Overview

overview

6

Static

static

6

0347d6af38...37.apk

android-9-x86

4

0347d6af38...37.apk

android-10-x64

6

0347d6af38...37.apk

android-11-x64

6

Analysis

  • max time kernel
    3093802s
  • max time network
    131s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    29/12/2023, 20:34

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0347d6af38982c42be6fa774b1066f37.apk

  • Size

    23.3MB

  • MD5

    0347d6af38982c42be6fa774b1066f37

  • SHA1

    c36f22b3a4b1496d15c3521797265b10f251b6db

  • SHA256

    d905348409b1c38c383f9009b81eb393b8d9f79dc3b3b5014c98e681d9675e25

  • SHA512

    647ce41f0b7250e884c786c14a868fae12d631f7f7f8a9570445795d27f0069d093879618319e2a35c5ef69bec73ef2b51a90d32072bfcf76d238152443cc9d4

  • SSDEEP

    196608:AFWH4BxFRZhofB4MKim/dJuNWazbuZ5sElPc12APB:kkChZhofKBiadANWacsYEvJ

Score
4/10

Malware Config

Signatures

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.tongyi.family
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4262
    • cat /sys/class/net/wlan0/address
      2⤵
        PID:4301

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/data/com.tongyi.family/databases/ThrowalbeLog.db
            Filesize

            4KB

            MD5

            f2b4b0190b9f384ca885f0c8c9b14700

            SHA1

            934ff2646757b5b6e7f20f6a0aa76c7f995d9361

            SHA256

            0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

            SHA512

            ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

            Download Submit

          • /data/data/com.tongyi.family/databases/ThrowalbeLog.db-journal
            Filesize

            512B

            MD5

            4ee2c24d23404b29622b46b9aab26c6e

            SHA1

            941bd47893c771ca8687edde7fa098e89ccb3c59

            SHA256

            48469c894426f394104fd715fc1773ddb62500f5a0422b750f6a4f9d57ef5a82

            SHA512

            8b40b417174e9a249aca55e0eda17201e58aba6d5ebecc3c693c8c1e92d58fc17b62177385007fda57c4394e784d3f8f316ab39c722201116cadcd230dc3f800

            Download Submit

          • /data/data/com.tongyi.family/databases/ThrowalbeLog.db-shm
            Filesize

            28KB

            MD5

            cf845a781c107ec1346e849c9dd1b7e8

            SHA1

            b44ccc7f7d519352422e59ee8b0bdbac881768a7

            SHA256

            18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

            SHA512

            4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

            Download Submit

          • /data/data/com.tongyi.family/databases/ThrowalbeLog.db-wal
            Filesize

            32KB

            MD5

            169301275363d18c6cbf7848178334dd

            SHA1

            05f3d7895534870fa0aa8125230b26a0e960619d

            SHA256

            8010b7e291396700fc5d1ba07011feaf14732e8288de0c57b2238d3bf8c97987

            SHA512

            c2ed81afde977991a6df1ca7811aee3ddfbc629358103fcdcd5561a597bd0d3805d57757cd6357e67b963a083e34e8ef7e59853964eafa14f45ba4f86a3842d2

            Download Submit

          • /storage/emulated/0/Android/data/.mn_410185822
            Filesize

            146B

            MD5

            44cfe7208ae8c097b5970e80132cdea6

            SHA1

            2e5172ac93968a185811d8f3abe9214e6de6a6c3

            SHA256

            87950ec4d5f1170224da558c109967c280449f585ec9fd87dfb6db0ae9491d0b

            SHA512

            1796d702da87a1c846702d48fab09472f1b04cc36b2bbaa8d46ea14f543094a4ddf64b99cb385daa25cdcd886b1dde2ccfcf1d5fa501d3f461fe2345f2a3d1e9

            Download Submit

          • /storage/emulated/0/Android/data/.mn_410185822
            Filesize

            194B

            MD5

            7a602e3c3b6e16ece7f6ef59523816fb

            SHA1

            bc14215152e3441065b140bd122a6ed0550e26a1

            SHA256

            ae7219c83d9ae47f4122a9626c32745aedc8c4b820cb57cde4602e585307c9cf

            SHA512

            bfaec8e2aa4fc2a7610823a6545dc49f80fbc3eebd8c838a4b1a64a8bb29b6371031f9b02d9a8e851f2d2772410c3bc6c277883d1808205448e9f7ef538b416d

            Download Submit

          • /storage/emulated/0/Android/data/.mn_410185822
            Filesize

            130B

            MD5

            f321656a466363e5192773d92000e401

            SHA1

            3a6abe9be1a6f4deffaa98fd27f3449c888d3c4a

            SHA256

            53efd5207de6ed80429ec3c7865eed2b64023a0ed66e0fd29e7f45b708a1751c

            SHA512

            fcf6884bf5ce8d10b3a3dd461fad96cb6cf0bc4129e01788de112551230fbc4d8ea6961b04411d1c7816e248437c4560277069d9c544e5450612abc0e2c0171d

            Download Submit

          • /storage/emulated/0/Mob/.mcw
            Filesize

            82B

            MD5

            0e9c0b3fcb0983cc6b0985a39a285ef8

            SHA1

            01ac4f12acb8664b8a6419c9b0b2d15e5615d338

            SHA256

            b2a92d7032e8e1c5c2d7a990788d4118af2a0a7a9d964d0098a4aa53e8b6b904

            SHA512

            e57a2345eb3b4b464816353b5991cabced2d7622e5adacb9400926a79f3fa9c7bae11a683ff8befc9cb4b478cc15c29cb225238858f4686a2a6660faaf8aa364

            Download Submit

          • /storage/emulated/0/Mob/comm/.di
            Filesize

            57B

            MD5

            70a42cba408700f9a6c01c7941a8829e

            SHA1

            eab01cc2c0671538795fb0b1146017dc099d0984

            SHA256

            499576707ce2623293166979e59c832be5b8636c64ad39aa63ebcf961910c35f

            SHA512

            8900d4dc8eed0430babbacb72942401bd22ef7fe5430cad90d3ce0c2c53010220d666aa0e2eb1026f3ec81d574c7fa12585b49222a5f15b01637f6ba134fe70c

            Download Submit

          • /storage/emulated/0/Mob/comm/dbs/.duid
            Filesize

            132B

            MD5

            96b261d40ffca4389b855aa89de9be1a

            SHA1

            5f48a9bc023efd726340dcb949075fdef00a482d

            SHA256

            7654bc41604dedce5089a9808553a1af589932c405e7f3618ab8e45925a33b32

            SHA512

            e7c6f1f9fe955cf7e5d6f5b940d15286f811fb44b4a840c6eea498e74f609904775e717319036f642a55e0bccb3dd11f80c0cab20d5ae7a57c1c6bd7fa8a5500

            Download Submit