ecbf95d9b9fd2df911516d8c663457c0a5f5416bc09356906512ef283737c76f

Analysis

max time kernel
114s
max time network
135s
platform
android_x86
resource
android-x86-arm-20240221-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
submitted
11/03/2024, 16:29

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

c10fbb01a652532d7a4a5a1bb542be2d.apk
Size

18.1MB
MD5

c10fbb01a652532d7a4a5a1bb542be2d
SHA1

ea96b2b44184125b75c483914cb6021008ae5393
SHA256

ecbf95d9b9fd2df911516d8c663457c0a5f5416bc09356906512ef283737c76f
SHA512

43a7d08a987cd45131fcc703a324498a1a726142e78cde11b1a27b6fdd7a714724ee1764f0bfcd14a8bcefebd1411dd398dc86c4b7a75c402b18a405d776fa72
SSDEEP

393216:R3ttK/boFjrkisndCuyosNdBWsXv+v1lSCIbSCrgnpHh+FJhu+oqNhZzQ:RdtUUjIiMCVMhdgxUR8Pu+oys

Score

6^/10

discovery

Malware Config

Signatures

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.tengluowl.xiaokanapp

com.tengluowl.xiaokanapp
1⤵
- Uses Crypto APIs (Might try to encrypt user data)
PID:4264
- /data/app/com.tengluowl.xiaokanapp-mrF30WM3lv2U8TTxTWnhkg==/lib/x86//libweexjsb.so 46 47 1 /data/user/0/com.tengluowl.xiaokanapp/app_crash/crash_dump.log
  2⤵
  PID:4297

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.tengluowl.xiaokanapp/cache/image_manager_disk_cache/302b311851f5a04033b4303639830f7f49ed3256b5381e4a7d7faa61a9d409d7.0.tmp

Filesize
673B

MD5
cb02037d465a9b0bd596758479b59342

SHA1
000754b8417032bf68fde85d86f7707e0c62705c

SHA256
9828df51a1b8aff2d48ab1c4f970072f6126cb94aa9982953a66158405de84fc

SHA512
08fe5999e96a9bfaa16fbe39c49078944b4e4bcbc443b53abe96d0157312177e96e2b0240468e1b3d563bec09d00174b56078028acd24971515977b6163f7a7a

Download Submit
/data/data/com.tengluowl.xiaokanapp/cache/image_manager_disk_cache/c56ea8b4ba7e1c82821cfa92997c75e6423cbabde2d4d5fbf0fbf66f0e25642f.0.tmp

Filesize
1KB

MD5
e3613b08ec55fbd8e6f6d2eb8105f14f

SHA1
aadc536573a8540df389dcf2005e0106476f788a

SHA256
b978d54f4e220193d0593c5ac7bde8df48a688add21e01ea3bb861ef9757fb9b

SHA512
7eec0de3861ad1fa26b460e3ad9c28b3dfecc1f26ad52150563ab5bb8b89e6b0c1756f242c2d35bf48df5a0a45102a092bd66de0fa571c8b0de7f40d3368920a

Download Submit
/data/data/com.tengluowl.xiaokanapp/cache/image_manager_disk_cache/cccebce9a6bbbc11fba9375b50983405982d0bd8572f2f6d2be1a48fc2bcf3d1.0.tmp

Filesize
711B

MD5
b694ca1a2812aec359d988d08c4fd2d0

SHA1
b2cf4097faabb4235b6f69c6e101f21e9a7e1df2

SHA256
66a47c9cc9d9bc9bf6f7535bd9eabf15148c8779f028bbbed46a49dc4970c432

SHA512
41e5270ad949e2b1676fd1d50b0dfed98ee3627a5e0f313a401f5d035252f85c0013f3b415fa73ab2fc873635ce07bf921d26737af11c25024f7553fd78e19bb

Download Submit
/data/data/com.tengluowl.xiaokanapp/cache/image_manager_disk_cache/db3ed445d14c20648791fa89d14b7b3c12c170ced153a5c6d4e710a1828dbfc5.0.tmp

Filesize
439B

MD5
6434180e27d2dffcca0520b97f01620a

SHA1
9b250d4bfd04715cfb2384d6bf4ad0c5b5efcfe5

SHA256
49c6b5776c450b33e3c3202519eadaaabb3e247e4f51232b0575026462f84f98

SHA512
9ca7e7738b10993af8e78f7dad6c75b29b4759c5b5714f1abe16e9761786f8ed8eca1e9e712c3beb28540edf61e9164750b7509843b82979a6d640b645f59f2b

Download Submit
/data/data/com.tengluowl.xiaokanapp/cache/image_manager_disk_cache/e55e819b6fdbe9e2bfbe0dfa241825898fa458a1f73f5eaea6eb0f7a0634c8d6.0.tmp

Filesize
757B

MD5
5b3bae3e03a598b879220d9273d8d370

SHA1
1c4747446c1ace83992011dbe0ae6dd668a4c9f6

SHA256
51a8ca6a75351eea4a90a3b1ba24f2a4be344602c029f1ca72de4f3d81276964

SHA512
18f3545491b0475b9dc78a1e1a5ea706cdbefe98bbd81d8ce48fc6d025f32a6c8d879756be1e16657694c7bcb65be0601e135d352e590da05949000ae9070ccb

Download Submit
/data/data/com.tengluowl.xiaokanapp/cache/image_manager_disk_cache/journal

Filesize
762B

MD5
f12a813f24765c7f623ec7691ecc8c53

SHA1
49d44ffe882598faa867cd10f36c42a2e86cc929

SHA256
c75fb551999ca12221106d8d70a21018492008345998a079c3b6829846f7b3c6

SHA512
5dbb815bd115017fc8d1159a88a0cf4823e6851c6ee0719da0b1e5a6ccbc045886c3f2a607d36672b33c8654f674d7ed1fac410490f11e8594d17867e57006cc

Download Submit
/data/data/com.tengluowl.xiaokanapp/cache/image_manager_disk_cache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/data/com.tengluowl.xiaokanapp/cache/weex/libs/weexjsb/x86/libweexjsb.so

Filesize
6KB

MD5
9bb067cd33b490d30f2c88054c732574

SHA1
d95a11e2be5c7a1fab9820e34cdd9e482523ea86

SHA256
fb993dc086feddf19af9700c7428386e3e4a5c67f273711c371ff4460a830ae9

SHA512
0b721c51332313c50ae466fff1b4bdb48a71791bca67ee83d2882a19e8abb59dc1406ed15d6dabbcd3ba922167fbf68a3828fd82edf4b2270ff0191b8fed0dbc

Download Submit
/data/data/com.tengluowl.xiaokanapp/files/.imei.txt

Filesize
32B

MD5
f3633a33045fcf9f150776c4cd348e48

SHA1
63a963ac7a601b5c97c492d30c32569b39cd5ce2

SHA256
9be6b25ab7f1a8dd9972cedba74144bfb0676672666545b290d21bca5686ae1b

SHA512
c880cbf9cb5a7d5bfa67e14de6e97237c4237f4ee5d8cdbc2f4082fb2843bb346f4d54e70ff33d93c916e46be20a37860e9e6b022fa8e82bb0a99844954053ee

Download Submit
/data/data/com.tengluowl.xiaokanapp/files/cnc3ejE6/eje3cnc

Filesize
39B

MD5
7769d4507985f59116153463f09235a2

SHA1
b081e84d14300ac7a7947aade9c025fa83bc17fb

SHA256
5ba33c69421ad27727832442cb5939d5bc853acecd0d8162d7c10a6b96757dcf

SHA512
ce5bb431a31eaba24c0cf467bedb1abee2205b74c4533067058b09ce7e8f9480b8baa01866e3dc89d1800d07da6007f36c1b4fea811e3da164b187903480d29f

Download Submit
/data/data/com.tengluowl.xiaokanapp/lib-main/dso_deps

Filesize
312B

MD5
e8e8dc64841a594ad0bc4de2494bbbe3

SHA1
3603ed6ca3ad88aa34448827c105c8b3c0df1964

SHA256
735c274bdc2dedfc55fbf8c5ebecf086ae03362fe8f94f253b6446211c532f7e

SHA512
6012918aa06e0b8de301cb453e67679986b1bdca677163d2e81498d7def2a6e4f3ae0fc4a76e99979a0b1bbe666db15c4dce9da562f1534e4d9b9fdee71b9d82

Download Submit
/data/data/com.tengluowl.xiaokanapp/lib-main/dso_manifest

Filesize
5B

MD5
c06857e9ea338f3f3a24bb78f8fbdf6f

SHA1
c5a0a2529d2deb60fec041b4fbd722a2ebe31702

SHA256
957b88b12730e646e0f33d3618b77dfa579e8231e3c59c7104be7165611c8027

SHA512
29f61516876c25379a7bf4faa2b3ca6f6b53eac90e7de47671fec4a818d51441b4025cd7909f7c0a0d113ab6c5ff00cb3700c286bac7319185b77905feec4fb1

Download Submit
/data/data/com.tengluowl.xiaokanapp/lib-main/dso_state

Filesize
1B

MD5
93b885adfe0da089cdf634904fd59f71

SHA1
5ba93c9db0cff93f52b521d7420e43f6eda2784f

SHA256
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

SHA512
b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

Download Submit
/data/data/com.tengluowl.xiaokanapp/lib-main/dso_state

Filesize
1B

MD5
55a54008ad1ba589aa210d2629c1df41

SHA1
bf8b4530d8d246dd74ac53a13471bba17941dff7

SHA256
4bf5122f344554c53bde2ebb8cd2b7e3d1600ad631c385a5d7cce23c7785459a

SHA512
7b54b66836c1fbdd13d2441d9e1434dc62ca677fb68f5fe66a464baadecdbd00576f8d6b5ac3bcc80844b7d50b1cc6603444bbe7cfcf8fc0aa1ee3c636d9e339

Download Submit
/data/data/com.tengluowl.xiaokanapp/shared_prefs_ext/test_app

Filesize
29B

MD5
a6f51bd4656de28ec6ad786f384330e7

SHA1
cc267f449e95d5ee0c8c9d2d5fc8b2b68b761720

SHA256
1b73db981872ce9dac05c6ca60c44eae70a03114f65634be58c1b4418a5b22e7

SHA512
e8cbd5cf842cb8a8e3fd0a6d44b2cf8b77643088fd0c4bc3a4231c2aca8ca65509c2624575f9205768cda0d8cfb965452b3c3a3c966c36887a7c850d6b92e3e8

Download Submit
/storage/emulated/0/Android/data/com.tengluowl.xiaokanapp/apps/__UNI__E9A1ED7/temp/1710174604771

Filesize
1.3MB

MD5
4ff4649877c45903888c05b9b484e273

SHA1
3925c590adfd220753f8449d1bb341d09e37eb63

SHA256
cfaeefc06e27201cd6ffc3a1ceb644c13b1d77a51ba6a9d5aaa00a447855ca1b

SHA512
3e4b2b9095389e7df39f46516b6f0c75fbd0ee92d9c208a641080a1bd3ca9d4f498339787358b98c868e6cf61add6d0a23d19474b8c08359290e18408ef72463

Download Submit