Overview

overview

6

Static

static

6

8ad09b45cd...e5.apk

android-9-x86

4

com_yixin_ttlib.apk

android-9-x86

Analysis

  • max time kernel
    15s
  • max time network
    139s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    02/02/2024, 23:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8ad09b45cd8facb8a480bf529e5e41e5.apk

  • Size

    19.6MB

  • MD5

    8ad09b45cd8facb8a480bf529e5e41e5

  • SHA1

    0dd93c10dab912a48afd85df8e6e327d650323c9

  • SHA256

    ab96d5af9610f6b62b8612a789d4d57e1e21b8a20ee4c5547975b17ab9eb0a65

  • SHA512

    fcb254634011e6a8ed654c2e69716ada8d142c0596620601ce20356a55db37acc093339519774bf0c1cdb74e8c26b7a72d55e452ca5a8c5240150f91dc9b8f2f

  • SSDEEP

    393216:SFTa2RR9YaLqCwksyR+HQnsav+X2y9MwTkLhv3jiDm0xHRAs8myjf:yTfP9xLvbR+oQMwWjipVq31f

Score
4/10

Malware Config

Signatures

  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.mars.tinyderby
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4236
    • /system/bin/sh -c getprop ro.board.platform
      2⤵
        PID:4301
      • getprop ro.board.platform
        2⤵
          PID:4301
        • /system/bin/sh -c type su
          2⤵
            PID:4329
          • logcat -d -v threadtime
            2⤵
              PID:4372
            • /system/bin/sh -c getprop ro.miui.ui.version.name
              2⤵
                PID:4396
              • getprop ro.miui.ui.version.name
                2⤵
                  PID:4396
                • /system/bin/sh -c getprop ro.build.version.emui
                  2⤵
                    PID:4425
                  • getprop ro.build.version.emui
                    2⤵
                      PID:4425
                    • /system/bin/sh -c getprop ro.lenovo.series
                      2⤵
                        PID:4451
                      • getprop ro.lenovo.series
                        2⤵
                          PID:4451
                        • /system/bin/sh -c getprop ro.build.nubia.rom.name
                          2⤵
                            PID:4476
                          • getprop ro.build.nubia.rom.name
                            2⤵
                              PID:4476
                            • /system/bin/sh -c getprop ro.meizu.product.model
                              2⤵
                                PID:4500
                              • getprop ro.meizu.product.model
                                2⤵
                                  PID:4500
                                • /system/bin/sh -c getprop ro.build.version.opporom
                                  2⤵
                                    PID:4527
                                  • getprop ro.build.version.opporom
                                    2⤵
                                      PID:4527
                                    • /system/bin/sh -c getprop ro.vivo.os.build.display.id
                                      2⤵
                                        PID:4551
                                      • getprop ro.vivo.os.build.display.id
                                        2⤵
                                          PID:4551
                                        • /system/bin/sh -c getprop ro.aa.romver
                                          2⤵
                                            PID:4575
                                          • getprop ro.aa.romver
                                            2⤵
                                              PID:4575
                                            • /system/bin/sh -c getprop ro.lewa.version
                                              2⤵
                                                PID:4600
                                              • getprop ro.lewa.version
                                                2⤵
                                                  PID:4600
                                                • /system/bin/sh -c getprop ro.gn.gnromvernumber
                                                  2⤵
                                                    PID:4628
                                                  • getprop ro.gn.gnromvernumber
                                                    2⤵
                                                      PID:4628
                                                    • /system/bin/sh -c getprop ro.build.tyd.kbstyle_version
                                                      2⤵
                                                        PID:4654
                                                      • getprop ro.build.tyd.kbstyle_version
                                                        2⤵
                                                          PID:4654
                                                        • /system/bin/sh -c getprop ro.build.fingerprint
                                                          2⤵
                                                            PID:4678
                                                          • getprop ro.build.fingerprint
                                                            2⤵
                                                              PID:4678
                                                            • /system/bin/sh -c getprop ro.build.rom.id
                                                              2⤵
                                                                PID:4703
                                                              • getprop ro.build.rom.id
                                                                2⤵
                                                                  PID:4703

                                                              Network

                                                              MITRE ATT&CK Matrix

                                                              Replay Monitor

                                                              Loading Replay Monitor...

                                                              Downloads

                                                              • /data/data/com.mars.tinyderby/databases/bugly_db_legu
                                                                Filesize

                                                                4KB

                                                                MD5

                                                                f2b4b0190b9f384ca885f0c8c9b14700

                                                                SHA1

                                                                934ff2646757b5b6e7f20f6a0aa76c7f995d9361

                                                                SHA256

                                                                0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

                                                                SHA512

                                                                ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

                                                                Download Submit

                                                              • /data/data/com.mars.tinyderby/databases/bugly_db_legu-journal
                                                                Filesize

                                                                512B

                                                                MD5

                                                                0f6e2324bbf98d8d97df3080ab84d77d

                                                                SHA1

                                                                33e34bfcded20f7ea061742fe794c470d04a58f1

                                                                SHA256

                                                                453eea058d25741752add9ebf3d7f3f6553400b59385d503a727d07e9dc2945f

                                                                SHA512

                                                                d0f792b98e5002079fbe9391507468abe9903eaaee3f8515fa80b0a824517ce0cc0f6fb21971515a64f87989a2928cce3779979c521da05479429b4d48076093

                                                                Download Submit

                                                              • /data/data/com.mars.tinyderby/databases/bugly_db_legu-wal
                                                                Filesize

                                                                16KB

                                                                MD5

                                                                d4ed06bf8996120c9fc61f2e9d298d5c

                                                                SHA1

                                                                9d1a961c07e9449e108c3e56ed855050735a8d07

                                                                SHA256

                                                                b5a477f180aa1b01a0d53f2876d5a8b78c134d2eea296dc85076f2210e2b7553

                                                                SHA512

                                                                6b997ab237eb2b63abf1da221e047e7509c17feaf762528ecde9bfd414e851c294c6e726fc8cefe4ae7f4810b8ab5a1c34d50bc635f549e047f9313a14279631

                                                                Download Submit