Overview

overview

8

Static

static

6

2be2e2fde6...d3.apk

android-9-x86

8

Analysis

  • max time kernel
    3676546s
  • max time network
    130s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    31/12/2023, 06:36

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2be2e2fde6e583ae1d4c823851f827d3.apk

  • Size

    8.4MB

  • MD5

    2be2e2fde6e583ae1d4c823851f827d3

  • SHA1

    7258f3caa02e90694fcbfdb36cec29b522604595

  • SHA256

    8b36d42269087f57eda72646ec775c7cc34c598484f6f270f7275c93c51a685b

  • SHA512

    639900a11ee0a3ba617683666563194b3e84198479e6f7e7705b79d849bb1bf0146a655ed254779b391806b58c790ddc84ec852ce360475f890005ec8c867ec2

  • SSDEEP

    196608:idYBEJXFY956jNx9ZNy4wU/TLX2cWO/V9ZyE9LlKmXRb4oko3O:idY2XWTk9O41TL7vV9ZzLlBXd4oh3O

Score
8/10
banker

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 IoCs
    banker
  • Reads information about phone network operator.

Processes

  • com.qfyu.kcp
    1⤵
    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
    PID:4242
  • com.qfyu.kcp:remote
    1⤵
      PID:4279

    Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/data/com.qfyu.kcp/files/jpush_stat_history/active_user/nowrap/8d871fec-d84a-40a7-834e-32a8f54a02d0
            Filesize

            159B

            MD5

            6e4a3bea7a15b90f7649e186cd216bbf

            SHA1

            4006934b5997a4a35c485edcb10db0d0371a4263

            SHA256

            5e469a0aee7426f1852e2a90979af02dabc84b4c20b5f2446ae66e7983c8cd8c

            SHA512

            c6a08d280f3b01ffd6ae578bfe7928523b9a78d866fd04936f642d0e03905ae9c7433f1c40009e633f1db26cd804b330ba70a341e1772d2b292a258dc07c91aa

            Download Submit

          • /storage/emulated/0/data/.push_deviceid
            Filesize

            32B

            MD5

            f479f26c0579185a6043392696ac075e

            SHA1

            47f5b0419a87c00c43f18efbb8e258b09302af85

            SHA256

            ece26b8fc99b9a4070f28d2346bef92a42f861d6d7c6a0cbf33dee58718dd6f4

            SHA512

            c0ba272ffd092141623b6eb4cff24742334d725b664c15a04def623d0ad84fe52efeb09c8e5dae6273245359ef6ce1378eab38de9278918c99b0c6b91787420f

            Download Submit