Overview

overview

6

Static

static

6

0347d6af38...37.apk

android-9-x86

4

0347d6af38...37.apk

android-10-x64

6

0347d6af38...37.apk

android-11-x64

6

Analysis

  • max time kernel
    3093830s
  • max time network
    164s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    29/12/2023, 20:34

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0347d6af38982c42be6fa774b1066f37.apk

  • Size

    23.3MB

  • MD5

    0347d6af38982c42be6fa774b1066f37

  • SHA1

    c36f22b3a4b1496d15c3521797265b10f251b6db

  • SHA256

    d905348409b1c38c383f9009b81eb393b8d9f79dc3b3b5014c98e681d9675e25

  • SHA512

    647ce41f0b7250e884c786c14a868fae12d631f7f7f8a9570445795d27f0069d093879618319e2a35c5ef69bec73ef2b51a90d32072bfcf76d238152443cc9d4

  • SSDEEP

    196608:AFWH4BxFRZhofB4MKim/dJuNWazbuZ5sElPc12APB:kkChZhofKBiadANWacsYEvJ

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.tongyi.family
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:5082

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/data/com.tongyi.family/databases/ThrowalbeLog.db
          Filesize

          12KB

          MD5

          163b0e3f017becbc89b9d7f330b78f09

          SHA1

          1ef9cd8ac8655190468d0ccece0a4738634ab0f9

          SHA256

          cf01452c3b494692386f6c5faac340eb3eb894bd416391002d56645aa8a9ea36

          SHA512

          6a85a30d16fa58a4fbbb05d469778ee69ca79deaa74316ccb5be3ee07fdf78dde22e95db3edb1b88b18478e8747047445f85baaf9556b9a1e55d9a02a80baffd

          Download Submit

        • /data/data/com.tongyi.family/databases/ThrowalbeLog.db-journal
          Filesize

          512B

          MD5

          6c4445ec4ec8d447c8af0510a4b207c1

          SHA1

          06c2c18f9fadb95b94ec4a583acf3f1d3ba99f37

          SHA256

          3aa9257f7aa92a1dd87e4b87c60202a5d6fe3781e9dca19f57770cc69d7941ab

          SHA512

          9d826ea38d7e92eeaf0d3012e6adda5c022da834909d8f71efdc21350e5f12eac02afd077798e31d5a91b17a44a47ec40d52bc9ab2c5f99b0a7092b432b3bf65

          Download Submit

        • /data/data/com.tongyi.family/databases/ThrowalbeLog.db-journal
          Filesize

          8KB

          MD5

          ccf63a3fb347b0d93e92a00167b068ef

          SHA1

          21cc414ecac0f4a457084bdb456282de0e705f03

          SHA256

          e04d70655f03b6b593d9a3517f72b3c91ac550b6cea218461a79ed68af5692e3

          SHA512

          f329de0c90fc02428a3bb02b89674837a91afc49c0f1691a077cc7b46e025ec28cf10a6a4ed1afb4a69762188786dbab99bd36b94942e58703e8b6fc77d5174d

          Download Submit

        • /data/data/com.tongyi.family/databases/ThrowalbeLog.db-journal
          Filesize

          8KB

          MD5

          331d64987c53e6f033d035507e3fee94

          SHA1

          34d2d0e21293e1c6dab1fe8ea85b541a97b95185

          SHA256

          3264e0255b5da296be2f59fda2a26df08198229d14bc2b2e7a51ab4b4dd35710

          SHA512

          067e09f0bd6ebd5d10d6df9bdfbb9b30022f7fcd7933ecea38fcdee89893e1d9b311551da398e8ab8d7d3609518cfa9f366b1f3f76c9bb922b30245f89bc7803

          Download Submit

        • /data/data/com.tongyi.family/files/Mob/domain_1
          Filesize

          2B

          MD5

          99914b932bd37a50b983c5e7c90ae93b

          SHA1

          bf21a9e8fbc5a3846fb05b4fa0859e0917b2202f

          SHA256

          44136fa355b3678a1146ad16f7e8649e94fb4fc21fe77e8310c060f61caaff8a

          SHA512

          27c74670adb75075fad058d5ceaf7b20c4e7786c83bae8a32f626f9782af34c9a33c2046ef60fd2a7878d378e29fec851806bbd9a67878f3a9f1cda4830763fd

          Download Submit

        • /storage/emulated/0/.mn_410185822
          Filesize

          178B

          MD5

          52d115783e11337ebff038a2f991d964

          SHA1

          de072fc591eb41edfa21a14e103a00f5d3ca641f

          SHA256

          1cc5835b70f216d1f18517ac895ca556f1d3abcfd9b913b9fd4e0102c58c19f3

          SHA512

          cf27ea10ce047689ab70c3faec04e9fbf6d66d8b8ec8208dbfcaa77ccc0efbe3b459711275b281e6e24dfcb08225b000eeee67dbf5a3c2d577314254a26df26a

          Download Submit

        • /storage/emulated/0/Android/data/.mn_410185822
          Filesize

          130B

          MD5

          7cc8faf00a6faeadeb320d2f73a808e3

          SHA1

          2b485183638f9b53a56505b38f4a2b0c10f84bde

          SHA256

          779ddf3f5c9a533327e1dd2540fe9f6a2e7ba8164b1a6ca1e4a80fcb7ab41b01

          SHA512

          a1265397a562a1a5eb818fb51cfd79872a17486a59ecc2e98097f246c99090a04c7f598093c967981a49e1167ed4d58abd29e46fe735a59681d69d95d63b53f6

          Download Submit

        • /storage/emulated/0/Mob/.mcw
          Filesize

          80B

          MD5

          805367a1ee84b9f86f98ce173d963f96

          SHA1

          e6a962a6e1f3bd3afb719eca2109884b16219bb8

          SHA256

          94a3976379b70f721e5273eaff237c2b6d1ac69765fea42321bad591c1e9813d

          SHA512

          acaf0c8e82e4ced706757c24d7a5d60d005103904d6231f52dbe4eea7a8e3b90ed35b5f38792dc21a4b2157e65a7cc057d465d0ddcc254da11fcc68beebe10e7

          Download Submit

        • /storage/emulated/0/Mob/comm/dbs/.duid
          Filesize

          132B

          MD5

          0483ab46853af7d635ed5b373e565faa

          SHA1

          c0b38ed93368afd74c8e42c18995c1dbf85f55cb

          SHA256

          187a76b61d3d9d8422f775bb3efd3563b5c8124ffce054f490f6542b0db868a8

          SHA512

          67d7c969ae899f57850b6c415a3002325d6d0edb22e8a18c0b1223fc9c85a18052f10cd6c460bfaa63d8ab14add5857aa0882f175cb25d20ef930fc11c9635c4

          Download Submit