Overview

overview

6

Static

static

6

2691adbcd0...d2.apk

android-9-x86

6

2691adbcd0...d2.apk

android-10-x64

6

Analysis

  • max time kernel
    3357052s
  • max time network
    152s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    31/12/2023, 03:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2691adbcd0a1ca5e17a6f840702b7bd2.apk

  • Size

    8.8MB

  • MD5

    2691adbcd0a1ca5e17a6f840702b7bd2

  • SHA1

    e8401094eb4feb2b3afc059391a87ab978497fc8

  • SHA256

    dd8ff633a34f6573ecabe8b3fa27feb49e7099ae1a88e2b5d45f263b1ed1a010

  • SHA512

    bff581cde10276244289ea27028b527ee6ce3b9dadb1c538ccd3ee0708183e8bf7903b566013f3c521da8a8621cb471ce7e4782fcaf125167803acaa86f1ac5f

  • SSDEEP

    196608:td1efcaitEDShotrZYHyzl6Nt7t1z4bqULafxOJNfPhtXt6t0lKtxHv3:trefLuE5tVeyz8t7t110DhtXt6t0lKtZ

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

Processes

  • com.xs.xingyunxing
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4264
  • com.xs.xingyunxing:pushcore
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4298

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.xs.xingyunxing/databases/.ua/ua.db
    Filesize

    12KB

    MD5

    3fadfd16b66079be50a83f5272048d4b

    SHA1

    6ea2c555f568f31b18280bcbe96a48511784959e

    SHA256

    779fbb02482b7fc531d313fc31e9d00a87ae15a94e6b12518be8ad4bf318723d

    SHA512

    39d579ca9e347a5d8e4850b8e1a5575cb9970ace6765c5e20375882250fb37af18005402ba8412c0b824d6d4197ce3dc083c2e83a13f742b641eeac857ffe0f6

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/.ua/ua.db-journal
    Filesize

    512B

    MD5

    5c58fcc9ad7a192c50610713545ed1fa

    SHA1

    f79b1622ce5f707d7a06b1efc3dd46464fa76527

    SHA256

    9b722bd449b2c9bef4861ecc7e28c80a80efdd8a1c05cc47bc56465791caa8ed

    SHA512

    76dafeac4a17e5ecc6b6c5d95f4cda83a4dad37eba89e8df0ccb6d3cf00d71f6166613764248d3b921e749a1795acbf1b2a17a94e70b650a27f9f0841adee37a

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/.ua/ua.db-wal
    Filesize

    44KB

    MD5

    9ef6e2cc04e7118a7e0ff99bef7250b6

    SHA1

    0eeb60a3c6da2814b8515eaa83037397fefe50b7

    SHA256

    c8d111d4ed52638b9e239aef7b3c2c74d5e884e79af7eed9a885e25ef224a13f

    SHA512

    787baed1b1b202e12331e6312a55d9e53da007525ae20a0662a78e61bce587c73da345ef58ab2a39d4b4da6f75e8bff0446247696493d459e65a375666dd2ba1

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/cc/cc.db
    Filesize

    36KB

    MD5

    5d7ea1a23af19b4340cc8d90f28297d5

    SHA1

    4cfe95b23a9e98378d69c4290af81b51fbe76aea

    SHA256

    474c4a54534ed96beacad7cc9a805a3f53ec9c0522fc7bcc59771cf500a6a0da

    SHA512

    33071f4c92da0a3df01c4a61dd165df7c7e0f4f37753cafe02d19fc876a5e7fcbb01c069c804e140ab8bfa0644a55f50fd1373646d1c439f817baa5ffbd47f7b

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/cc/cc.db-journal
    Filesize

    512B

    MD5

    8f6464edcdd1c8d813e1c6d4da30ea67

    SHA1

    98747d36ff4f1d42b6d90a6de54fb2ce4cea6ff6

    SHA256

    f8329a72bcbdcacc575dcbba1e0643487650e8d73335ff03920c82602e73c83d

    SHA512

    5d79c10c6b6e90faeccd3e4875ceb7976369dd2ee39b326e9d6723c1505ecac7c22058046ce933e99ad4840ed783d0aa11a91a283258c21fcf45513d7a309009

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/cc/cc.db-shm
    Filesize

    28KB

    MD5

    cf845a781c107ec1346e849c9dd1b7e8

    SHA1

    b44ccc7f7d519352422e59ee8b0bdbac881768a7

    SHA256

    18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

    SHA512

    4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/cc/cc.db-wal
    Filesize

    48KB

    MD5

    49f46a39c7178c514997361b2752c26c

    SHA1

    4fd63215b4456ca0d0f91312bd64aff0aa1a272c

    SHA256

    1d0b43f1512994c460ff42e0272da48e6a3e69644f7611ff851e8b8744359c29

    SHA512

    021001bf3b9c2ce621cab6583b614c015fc5467b43db70203718ba7a0391ed32999042f9fecd8e97e0399c4b2c3942c8348f5c0715eff019035e396be2ecab38

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/xsbook_db
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/xsbook_db-journal
    Filesize

    512B

    MD5

    ce7a79c30b36a08a08071b867b4a4520

    SHA1

    7e01e7eae3ae62ee80841132d0d1465f7e38aaed

    SHA256

    855437610afff9e4bda5d95db766149411bc34c7815569e10744524f1b1da4a7

    SHA512

    35615d3637501e00673fe6d0d57a2097deb081e04f2cbc39bc415e62edc95a3e9e158bb5467957502e0d3187a0652312e6c7bcde058971f22b2028b94239974e

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/xsbook_db-wal
    Filesize

    80KB

    MD5

    1b20af97a6f3c5898efaf29f7b82090a

    SHA1

    0c8fc87c23f65f8ebb15b03a7ed5afaa2dab7434

    SHA256

    fe3124c91ad8b1429f603d6ef42648210bde8e3d89c9ef23996e3095588cff90

    SHA512

    394fc9bf9f1609d5558dfba75a712055c4d235e49bd5cda15500952a124bdb35a65853e11344b33213c5c23de7440d51d2e10869a857a1e68d2b4ebb0ba1873f

    Download Submit

  • /data/data/com.xs.xingyunxing/files/jpush_stat_cache.json
    Filesize

    119B

    MD5

    c7c3c335e036869014131eb988c1c204

    SHA1

    7b0c32e453f5cb3c13405543e44ba8866608ffa7

    SHA256

    c8719b7dd1d84b7ac081c39f3f000e801339e0d5f9c9ebd21ed07931305287cc

    SHA512

    c7c9ad86d06f2e5e2c0263c5088f84b7b5aa48ab43ba0af873b6e5b73782900619ff47a951f579f5be6101b5e005cdcd5a0912bd7eca4a837040b468b90796fe

    Download Submit

  • /data/data/com.xs.xingyunxing/files/jpush_stat_history/active_user/nowrap/75c0787a-dfd6-447b-ac6a-e378b2e8e0c2
    Filesize

    159B

    MD5

    134b4c06dc5c1ca9d8e8320f051eb39d

    SHA1

    cba9c2a82844aa218288f0dd76f58bca408a773e

    SHA256

    910fd3d4767ee827e333573f1d9f8ffa3f9bde1de4c17ed519bf7b9c2cb7ee21

    SHA512

    76862093e930ec6aeea311b7a4f5cb0065b562357b7186051e06fb1af6c8b8e5f1e6b21cc8e466f2697e7300ce6fbf9d10485353ad1b4d5d7377de261fa36f41

    Download Submit

  • /data/data/com.xs.xingyunxing/files/jpush_stat_history_pushcore/normal/nowrap/07eecdac-8952-4174-9735-561520238188
    Filesize

    202B

    MD5

    e76ee26317c083886025a94a2121dc34

    SHA1

    15343e55a086e22bad3077c275f4e0dc71970df4

    SHA256

    dcb5c355cdaf077ca5705935d819dac1fae01d8bed65532b802959ce7685b7dc

    SHA512

    4a23fa699db5c68bab13bcfe7fb8b30027bb0ab6d3ae071c577501470a8d369e1b17ee9d207fa4045132b5b9d1573ce85576d0ce03756926bbb43603436b3e39

    Download Submit

  • /storage/emulated/0/data/.push_deviceid
    Filesize

    32B

    MD5

    df2c8dc02f6e70d94dcbb15cf3c588be

    SHA1

    681b4a2e846d7f23849fed5cd38b0c4e0cd603a0

    SHA256

    c5464982447b6a75f3b94ff3c85c468d377a7447c95846178d0fdf5fe5556c2b

    SHA512

    f6b5e7fb74c7d79d6716aa9e0f3a6cf05113dac1dc4d6bcb084f6dbf6bd287ab7cf9bac879ef7d2862fb1c7dee2c3f151771a6a2bc1b41c70416ed66b2cf9bdc

    Download Submit