6a07134d73018d407dd0ffc422978bb53b17645f0a93b166a7d9e4a52a3b0e7d

Analysis

max time kernel
124s
max time network
159s
platform
android_x86
resource
android-x86-arm-20231215-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
submitted
24/01/2024, 12:04

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7231155b7e50d349699aa04c19b27ff3.apk
Size

20.5MB
MD5

7231155b7e50d349699aa04c19b27ff3
SHA1

abb53e2ec8ec563128ce560c5cc49dc25fac615f
SHA256

6a07134d73018d407dd0ffc422978bb53b17645f0a93b166a7d9e4a52a3b0e7d
SHA512

2e8b7d49170813fb08a25ec0ddc6e7da3c03608a4de5fc8d25603dbb05cd791c20d76232e9a7460ef65442b8d37e1b699f8a5b72866d4c9dff24ad255233702d
SSDEEP

393216:mUBo1GiMmGSgvFvvaiIwPUlDyCVb9OzRurApH3Hr32E4WncDkZI6ckIAK7Bwuil:b2dMmbgJvaeUlD3VbMqYXL34x3AKw

Score

8^/10

Malware Config

Signatures

Requests cell location 1 IoCs

Uses Android APIs to to get current cell location.

description	ioc	Process
Framework service call	com.android.internal.telephony.ITelephony.getCellLocation	com.baidu.lbs.commercialism

Uses Crypto APIs (Might try to encrypt user data) 2 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.baidu.lbs.commercialism:independent
Framework API call	javax.crypto.Cipher.doFinal	com.baidu.lbs.commercialism

com.baidu.lbs.commercialism
1⤵
- Requests cell location
- Uses Crypto APIs (Might try to encrypt user data)
PID:4214

com.baidu.lbs.commercialism:independent
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4267

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.baidu.lbs.commercialism/cache/cache_net/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit
/data/data/com.baidu.lbs.commercialism/databases/btechainh.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.baidu.lbs.commercialism/databases/btechainh.db-journal

Filesize
512B

MD5
cab79f5c29b1d67010f7b2486eecde48

SHA1
7cd9ed967e9ac688c8dd5caaa14a03fbc10d4c65

SHA256
6d68776e2dd3cfe8a58ee618b5d39b5ca3a7324b9d5e872f7f3fa1e20a9f9679

SHA512
0b680777805124ef02dbb1e4aca0323b7ba0b843c730758a76f6c0f63f1c83467e6f26dec0ccdbb6262e8c932f3ae0e1e27f2c86982fa8868a3466c2596afada

Download Submit
/data/data/com.baidu.lbs.commercialism/databases/btechainh.db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.baidu.lbs.commercialism/databases/btechainh.db-wal

Filesize
32KB

MD5
512048956c3edd9ae471b2f502c5ad03

SHA1
14d7affbcdd67d8b8718366b307374e94c3222b3

SHA256
3c79e23420b6fe4edfad48ef166d1f50a601b6f89cef6b836e108bb8a31a5c62

SHA512
5c1c39df7ada710953d8bdb5cfe8b8691843a65686fd2407b4638c2a2d646d86ba1f4b776fbb1128a62dfe8c4949bc2c31afa49a841a0b710503197eeb00ca1d

Download Submit
/data/data/com.baidu.lbs.commercialism/files/__local_ap_info_cache.json

Filesize
2B

MD5
d751713988987e9331980363e24189ce

SHA1
97d170e1550eee4afc0af065b78cda302a97674c

SHA256
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945

SHA512
b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

Download Submit
/data/data/com.baidu.lbs.commercialism/files/__local_last_session.json

Filesize
115B

MD5
519b2d185cdf07958d4a6784216e307f

SHA1
f3daf77024659a7e4ed0e78343e146c6ffa39d9d

SHA256
a4b13a33520db7c7c38b7d3d75cbfe9d358a36768d94895b6d7e6f2698211300

SHA512
fcf4403ec734e82ad593955af596c202b16163c4a876ae572708b8e212939098fa08a96be8a53760f751ec1e7c5f2f158b9645da99e4bb2d065066c5eb3f7c1c

Download Submit
/data/data/com.baidu.lbs.commercialism/files/__local_stat_cache.json

Filesize
25B

MD5
2d805b13f2f28dc3ca9bbcc000f49bb5

SHA1
9eac165b4d81258fd3967cde5cc53b53b1dabcb1

SHA256
c8a6624f390568f0ddcb9841336aec6a564460fdaf6624e562b32935b8956f19

SHA512
5db8c57bab36bcf9db698c1dce70318cbffc156dd1d1c1e09e5b7ba60aff07b598ebbf26c4bd8a2b03bd6e59ef2dde2d944a22a8d8a19ecc8378e83afb7c83b0

Download Submit
/data/data/com.baidu.lbs.commercialism/files/libcuid.so

Filesize
129B

MD5
231f153c0f598b02366df43caea2896a

SHA1
b50a8510f28912aaa1f11e7db088ffbe10c99614

SHA256
6bcd3597b9618da1811f23437c6ee1a7d0c6c4a60207cf8a6108cb6d178cda8a

SHA512
fd09e29e17e4f59f79e9a2e4da18cb24fa3a5a3a08243bae1728f1e48de63bbc5ce484a49de3c58cb33a103c90df1e36b643d9180571a2035819fa724d24674f

Download Submit
/storage/emulated/0/backups/.SystemConfig/.cuid

Filesize
89B

MD5
7b838f367597adec4b0f75a349baccf2

SHA1
c3c7caf305c64eea9bbc7b27b2606f5650196c82

SHA256
b52130d55666aff5ad18192dd3f68b00c37a957622073407ef7b49850d9468b2

SHA512
476cee38263c5e76fbb9948b70cd42dba6dc4d9215b31ed0c56247ab8097cf45b9bfefaa57e85351ed25b1f00d6e6d8030b246758f248c1c8c13e1e3df6a6bcf

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads