Overview

overview

6

Static

static

6

2691adbcd0...d2.apk

android-9-x86

6

2691adbcd0...d2.apk

android-10-x64

6

Analysis

  • max time kernel
    3357058s
  • max time network
    159s
  • platform
    android_x64
  • resource
    android-x64-20231215-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
  • submitted
    31/12/2023, 03:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2691adbcd0a1ca5e17a6f840702b7bd2.apk

  • Size

    8.8MB

  • MD5

    2691adbcd0a1ca5e17a6f840702b7bd2

  • SHA1

    e8401094eb4feb2b3afc059391a87ab978497fc8

  • SHA256

    dd8ff633a34f6573ecabe8b3fa27feb49e7099ae1a88e2b5d45f263b1ed1a010

  • SHA512

    bff581cde10276244289ea27028b527ee6ce3b9dadb1c538ccd3ee0708183e8bf7903b566013f3c521da8a8621cb471ce7e4782fcaf125167803acaa86f1ac5f

  • SSDEEP

    196608:td1efcaitEDShotrZYHyzl6Nt7t1z4bqULafxOJNfPhtXt6t0lKtxHv3:trefLuE5tVeyz8t7t110DhtXt6t0lKtZ

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

Processes

  • com.xs.xingyunxing
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4984
  • com.xs.xingyunxing:pushcore
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:5022

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.xs.xingyunxing/databases/.ua/ua.db
    Filesize

    32KB

    MD5

    4ce764f73923f01745e3ebad7be87a79

    SHA1

    ebf97e70f9e753e4de835cd0d727c45eea514dd1

    SHA256

    4778aa6057d83cb3b2a2e00095b4ed1384f89dfb65c645f93b1e5a14e6194c75

    SHA512

    ab49cd06aef149a50e1836d194cd82d17ffb342c314464d6c703887eb6843f6c1641969970424b7126721b3e79fb47bed6f5464fb7191d5ea2f0eb26354e1e3e

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/.ua/ua.db-journal
    Filesize

    512B

    MD5

    4b9086455267f675abe0caff0a830ede

    SHA1

    c44c615bcc193f841edba35829f96750a9186066

    SHA256

    773b05f0acc6bd89b44aad5d38878516d28ce275f6cbe7142cabbb5f8c12acab

    SHA512

    73a5503c61955e01890df27c95b74a74aaf429d58902ad00514750d5807e63edc3e9de53a267082f96b23f3e74f9fd46de19c989475161f5cac652bd5b51fb95

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/.ua/ua.db-journal
    Filesize

    8KB

    MD5

    831e33d693e4eee8ffe5deaeed4ef0d8

    SHA1

    ecc997b5cb92d317960bf1e2dd93da6d50d97b75

    SHA256

    05fa2e56d9ef484030cdd02dd8991d7a263c0737ca14ce1cf582f326b0ccfc75

    SHA512

    c422329c2a68867715cf3529e76a25bc7603f801d850afcf9f78d8fe4d06231b913ad93153e4dc0a9e69b75b88d1b0b1f66f40825b31e4f9d9c904e6748ce87e

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/.ua/ua.db-journal
    Filesize

    8KB

    MD5

    b8476ec031801c9706dd557df8ae4cc4

    SHA1

    e5bda4a0a11bfacdf40ede2aa33e22507c78d53a

    SHA256

    4f7e911ea902fbd27886f18de6eda7204cf91ac94c1f4bbaf0f428577148cf33

    SHA512

    128667cce4dc4f01ade973d01c058de9592a606c87aaadec106eaed2c8f0e5574e490cd7952fe15b9d810736125dcf9c960c28f8608151582c93f2d388a9983e

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/cc/cc.db
    Filesize

    36KB

    MD5

    0908e924aa236931dc7166fef6e00862

    SHA1

    7782648d6d8f6e835bd47058d4852932c096a467

    SHA256

    38f8548795ca7470b449dd1de9598c07a247ba59883c0764c9c96ff0b7d31d7f

    SHA512

    3c16fbc5172aed04cd206e776c46d26e911732c6e3631536410a71f1d217449475727ac9b3175e827c5ce645a1da9e05900258ee6ca27c936a9060f241361dee

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/cc/cc.db-journal
    Filesize

    8KB

    MD5

    ae03c71d9611452ff562e03b258bc4ab

    SHA1

    5a522a26ce1f0e38419744af2bea2d82477950f5

    SHA256

    46292e1a7ff68837b448a04b5164a646e050579e67b74bf0d18754ad4bd3104f

    SHA512

    623c598b24e030acb38f0338f3fef88e2dbd185c3381e7eaf3711dd1def097769b25cbf8bc08a01309105feee1b35f0eca501c37aa161ae7257af82c57ea4f3f

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/cc/cc.db-journal
    Filesize

    512B

    MD5

    93b1b915f0411aea9e41dcdd20037846

    SHA1

    c3b92385fc5770bfbb1e2201500cb99b12e40193

    SHA256

    da0ac7bd5f28c3edca71b5d7e5d8e5b0ddfd0d7c0b3984736fecfbc793f962fa

    SHA512

    0bd6763719aa1d66c3647159f3e43dee2d36e892f0fc7e302a2fd25eb640f1149b3c1f79dcab5a2dc3b14045a1852fa3ab67d5b02e542f380e2d4abbcfcf16f1

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/cc/cc.db-journal
    Filesize

    8KB

    MD5

    6514c9f1e603f09bb3235c7711696f3c

    SHA1

    50c8b06f42dcfeacc3307c0b0a4a7eec1914d250

    SHA256

    055b809df71c2bf450d2fad94090f5026059dc0ca2496d172df329a9a364e6e0

    SHA512

    fe520d07e9141b057a661c7c3f1316019f4a2c457ce96f1b264dbcf0f4aad13da8e3c18cb4f13e0e708b524861573b32b5a5ac500519f45e5ea3e7543d7c23c6

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/xsbook_db
    Filesize

    60KB

    MD5

    d3e07948cb7db628f2fba464220abd4f

    SHA1

    feb830edbf7b5c6b859e5ab48731e37283fc3238

    SHA256

    e4082cb57fb14445a8bd4a661c770511948074d5a15329582bb93a1be6a4b9a7

    SHA512

    e4c19fe4e3d35c0d12f1dae362e9d529ec9be51efc87408b356afe802dfed88b59cb1336ea7dc900e58857c05ca693ab17c10f6bbecec42dbd7ca6ce07633355

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/xsbook_db-journal
    Filesize

    512B

    MD5

    a01358e124df542499c8a4f1fd667dce

    SHA1

    7218ffd3c18dd0cef9440e92c2a5becd89aca990

    SHA256

    bf163e63e8ef34d779424b200fb6c6bc22f41b1e4dd89deaf08d1f0fb6ca5cbc

    SHA512

    0d776c9bfa8132f5fbe8bf35aac4278e685ac4dc37d480feea9f8325c7e360aaff32c23c67d52c332ed8feaec38cfda2112ae786f1046952cdf673ad6365fee1

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/xsbook_db-journal
    Filesize

    8KB

    MD5

    2a6037203f691c29c98f8a773dc0e50a

    SHA1

    47e914428f726d427215f4f83b9685216ddbab01

    SHA256

    1ba1967f40ad1799d10986451762789fc0964843981b4991594719468841d82a

    SHA512

    a0d1d8a886ef9ccd1cb5576f2c102aeb9a60e6b29426b92f50cf7dfa3b261f11a0602a1551e26b99c1a873e3cd6d852daab21c40c01de330712f1c68a3768f8a

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/xsbook_db-journal
    Filesize

    8KB

    MD5

    bda543ccb02da44c87a5b0a9bd6a13f8

    SHA1

    c0747a7f39b9e02a28a2a6c91539710837b96452

    SHA256

    19a4491277bbb8a3628f7e105bef7b496868704b50621bdb6dadfd5f477b2407

    SHA512

    db67db5927de275aba648d0729814e768c727330219f7849cd262bbb4dd35ad3ec603952e0918dc76ea7606c70edda4bbb1d1e1f9a7b3b9bcc8c0f17d16dd858

    Download Submit

  • /data/data/com.xs.xingyunxing/databases/xsbook_db-journal
    Filesize

    12KB

    MD5

    7369fd9916f8a67ec266e1f83b6be7c8

    SHA1

    f0c55b0182209c4c24617aed5595c385f5380c89

    SHA256

    8106e8a2ac08fd008584099adcc0ea80aa8e7a496f7129be300470bb11e61619

    SHA512

    ab9e41cabeab3c6023376aab00aa9189692c91c2906d25fd5f64cba4589fa78eecf75cbdba00f5db41ab317ab09f31701e7205abbcd7b9de72219003aac11677

    Download Submit

  • /data/data/com.xs.xingyunxing/files/jpush_stat_cache.json
    Filesize

    119B

    MD5

    13fcb0f2ecc3d720ec3a43deef4c5947

    SHA1

    878c0adf719b9f99352138ffcb8294bed783be07

    SHA256

    8fa13a253b70557127a76ad3e7cf88186736270fd659d33b3aa3f94de8a7fd1c

    SHA512

    1582fed139db28902a1aec588f58281e8308610b2fbef6ce44054c300ff4c0e4b8dd989bd0fac107f42dc6296c8c21d0cf0254b19d7257f71a7ee52c6dc82b00

    Download Submit

  • /data/data/com.xs.xingyunxing/files/jpush_stat_history/active_user/nowrap/4235dc34-110b-4b9a-b0a1-152e075b19c6
    Filesize

    159B

    MD5

    0a607eeed44129d17b663d13eb9bffa9

    SHA1

    f1c8cabd0968d3cdc985fe49c9e0b38f237d4315

    SHA256

    bae3cb30e090dcacfad45495cc36146016a28380ac1b425481b2f0f376bfaac3

    SHA512

    0cbc49e0457a35be94766ee1f417337333ba922e3fab6cc77877616166fa043bac26d8a53384c7a7bec4318845297c5f2bddfc5fa2b42594d0680ec56a42c80c

    Download Submit

  • /data/data/com.xs.xingyunxing/files/jpush_stat_history_pushcore/normal/nowrap/5f11e149-94b6-43df-a47b-70d6b5ae1cbb
    Filesize

    187B

    MD5

    0c0a4c9530b1004635f11ff3fc08c157

    SHA1

    87bf50b5fe88851033f77b65e7b1ed437b80f505

    SHA256

    2956fdbacaee52a9c94bed3e558add8796c8bf79de677ba582542d1bd8f3402f

    SHA512

    c21e41d9d3b7be04fafc84b6931091549440e1d4348d4c31c33a5a49b226b636fc62efe5ae117e1fab16c4eb67e1f528eb922a64bd109ae83a0e015d35d6c798

    Download Submit

  • /storage/emulated/0/data/.push_deviceid
    Filesize

    32B

    MD5

    b62f48a67cb609f3dd7ee5ef0743da94

    SHA1

    63fc6d9cb85e1bdc5618c9cde80a2f53fd8a5348

    SHA256

    c0b61af105320a4adeff04ce346858b2eaac74ce3a35fee760963d1929c722f6

    SHA512

    767d6e052503422fd1a67bfb719e63278390ad79f678aa9a0354895345a21828a3c7fad6968ad21e063c663d69fed0d23de46b1c74546faf9a064ec8e5e9216e

    Download Submit