

Download Submit
/data/data/com.creawor.customer/databases/bugly_db_-wal

Filesize
16KB

MD5
7edb1d870c53fa4d631ddac54848b8e6

SHA1
a023ea11202070864b660b52e0c7b6e27981cfe4

SHA256
8ec5c4232a72e976c87913ac23a82804526ac1fd478d607b67ec6c0f1fc11c00

SHA512
813673058dc480aef66633591de6705a5adb850309a688068112e8e39391c3fb508fad8663bafce971651dd9dbb62889480f35067a1197033e305fdc22ae4902

Download Submit
/data/data/com.creawor.customer/databases/lsp.db-journal

Filesize
512B

MD5
bcdaaadf98b0d054010f07d40e3e2010

SHA1
1cebc650a854ee72b72b36e43b16777b8a82d80d

SHA256
a954850c7136ee565a3d54e5a72e573066c84e6c7ce4de50027b13d428f2fb15

SHA512
f79b5693297cd3c8d16abb1b37e972fc5acaab10fc836cf1c73d57a22604b0a0ab3145df0649a31f2cce1dde98ab4d9c571e734ac84cebd58492fad6c5df7958

Download Submit
/data/data/com.creawor.customer/databases/lsp.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.creawor.customer/databases/lsp.db-wal

Filesize
56KB

MD5
a7da9e7bc3c8699d0242922453c6acb5

SHA1
69af7fc7b4b80f6243805aa6d8f36b2c5ab248d5

SHA256
b14ab2d23dd22f64f9015c51e5f3084bf45d343ad153342f5b522418c3173d33

SHA512
a5661b4f2edae81ab4349e491a3df733dc819cbfcbffefda244613a7884735efa147c6e81c3acbcc3d0a3a83bc2b99851779b66648e48a440595aaaa0e5a5b50

Download Submit
/data/data/com.creawor.customer/databases/notes-db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.creawor.customer/databases/notes-db-journal

Filesize
512B

MD5
54860fde040e0cc2e40c78a0b640e2c3

SHA1
b21e24ddc36af8db96dbc7011f1137020b10468d

SHA256
b6acce119d75d6c2c67d84da5fb6cd7eba7c97e9f75b6430bfe91fa8197895e8

SHA512
9425537ed890b67cec8e64c82c69ccd95fe7bf8a718f4eb0240a7d3feed33b86696d2bdb9ecfb62990aa3cd5923d482daf2a1c858b42336ae3c6fc54f0c60b61

Download Submit
/data/data/com.creawor.customer/databases/notes-db-wal

Filesize
16KB

MD5
5456399b2afad0fcfa680c212ea9d09e

SHA1
0337287f4bbaf3ae8f732594bba4b81d6a657061

SHA256
3cabe61480649ab63e5510b677ca33f3d1dab16662dc100652781a2ee0a6c14c

SHA512
a21bcc53746d10078ed0916f4b00e5cd9cff5b1c84bc34467811d4f1f4c8fdd849fa7aa592705ddf60393faf0c9d98f1aec588f65f6cd3623370e98bc32b62f0

Download Submit
/data/data/com.creawor.customer/files/init_c1.pid

Filesize
32KB

MD5
df362264778a559ef4d1e5853e89d7af

SHA1
baaec5be93cd281b0f1262f21b0a7355f32eb2fa

SHA256
cefb7d9cc545b25dd86b1896a8a414729521cf8986430452c9cfc537c768c88d

SHA512
c38e7de7ae92f888fecd70cfd5d91bc49e712802a0724ea77414abeb9b08015da7fd6b8aa13899008797619ce53b3758b0be8e9f2554278cdd9f83e4d774627b

Download Submit
/data/data/com.creawor.customer/files/init_er.pid

Filesize
56KB

MD5
6530e4b4802ea0fe43664b13e4ac6d5f

SHA1
fcd80ffaee1c6782b0a07dfff2608885ec5b616f

SHA256
86c51f0441b7c98453ef4c2e9e05b929b44658d8894564bd7bc417f3ea7554dd

SHA512
9719096d7e41f0455330e32f4a5fd55d9bfaf8c39e05b6d47b971f47c2dc382f5fb48597fa8d89ca7f827aad5f6bb34f392b09848546d30a42b2582e1eb31447

Download Submit
/storage/emulated/0/Android/data/com.creawor.customer/cache/Cache/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads