491df76d20e3dfb25ee080602b60d1e8eaf97b03d3b7e1bfeff1326e10946625

Analysis

max time kernel
3285883s
max time network
159s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
30-12-2023 06:57

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1194dcabf3e3b28106991992c6a431ec.apk
Size

6.8MB
MD5

1194dcabf3e3b28106991992c6a431ec
SHA1

b449f3e4a8c43dfc747fdba98cfb7791fa818543
SHA256

491df76d20e3dfb25ee080602b60d1e8eaf97b03d3b7e1bfeff1326e10946625
SHA512

07d540f3551cadd00a602de8f45e45b8913a3625b6b12e4b5b719845f2b59915dd7421e78806e36378c21e46ac0cbe131987c2d4b0ee47ad2289069225f4a287
SSDEEP

98304:+ZCZ3f+1bL6fm63LC0JH4f6amVB5Jq7GwAxTrNpDrVAcjSVhKuad7Jvrr+RNvIP+:b0L6r21f6HB5a+Tr3DrVAcJdNv+bK4V

Score

8^/10

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.mojing

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.mojing

com.mojing
1⤵
- Requests cell location
- Uses Crypto APIs (Might try to encrypt user data)
PID:4957

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.mojing/cache/CommandCache/79460cf7f12d5e11ab83b12a79c0adb8

Filesize
976B

MD5
2061b32e3ef2477e33ec3d2e72d69cbe

SHA1
82f9ff06354255d8c941931e58d282d8809d482d

SHA256
91a98058ba167b4800661588855622a93f4105e5bc678656aee36fafe6a2f89c

SHA512
1bc7e6a4d7fa6c2e74cf40456083e895ed5210b79b9d5ee21ec31821fe77c4a9c190fac5587846b292dbe6c24dc66bec5cd6f01fe0652ea91344b7d1da53c8f3

Download Submit
/data/data/com.mojing/files/.um/um_cache_1704092861092.env

Filesize
541B

MD5
e6411e86f67fd2527c25cfa775988668

SHA1
b76399b6908c9300b6778e091b36b488b9c0c954

SHA256
d77e1c922fe0cddbfbb6864aaf526b41bc7adc37f243ff99ebce32cebc8c5e2a

SHA512
28b69b78207d93ae5bbdda99540cc24a68e15a21051d8c9c6e25e9d600de3854b785dda3a4e5196ef5e2ccd4837d429fa0392159321473b95b7b81588492dcb3

Download Submit
/data/data/com.mojing/files/installation

Filesize
454B

MD5
f830cd786ad6aac82cb97b5e14d36f1d

SHA1
36bef3c2798613d029c20c1a73697e003017ceca

SHA256
c0309d93d74a82417953ed1f9ed13d02914675fa5d89b51fb1a2ba09ce970d1a

SHA512
cb4fe6aa8b4ec5dd5c2c01dcf2d8c5964398ac4501180c1a8d31cc3072b5e8bdc820217fa3be087816421d74ce9866304868e5a32916c6d6d100d7f04291c492

Download Submit
/data/data/com.mojing/files/umeng_it.cache

Filesize
245B

MD5
1d1b8befb66d00abfbd50654388d892d

SHA1
a73d698ef9a1e13b5568e6253a2905f62b9f7b5f

SHA256
de0e3d6f034242b3e3024ceccd3a4ffd170f6eee0d34262e3e90f70dcb1594aa

SHA512
425525b5c47f39b1146af752a3bbf98d3df4745ab56e354832b4d26abd860773cfc3b77232e653c019a106a30c5ca4fc9051dd2c9606faa37851957e234910d2

Download Submit
/storage/emulated/0/Android/data/com.mojing/cache/locationCache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/storage/emulated/0/Android/data/leancloud/dontpanic.cp

Filesize
20B

MD5
f7446877f9db9a3e7755290c38482930

SHA1
e8b45cbfba41a97cdd8a46bf38f325f75b7432e3

SHA256
004fdd0ee6b88993ad4fc483afc752b6f84c3e05ec3144a3f2af8047e2cfb928

SHA512
3565823762657c2412745e6d6d1f6977e11f1d2adf1e1a4c52cb5fabd3ea68bab6b1190113e740e1c15042a5e166940ce56a2ef15d34b55ed00df379067fd49a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads