Overview

overview

8

Static

static

6

7b92b59fef...96.apk

android-9-x86

8

Analysis

  • max time kernel
    7s
  • max time network
    130s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    27-01-2024 23:32

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    7b92b59fef892442bf65c1bd8c307596.apk

  • Size

    6.5MB

  • MD5

    7b92b59fef892442bf65c1bd8c307596

  • SHA1

    4d0e81f6d7030f4e229ea1ff26fb65c1dbcd1dc6

  • SHA256

    67cd49d44ca6aedf0184b86f42f80e57b080e27d9500d00f5562d33bee929613

  • SHA512

    2cd35e20eb47c9f0dd89df07be0e8eee8662d003ef2b581d538e13516dace0064a127136e55597a689c88b0b42f7ff208af0ddb47d1d91fa98e4b48c5ac50fb5

  • SSDEEP

    196608:8OOmBPnMxx8K8pUddWXoppC282w58esu5FVf16FWv:8OOmBUxx8K8pkC22z3TVfqWv

Score
8/10
bankerevasion

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 IoCs
    banker
  • Checks the presence of a debugger
    evasion

Processes

  • me.weishu.exp
    1⤵
    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
    PID:4268

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/me.weishu.exp/databases/exp.db-journal
    Filesize

    512B

    MD5

    a7bdcb339c5d5f89004f9508907ec951

    SHA1

    0bb2316f89d9a4ba327aca2465dad297d68228b3

    SHA256

    ae86726fdfa902dadad1309204af8d18b04c075c3e717017685daa9fc0edd807

    SHA512

    c92980a6b5f3d898ab33fa99e8f46ae5b8b5147b7683167a95834fc61e7d7e7c5fc762109321c26d6d0b52f8e65bfc833bddcb3013f2f0ca992d9763ee2b9c19

    Download Submit

  • /data/data/me.weishu.exp/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/65B592C103AB-0001-10AC-264A31E058CDBeginSession.json
    Filesize

    132B

    MD5

    56b1380012a3b3d896aeffd9e68c4e6e

    SHA1

    cf27cf954fd4d0a7e8ce98633461cb2a92f77071

    SHA256

    82c7e37d7574cea517f4d07f77d6bb5d7023d59bbe0f3a69bd34e6e4fe944966

    SHA512

    c62040b8c933a56e00d4eadd2783366c47e1aeeddc208f3e197437396ff8bf74d897aba9db02b10e26cccd07075be704b11c02d2ffbbe603aa527d67e5b4b180

    Download Submit

  • /data/data/me.weishu.exp/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/65B592C103AB-0001-10AC-264A31E058CDSessionApp.cls_temp
    Filesize

    119B

    MD5

    a3ab2423578698daeed7d98cd11d8f34

    SHA1

    57b57ae33dd17e728b2d9e1adc0cd015f573f7f8

    SHA256

    53ad8562f4fab91e8266e94052afae51e60805d9cd12767019a8604d77962aac

    SHA512

    b850ad2bf2475419d566431d4fc65d6852b7e53ac24f933419c327104b45a2c74ddff63c3b6b1f1f6ec79c094707b2cf0e393a27b161d55f39e858b318dce951

    Download Submit

  • /data/data/me.weishu.exp/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/65B592C103AB-0001-10AC-264A31E058CDSessionApp.json
    Filesize

    233B

    MD5

    66d41ad2cafeec877ee96bf31fd325f2

    SHA1

    81a10f61273f2b96cbc958bdb164f7dcae8eddb3

    SHA256

    7a8d64833b6b96c7a509af85529bfb969b18810e6a946e326323cf010a9901cf

    SHA512

    868805567537d3a3aa773a6137d3cb1a368a2d433904106249a42584e0ea8a1bb61e95af1bfd4972e82ba988fca0439f4bbdc504e651359f41306ed5cee97a64

    Download Submit

  • /data/data/me.weishu.exp/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/65B592C103AB-0001-10AC-264A31E058CDSessionDevice.cls_temp
    Filesize

    70B

    MD5

    13f0842d995695838f7d206bafaa04af

    SHA1

    4f1cc7fe2ff9f358447178b5623369c806ea2831

    SHA256

    5f43166ff80a729e0cb424c0d5a0e19ede541a96bb6d8b996f47d9edaeb4fba4

    SHA512

    f6ba011460b0b6ccea6876d3a68e7890c7b255e934421eef73c93dfc1df7c5e1478fe30d8842e7e8a53fd6b62f1b84449092a78800c95af7f9f61237dd00b863

    Download Submit

  • /data/data/me.weishu.exp/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/65B592C103AB-0001-10AC-264A31E058CDSessionDevice.json
    Filesize

    204B

    MD5

    107c823513bc682cbb6be31ecaa4130a

    SHA1

    612f93c372d26c3b5fd989f38c67819d6b6bbdbb

    SHA256

    1dedc3df4dafbfe9725472bff2223618f30aa99665fa7991cd3481dbe1b30d16

    SHA512

    c71baa43191676b197bfe814fe4c8d42bb89743e2db01ef0783ba1804757459fb38ebeac99ca47a5641bf71344460275c897988ef503d22b6f84a7cc314cbbcf

    Download Submit

  • /data/data/me.weishu.exp/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/65B592C103AB-0001-10AC-264A31E058CDSessionOS.cls_temp
    Filesize

    14B

    MD5

    9b3d4522944ce6396563812bfdb92fa9

    SHA1

    6d2a6133c8f01938a48ccc77ef86ad8ca335c020

    SHA256

    d32805d685a3f50caa7f1c0bd7c8804c4d937a866513289f60e3184f7a591ed9

    SHA512

    091d87643712530bf9006135db42a5a50742bb5ca3026bcc5f2c1c17bf4fd984a8938d29263b0abde3d15cac196d2230902534e200b0b79485e3a1bd97d95727

    Download Submit

  • /data/data/me.weishu.exp/files/.Fabric/com.crashlytics.sdk.android.crashlytics-core/65B592C103AB-0001-10AC-264A31E058CDSessionOS.json
    Filesize

    54B

    MD5

    93023624eb8dff5c20050da136aaae0a

    SHA1

    acfd1ffed752c28fb135ba83c0c6345ddf2f6995

    SHA256

    968bcd7c4f1abed89a09cc0e6dadd238a81e8655e64196b39a86be49ceecd39c

    SHA512

    bb25dfa144d3f0e17203936c503c5fedec5f9ca710e177f99e273010ba4a682199d4bda5684151d65f3cb1549f4611b3a645ce39646d3db9a1b2c17d6b160579

    Download Submit

  • /data/data/me.weishu.exp/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap
    Filesize

    467B

    MD5

    1a8257f6caa3a45f9aafa090fb8cb618

    SHA1

    82d46c5e66bb13010c885555a5bcffa83028abb7

    SHA256

    a3e18755cc7a98aace2b7711d861d590b0542b085d813713c40ae2bad54394d7

    SHA512

    cb0be3b61fb3bb3869bcb17d1ee7c5a8c922b1ba8800d131ef7127b870c8e9437a72d9bba0b198e1f16564e06be1f342f127c75e1edd184ee327755048a0df5f

    Download Submit

  • /data/data/me.weishu.exp/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics.tap.tmp
    Filesize

    16B

    MD5

    c33583fae4e0b61cde1c5b9227963237

    SHA1

    fe2ebe4d27469af1460f7e852031a04208ef629b

    SHA256

    35c6d6e5b93657e4a741a1cec71c21813fe05aab219909ebbb0f62fb0ae648dc

    SHA512

    fa09047004bec791b23f0dade0b64f8ab9bbd67555505e0d0818f6e89dfe56f474df80db0786d081d36adf23a5bacea40275ba043444a3a85d3d9612575bdd1e

    Download Submit

  • /data/data/me.weishu.exp/files/.Fabric/com.crashlytics.sdk.android:answers/session_analytics_to_send/sa_446f3996-ea30-44cd-8ee4-dd7ce869dba1_1706398402371.tap
    Filesize

    378B

    MD5

    87c3fa3ef3346e0874dcfc6a243da209

    SHA1

    ed3eea1349673b43d5b1a3d495119b19256f50a5

    SHA256

    8121d036ef509602ec6cff7005367f6f90cc6f0f1ec7b3e6603bf7e7db477434

    SHA512

    5b6854e9b474d3285cbcda2c10759a9d5849a2c3201e9f09af690291482d1da9b026c402024ef924eefdb449b763c1e5c7abcf5304d4281a518150b1e9b072d9

    Download Submit