Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

8

4f8a672a64...76.apk

android-9-x86

6

amap_resou..._0.apk

android-9-x86

amap_resou..._0.apk

android-10-x64

amap_resou..._0.apk

android-11-x64

Analysis

  • max time kernel
    4052919s
  • max time network
    159s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    10/01/2024, 04:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4f8a672a64abd49f0dc95186d239a076.apk

  • Size

    16.5MB

  • MD5

    4f8a672a64abd49f0dc95186d239a076

  • SHA1

    b0a8a5121e08070d153c3c12dfeb8b4e3d3fd0aa

  • SHA256

    0e5b96053aaa167112958943829b093a2dd4640cd5dd01031ea3ed815f68cd1f

  • SHA512

    a8a19ac409e7076723f8dd8295c42d2e820c98869c3757115c29e19d4ce9ef6b9500f883521e4bc98e55ca9b2e1bf26b9d4b9ce5a2f3379b24e26248f4b0aa0b

  • SSDEEP

    393216:c7Kis05ME9YLcMUnb3fDqVD8zv2nbJEgPN8zv2nbJEUPuv:733qqcNDeVIzv2bJnyzv2bJS

Score
6/10

Malware Config

Signatures

  • Reads information about phone network operator.
  • Requests cell location 1 IoCs

    Uses Android APIs to to get current cell information.

  • Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

Processes

  • com.niming.douyinglobal
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4263
  • com.niming.douyinglobal:pushcore
    1⤵
    • Requests cell location
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4295

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.niming.douyinglobal/databases/jpush_local_notification.db
    Filesize

    20KB

    MD5

    4835b314750c5bb9163825490f2a497e

    SHA1

    1e27831e5f67d24a35dc038b4c598dec83c9f3ba

    SHA256

    569e581aa1ac9556d682f8c73e291a0cccf74c379af388916a097933e8a06d25

    SHA512

    eb44a7ff3e5429c887de131b8f541c721021eb9c378a955caf34d86904bc00f6a7355a69c98587f55233957015c6daccd07dada9409be68f189fa421432b71b7

    Download Submit

  • /data/data/com.niming.douyinglobal/databases/jpush_local_notification.db-journal
    Filesize

    512B

    MD5

    caf67b2a3d91daa2c6c980b6d850204b

    SHA1

    df7d4aa4f19839e5612dc72f3d2e2ec8299218c1

    SHA256

    087cd40304fe95068ca23169f76af5f99e04ff5dfc5f4b613ad7cebf1c616a4e

    SHA512

    b40321d022852e0f9ac8a0d40f6a4f9afcdd96fbd1de6b1d7f439b2156901172bfb3a2c573b41009b1aed5befcdbe0a0eb5a838ee9b9dd28b124dd15bae8e38a

    Download Submit

  • /data/data/com.niming.douyinglobal/files/account.realm
    Filesize

    8KB

    MD5

    eb897aecb5f3a5f47dfe0dc35b13a2ef

    SHA1

    24d52ab70f6d78c4c2c1773c57d311be4666cf4c

    SHA256

    e4e81af2295a5dabcce75a59f92f657b90ff5f12a4e95f635b79ac5c284f35e6

    SHA512

    4212f4f81cd694dd9290900fde382bf982921edab6755c62e2130db970265acebf59a7cbdb97d6c28dd2796699e969234db5a2053d4e9fb3555e173bca7b412a

    Download Submit

  • /data/data/com.niming.douyinglobal/files/account.realm
    Filesize

    8KB

    MD5

    a97223bcec9bd3199b91494a33eedcbe

    SHA1

    e7afb2a324757e037240218a53afa8cba3005c7a

    SHA256

    c7e63db14ed1671e9ae711530722c666bdec67574cf13159c3953680c4be8180

    SHA512

    e822380847f5f3832a59bac9f0985872252c83479b193b864ddee86d45020e9dfdd1cbabc58d90fe10112af8ca48b860dad4bbd742fddb102b629e4d349b2f88

    Download Submit

  • /data/data/com.niming.douyinglobal/files/account.realm.lock
    Filesize

    1KB

    MD5

    c3e4eefedd55eae4334456daa4aa0ad7

    SHA1

    ba9abe2d4d40bbd94530564b6eb178ec02a47204

    SHA256

    7081ba3d8887be22551f56b5f50da675bda7dd02f40e9fcb150ac84fccbe387f

    SHA512

    a302516427a81e59fe955f4316fd56b8e5207542b1abdd7eb3fc2e9dbc669849dce90d12d9160b59d45af233e63e2156f3a3f1e7807b7ae1b1225a94d472cea3

    Download Submit

  • /data/data/com.niming.douyinglobal/files/jpush_stat_cache.json
    Filesize

    119B

    MD5

    85560e9af0728196cbe09a7d00c675dc

    SHA1

    2d0712d2c15296eb67592e55667985a115ebf25e

    SHA256

    337cfc6cf6cd24f3c4ccfee056e3d33584cad68c097f08e869efdb0f8d0c2c61

    SHA512

    99886edd4c253c99db9a6febdf52bb21f852b3b0d453b1c7552c2b4fd37a56e101af596b0b8dbb8fe4783f18e8693620bbc07101013548b849bb8d32cff0de89

    Download Submit

  • /data/data/com.niming.douyinglobal/files/jpush_stat_cache.json
    Filesize

    119B

    MD5

    a8acb64cca0d2c21a69c186ca484dcc6

    SHA1

    4c6b3f6de8a3c6d5b138a9d94946c8fae2d2c224

    SHA256

    73a9218a2dff3cebbe4cbdce52ede1ab9576f14e53a18d9caf5d2ce0e00896df

    SHA512

    5fc59f753d73a4e1e07e0dc62c078bd849b6e3ddd8f8f3bf30e17d2bbecc399da7ed8344771572b10b3eaf3948fcfc526545215f8df6b4a024e7767990cfa488

    Download Submit

  • /data/data/com.niming.douyinglobal/files/jpush_stat_history/active_user/nowrap/96324cd2-365c-4ccb-b1c6-8e5760d29f49
    Filesize

    159B

    MD5

    ea56b42d6f3dfc009e69a957457cc9e5

    SHA1

    b29c1d4c91e0b1931fe9ee84f64ef1d38ae817be

    SHA256

    bebeb17c45f5dfb779e92ebec028f344a94519e2bfa776c042bb6cc6a376f009

    SHA512

    2175c0db72bbd85ff77fbe4ebe12238ffe4cb53cb1b4dfe456eb7061c1e8f9b34675bd8a21453e293976a41f5411c212064495ce76738c4bc095bb48d447d395

    Download Submit

  • /data/data/com.niming.douyinglobal/files/jpush_stat_history/active_user/nowrap/96324cd2-365c-4ccb-b1c6-8e5760d29f49
    Filesize

    408B

    MD5

    cf3311764e147e19ac1bfb28e3cd12d1

    SHA1

    e74935ce11ccbf5ddd2ca8abab96f96cc44e5182

    SHA256

    4292f074e4b437dfcd99438b00a345d42348286f855b297d5feb16880c6f7e70

    SHA512

    6c4b31824e7789d33770a315590ea2ad0cdf49b5deae71182e1c62ea042560deb26d7a380c96baa73fa3d78d5a47e58485741dc4607d967a3370338998c7259f

    Download Submit

  • /data/data/com.niming.douyinglobal/files/jpush_stat_history_pushcore/normal/nowrap/a3ef5bda-975b-4207-a1f4-3ec029a2db68
    Filesize

    202B

    MD5

    e0f4a0748c25b6b6de6906283a9e5cde

    SHA1

    fcd60848dd4e2230ba77931cfe96774a7e82213c

    SHA256

    21fa57adc84ca39ee62ff2c5afade1abb6682227ba676b69b7a0a78896c112a4

    SHA512

    e5ff85d0557435c995d3d0ccbc9861747bb4695787a506b0fd15d748cdc6f279f424a7c8e4511d17048ce9ee5a961834263b1ab89f15fd1fa5fa15465fa7f153

    Download Submit

  • /data/data/com.niming.douyinglobal/files/jpush_stat_history_pushcore/normal/nowrap/a3ef5bda-975b-4207-a1f4-3ec029a2db68
    Filesize

    451B

    MD5

    63e4dae5a0b5eeedbeeb148a7db62035

    SHA1

    fdefa8d3c94f7b94fa78fbf0a7981ffc6f54112e

    SHA256

    790a31dd87018a1459e65594098457fec45f7fcc085ce23a1ab6db3498b8e720

    SHA512

    53b0def38dad404844238c5bd34ecd98f2f372a43cf569b498d33c452d6a1abce853434865223003983be52d23d98e6d622ac479f0cc7a931e667d9f785d7dcb

    Download Submit

  • /data/data/com.niming.douyinglobal/files/jpush_stat_history_pushcore/normal/tmp/0016e592-cebc-424e-b443-f4f806ea654f
    Filesize

    12KB

    MD5

    e48e6bec055c9568f14abae0477da967

    SHA1

    7ca45f784d3c6537f8cd50b6d3a919a1e4df782a

    SHA256

    c02df602df59edf831762ef2a8813879367400c43dd13bef5339e74fe8a4abd2

    SHA512

    481cf69179c3285b54325ef9de5d9ecde51cb88be71a3ba93e21a8786b0c7f6cdeacac584b19642950807e241c76e7b2135df41c5fa45f7bf3dad1b41e32aac4

    Download Submit

  • /data/data/com.niming.douyinglobal/files/jpush_stat_history_pushcore/normal/tmp/0ed2c387-d64e-4d99-9781-87d8a4a4fd70
    Filesize

    12KB

    MD5

    e988200e8e6f1509c2a6451bad85a43e

    SHA1

    e177a64374ff6af1c882462cca5c2292a483092a

    SHA256

    bf24d8867dc6c2ca50b430cdaed9e7adf51c9367a15b6a8dff0cbe3acdb2f870

    SHA512

    50f2122a14ab91b4b3d1ba45dec886caca4bfba5c6bb86fb4f0cc5d0a11a75394354a77b5ef89226a6905e2f0640ea6174b28de2d08fa571e20d0461799514e7

    Download Submit

  • /data/data/com.niming.douyinglobal/files/jpush_stat_history_pushcore/normal/tmp/b095ef2a-9971-4e24-9895-bccd3b3fba83
    Filesize

    785B

    MD5

    ad299bcf2680715a66f9e245274e08d8

    SHA1

    25ee3f5c03dfce3143640edf3f1e47b7089b5f7d

    SHA256

    986e413fe11cf60e0462df0866072088eb3f79f159d205f24b7c66a78f88a29e

    SHA512

    2b082f9642d0845a891ed67bf0d13adffa9ec1cf6ada09018f7f3f58dc94f3789e60bfb214d6fb744493d988e17aa4a8f56b209a29880567beb989bc4b08dd69

    Download Submit

  • /data/data/com.niming.douyinglobal/files/sport_motion.realm
    Filesize

    32KB

    MD5

    00214bd6953ca87d52402aa9d7051922

    SHA1

    2da1aabdc41c077e2c05011192f81a2f6a1366a7

    SHA256

    35eda719102d57d21d8c8ae1c4db8ab831009e4a070acb4404c0a3e4012d1e3b

    SHA512

    a8c0670691af8af844a1de01a4efa557b0384913e464d85f47e8cb7e5b6483e2946a0bd8718e9891a9dc7032568abb758a0f11e37d68955cfe06a0c33afe5f91

    Download Submit

  • /data/data/com.niming.douyinglobal/files/sport_motion.realm
    Filesize

    28KB

    MD5

    407b0dcab2413562701e488b22ff1fe7

    SHA1

    41962c3525a6361f5316edf332421f421044d2b2

    SHA256

    81dcf2f387def6d3f53cf5073870bcc77280d8d7f127bbe971b9be3ff19d323c

    SHA512

    c5d13a5648cbe8d7492a8fd2d11e1e147f526f216fbf66deedf6582846f678b048a93d943f925797bf783d5c5c567582ddec51081d0d504292fa08ccbf423275

    Download Submit

  • /data/data/com.niming.douyinglobal/files/sport_motion.realm.lock
    Filesize

    3KB

    MD5

    d2daac5a6eaee0da61b4374520257232

    SHA1

    9c96e05c03209c9d10d282818d154dd8aad4502c

    SHA256

    00d1bdce0caf2396923e77afe77ea6369e10bfdbb2c60f9bbd11b30f32080431

    SHA512

    a2605e543f9fd5e432141591b70421b04b6506b6fb3330dbc0feb49af30ee1383e3022aa32b66365e3f26049a6d6c5238f9eb2ad46361425fec2192b6425e564

    Download Submit

  • /storage/emulated/0/data/.push_deviceid
    Filesize

    32B

    MD5

    cbb61ba10a0f4cecf632549736c8416b

    SHA1

    220f0693e743d9744e53f936156d1d8634094bef

    SHA256

    b914e34d47e14aba60f962dbdbeed94b2ef668429ad8ab4a1badf47c9346b1cf

    SHA512

    10cb49031fb4fba8a13ea9ce5ebf2bfa81cd8da89325265df23a1a1a7e35a4a4f9e8071a290d4a449ac642c2fa92373164b8afda713196e09498be6f551e1579

    Download Submit