d9c8073fa6c61a07ca6e96ab687449c944ad994a055d13bf8eab802a76dbcaff

Analysis

max time kernel
2774792s
max time network
144s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
24/12/2023, 05:12

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

d9c8073fa6c61a07ca6e96ab687449c944ad994a055d13bf8eab802a76dbcaff.apk
Size

17.7MB
MD5

46496855077ae19c2e4e4951b86866e4
SHA1

d5d6794c54d7223de935c87f755e27097e661ad6
SHA256

d9c8073fa6c61a07ca6e96ab687449c944ad994a055d13bf8eab802a76dbcaff
SHA512

97c75a0f1f182990e21ee955f6bf6955b4e10597508d316325f6737ef91faa788e3d12ee8f56591ae1ebed0d72c3d6dc1a8ee43fc50f9feb1d47cc17882d92b1
SSDEEP

393216:IXOenTPMDuhIR7sDC/DSONO5kOhemnlgkYa3oZhh6WquE9HF/U1L9a:yBTkDuuuymlE/hKuET/sQ

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 2 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/data/com.bj.chuanglian.coach/mix.dex	4622	com.bj.chuanglian.coach
/data/data/com.bj.chuanglian.coach/mix.dex	4622	com.bj.chuanglian.coach

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.bj.chuanglian.coach

com.bj.chuanglian.coach
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:4622

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.bj.chuanglian.coach/mix.dex

Filesize
292B

MD5
63f77f99bd2c2b772a479923bde11974

SHA1
c7632e7d301e4463fafce85f84e9c3d7da3fdbbe

SHA256
4c76a3af64cdd2f8713ffe2733dea50dbe714d0ca41c17d1847ee5b62a7ca615

SHA512
3aae4a89d1ed51fdd911cb367eb10afe3c2264e4222085891b18a60d5412f85d10bf5c8f3c6642db70abb9aa42732bac5c42c42ee32d587100f53c21b5beb16c

Download Submit
/data/user/0/com.bj.chuanglian.coach/databases/bugly_db_legu

Filesize
12KB

MD5
171aedf968e17a2744d2585715606cb9

SHA1
bbeddeb3b89fcf809619c35b4a318a80e7d5b029

SHA256
d2ab452d9360848f46af866b870b5c6fc98230b09c72b89cb1a4b2778586678e

SHA512
78a0f517ee3d21c153dda6dbfec4187ebaee9d520d7b1b63f358bcb125d08aea53f26943907a56fdeba40161d9fc7e4fd63f9ae3154dd2ad887ba0162738285b

Download Submit
/data/user/0/com.bj.chuanglian.coach/databases/bugly_db_legu-journal

Filesize
512B

MD5
aa3660c7ec4d174b0a3ecd320d7c0e5d

SHA1
86c177a828e4723184f5c4c109cf4edf2164cee0

SHA256
787d886e8c8025da1e177ccc8a57c0826be55da3f2ab54d9fd5938949e4b5158

SHA512
fe2bb9368ae0763dad36c45c903cd51bcf0584feb148a988c71943aafb0f978fb084f4a8fd76ea26ccfee3b68f3e1f33fd8c65a1fd013cd407a02ba5c671bdcb

Download Submit
/data/user/0/com.bj.chuanglian.coach/databases/bugly_db_legu-journal

Filesize
8KB

MD5
5891bedf52a938ed6538a21a6f15defb

SHA1
1eea7a685caa6d6a2523e347ce1d1cd92a161869

SHA256
ca231f9b037efcd9d589c878b0d8b98684f6bfb503b7b3d9dfe52e213d0eb251

SHA512
bcc83a2c7743421a9f4538d5f5bb0ea05b8466846c12a64ae2ba097ba54d13268bc4cdcb014eb10ac2249ed840a5416116a809b5e1a64cde69d6c0e67814fc03

Download Submit
/data/user/0/com.bj.chuanglian.coach/databases/bugly_db_legu-journal

Filesize
8KB

MD5
92b3b2891114adafef29a964cad940b6

SHA1
28899f7439153c7a868006d24f00ce5c7a9270f6

SHA256
b60354730692a513c0f2f1b6bf52107ad22d7b87d54e1ae28172f7c28a0e4667

SHA512
31a371058d57332a68aa132cb0b5081e6275bcb9621a2d9002130bc2e7b7da8e8f395a7a9eb49e91edc3182beaa297f00c9459f2b152f351789fc0e603883a46

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads