b6637c670bf1eecb887f246bbf6e952722c918bf56b745e16da320195228b7a8

Analysis

max time kernel
3160442s
max time network
133s
platform
android_x64
resource
android-x64-arm64-20231215-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20231215-enlocale:en-usos:android-11-x64system
submitted
30-12-2023 03:51

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0d7d0029872527d1a572f67c3dcee4ac.apk
Size

5.7MB
MD5

0d7d0029872527d1a572f67c3dcee4ac
SHA1

116a224758695de7d3dd5fe63575262526f4d663
SHA256

b6637c670bf1eecb887f246bbf6e952722c918bf56b745e16da320195228b7a8
SHA512

7c0ee2668ee46c1166abd6aa0c83df30ea9f518691ab3dbd8e678c656ba38a0196782dd6694720625c0b2b0a117166818af328d5e61b26eb501f88cdef1ec687
SSDEEP

98304:OkDOE3wjKLOUs0Zw+v8NTeaMutPbEVqQkMfHUVY8PKbNGk:DDbkKL1NZw+v8Nt1PbEURMf0VJEMk

Score

8^/10

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.iflytek.housekeep

com.iflytek.housekeep
1⤵
- Requests cell location
PID:4605

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.iflytek.housekeep/databases/mobilex

Filesize
8KB

MD5
f580f2982b65f111a2756d9dc7ede0ca

SHA1
8ab4be5ffdc89a40a2c12a9a006b1649b8f7ef1a

SHA256
8ec55e187e46cffe0ab1b3fa391a77922c29da49078d96b419cb8b407757461e

SHA512
0a113a778530e68ed622df7aee6a58d8b5277cc827532695587408a93c1acef75d373dd1e60da0f9479ca345a6d5227fba57808f4cd47853e04b6342f6f9802a

Download Submit
/data/user/0/com.iflytek.housekeep/databases/mobilex-journal

Filesize
12KB

MD5
2c8410c18c6c8bbae1f822205c6b3f74

SHA1
7d5ae1d6ed84acb40147371482c46fe4ec2c9100

SHA256
47bdb18a68de8ad3fa63846baaf372d4a52473e2cdf1ec50defec8f85b33ee67

SHA512
b123ee7a7e07995fad182de7468b7a232c36dd03f25ce91609c1f9f931ba12b1f026a713bd1919c8dec24bd83800db1a0cb9b4bb1a0c862f776f9c4d2147f861

Download Submit
/data/user/0/com.iflytek.housekeep/databases/mobilex-journal

Filesize
512B

MD5
ccb0ca1b1259f7bf5843ca66f4810f54

SHA1
af66a44c9e78a616763649bd3467232c72f480d3

SHA256
805f6eb5eac7dc6773847637d8fb8c3596d3c3e627f54dba8cbd7cf6847bef37

SHA512
551e69833463226c7754453574017b3501291bee285387ce8ac861c8b6092271f5867bcd8bcb87ce6c61c9c712ed2e485528ccd828170f550e75ac8a48e75151

Download Submit
/data/user/0/com.iflytek.housekeep/databases/mobilex-journal

Filesize
8KB

MD5
cd9594ed6fe1f6f07a0280acdbe07884

SHA1
25b1bbbaaced301006728a3f526d337158f2e8fb

SHA256
28ff12e661743ff18037a2dd19adbd4059b42b03cd6002eeb0bdb831230005fb

SHA512
6b358700d284ddf44126881954cb3ba898a3b87d09fe76808f9a6b21552fc3038dd2b1344420e77a8685b1a0321e82e2223e2731ea20eafce0b70cf325215021

Download Submit
/data/user/0/com.iflytek.housekeep/databases/mobilex-journal

Filesize
4KB

MD5
7e5ae01cd341c0c48713256e3bb0babe

SHA1
cf7b23e45c15018db54658a4b6d9bb74000afc77

SHA256
1595a85723e4a24a163b27a857c03dae1152e303b3786ecfec62359bd4f19235

SHA512
5e44a961737cffb934de8353d90213c8e89ae96169c3c9fec0176823983e9d3ed536c580f61cbd26b5acca8d990236f32fe3dee5c69e7715a5c6fa3f631eda88

Download Submit
/data/user/0/com.iflytek.housekeep/databases/mobilex-journal

Filesize
8KB

MD5
dbf5759abb96590c9e40f8bb14c21cd6

SHA1
95268fe47e428e74a1fd303cfee58882cd4537f3

SHA256
2e756ab0228ae0acefd410e41aa53fe70e7829cf5583cce9d636a49dfd351460

SHA512
f800dd9023172e9cd36dccbab59ce6db34424006ede63894b616e5e8e10e73423486e6ef59bdf38b4e85a2adc6dead3f35940304cd026fed2aab639a394d25cb

Download Submit
/data/user/0/com.iflytek.housekeep/databases/mobilex-journal

Filesize
8KB

MD5
5ce02dab559b8ff31648f28e9c5a51e1

SHA1
0708568e4d59cb4835877dd35a37e3332a0cec51

SHA256
aedf89af84b52d9a150e119b94c9dc0957cdfea4395d13a7c1fa37a5779296ae

SHA512
71a441b31ff776ca42b7d3745e078f3253ac5e17ef2b2b7e509344857931ecb37571c19a09c1386cc564294849624af99dcb09a81c1f2e1dd2b0f1e26b889a31

Download Submit
/data/user/0/com.iflytek.housekeep/databases/plugin.db

Filesize
20KB

MD5
f5c056e3fbe8a3c49b804b194b71345f

SHA1
786604b2a4d4f844a16d787ed5017e33a414ddcf

SHA256
70e2922ac978a52a807d514e0dfe4c7ba093eb8dd3a56ca9356b23ac173b3adf

SHA512
ae325f880e09f9ed0d23754b710111ac63cb5c23e8019be1c4e86b70bd2222f5a86606472fbeb910e02e556abcb32989b08142997ebc41b58323d8859ca2821c

Download Submit
/data/user/0/com.iflytek.housekeep/databases/plugin.db-journal

Filesize
512B

MD5
43a7205831d01f6ec6603bece34fc655

SHA1
804001d295a987141d7be87e57c7cadaecd9e6c2

SHA256
1e8a95751b507f9068f213f671995d6b65585673dfaa12eaba0dfb1aa6171ab7

SHA512
c487a8bd9b9e1010a1b12103ba0faea98cf7d7a04f7c5622ea1770dd2f7f17a58356f443220a60f641c5a98fe3190c0017dc845c449c715c05c2698afe1a66c1

Download Submit
/data/user/0/com.iflytek.housekeep/databases/plugin.db-journal

Filesize
8KB

MD5
f6893b2d9da82f7763075e6ce409011b

SHA1
33abf729b85cbabb0791d157b8b507c7ca1987bd

SHA256
de2504f4ace5c8b884e612623f312a01d6b64c39bde04279828d35299b672b01

SHA512
57a2cdc207ebf86696de6bd81bec4cb9d70642aff4f16a83c7a03aca43cac5c37aab21e670e18810609c9ac8cfe39bf388baf6ecbbd4304e033be638903ae215

Download Submit
/data/user/0/com.iflytek.housekeep/databases/plugin.db-journal

Filesize
8KB

MD5
dd3eefebc15d4c37a313687c9a890d17

SHA1
d18de5b025af052e77dfff9ac3255cc0bfb6637f

SHA256
f4d36cc640d2e1f0fd072fce704ebfcefaf2c4c37a83cd30d44a4d8467827759

SHA512
4013a78dbd33456ac6dd77b46c25576cf27a58b32b0aea14773777f48526a2042b6112b79d70ce42640b0bc94e18b4eca2c74f14cbdd5dbd145dbeb0710826a0

Download Submit
/data/user/0/com.iflytek.housekeep/databases/xUtils.db

Filesize
12KB

MD5
f41f531c07d4141546a531ff9caffdcd

SHA1
9dcac5aed06972d0ff6bd4cc1f1cdff85b36d3f5

SHA256
bb8dee5b5c3779f175abbd142722eb0022b98d374783aa80145b34614a4de646

SHA512
e0c8d1a820cb4c098e45776e8b50ea8c83944ef2e3f005cb0acbfc07688974d370f78100ae022f62564fc4c12acfdc43b710c18ca1c30f4f575bc08b9b12d2d4

Download Submit
/data/user/0/com.iflytek.housekeep/databases/xUtils.db-journal

Filesize
4KB

MD5
d664578c8f9baf74f1aed8e3fa07777c

SHA1
8e5fe8b56f956471777640461d684fc30847cb00

SHA256
5ec1b1b03a1324c717bb3649ffdaf2bbaae87a5041bc0f96fff8adac1237b3cd

SHA512
d98d20be7906fb9bedf228fe79358f80b668c90b9830cef8a6cf1273e31f6ac5ef7b9cfed54edae1b055ddca5f6b2ff914962347f97ee3d8d84e3dcbcdf901fe

Download Submit
/data/user/0/com.iflytek.housekeep/databases/xUtils.db-journal

Filesize
512B

MD5
c32acddcb23c117940cb6f38a5eca027

SHA1
ad3317407638742efcf16ce1725b8337076d2175

SHA256
959b35d0aaff4b8939c9b1e383f697560204b280dc2901c04c33299605480925

SHA512
4534f2fc46c040fc551d4477416f88f3a625aae841f5e10863dbc2e53a302045de5846091f6ca9694ee50d7f40da98b547c9da62616f52be5a06bbff67d5909e

Download Submit
/data/user/0/com.iflytek.housekeep/databases/xUtils.db-journal

Filesize
8KB

MD5
73144f82fb4c296065a9fadcd64b0e78

SHA1
6517a3de67d2663f74f0f08b14a8ed6179a061a8

SHA256
15250811c31623c418aa141c2d1a5a8efd2365d3811876c2f1bedbf893f26f49

SHA512
1ae1a4bd24fd46cbbbc88eb9d1374005a2f5810ed8fbeb669389163d16735a0e5472c1c1b2264d8696c4dadd1c06f167552e92099008f1473a904f00ed883ea1

Download Submit
/data/user/0/com.iflytek.housekeep/files/UserInfoBean

Filesize
222B

MD5
976666629b0a5ad4927db55a45a52a9f

SHA1
2881839516334b958eb89671f766bf6e163a485a

SHA256
f8e4c7011fd7b5ce46fb57d10d8f635ba3c47602fee588ebb03805f6a092cfce

SHA512
8294ee3b245c3eae1dbe4b2b25e67096976fe9f4e761b293d981267d3d76253fdd84d203e9d0da33eb56a4336f0ae18edacc51ead1bb384d521808ba406f3ec3

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads