91ed38a19e6e4503caabce1c57bfc86f1178493873e28ad7bf27a47b87b6fbff

Analysis

max time kernel
6s
max time network
150s
platform
android_x64
resource
android-x64-arm64-20240221-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240221-enlocale:en-usos:android-11-x64system
submitted
12/03/2024, 01:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c2179ebbdcc5150b9493ad79e2f10c64.apk
Size

11.7MB
MD5

c2179ebbdcc5150b9493ad79e2f10c64
SHA1

2538d0ec38995f1a9aeb757aba3919568edd3644
SHA256

91ed38a19e6e4503caabce1c57bfc86f1178493873e28ad7bf27a47b87b6fbff
SHA512

be753ac8027e7b620a0688b41b57caf833ae53b79f623074355f12e5139b956d8a6f993cf925e6fd28e752c6d14d639f7ed51cd18cfdca3baf6e453c98807098
SSDEEP

196608:IuDHDPN7ER6w6hF1MeA8HPRA/420n7gjZzTWoy7F+X3N2Sun3BppdeEIUH:IuDjPBXf7Meu0n7Suog+X9tunXpc6H

Score

7^/10

evasion

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.moyun365.android.zkchemistry/[email protected]	4403	com.moyun365.android.zkchemistry
/data/user/0/com.moyun365.android.zkchemistry/[email protected]!classes2.dex	4403	com.moyun365.android.zkchemistry

com.moyun365.android.zkchemistry
1⤵
- Loads dropped Dex/Jar
PID:4403

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.moyun365.android.zkchemistry/files/.jglogs/.jg.ac

Filesize
32B

MD5
d2d82c57974883487cfd5487f3800777

SHA1
313c04ece6d9d26ef82fb0d4766a579a724a536e

SHA256
4790734fc62a7ad3e1300a730297fec8c2ef4442da22929a7fbbe2eb26eb5120

SHA512
3c701b4d80414a2a79e27e41d04f46b2baba73f2420ef6e0bd81bedff185cf83a75347069f84c46d6f92b2ab8a612cb2fc1c3f2a57789e5e958d7ebe699a74d6

Download Submit
/data/data/com.moyun365.android.zkchemistry/files/.jglogs/.jg.di

Filesize
340B

MD5
866454a7a94fc5a8058957a8107fabcc

SHA1
1d4e9a447ab5d59b974f461d2b9b301fc97a6035

SHA256
b57c712ed2fac3025b61c4c81699a4d3c69ed1193896f905ef922fdc259898f3

SHA512
4278140471d54a607c8f43c8b873878ae0abc3e45f7111ea9c2097cd073c775c8ec62687d8851176416481d458b241a876ae5296d9e526ce908f330dbba4bdd6

Download Submit
/data/data/com.moyun365.android.zkchemistry/files/.jglogs/.jg.ic

Filesize
32B

MD5
1168a608acda99e1ac01af2d9bf0daf3

SHA1
33cd9fbf550746bfb76f09c873f2a528ae3421d3

SHA256
3da5106c663297608be151ee5049336846687fa9031ab8554531aee84097c581

SHA512
af139acf48923f2d9190e3e62ca518783ed9250af47c25949c5e0586c03698ac7549115b80caf5d5aac658aea7c06e7c1d71399db11e544af0a67e50a61de7e2

Download Submit
/data/data/com.moyun365.android.zkchemistry/files/.jglogs/.jg.ri

Filesize
314B

MD5
998702248ccb330795e9d142b33c0487

SHA1
430113d9f653d2e989d9e7b6fe8be9125d9539b6

SHA256
45e14a2ea43b2d88b4b56424b65d825ef65937e78927fc0e94af870db1a3728f

SHA512
e7881dcbbd6da53e625afa663be5a04b03b446ee55db02bdea1e5fef15ac38dbccf14442a8080658ff15cd56d6062e2372c970cea9c3ce282635fd1d02cab3fa

Download Submit
/data/data/com.moyun365.android.zkchemistry/files/.jiagu.lock

Filesize
27B

MD5
47eeb24e405437eae1efaf7dcb3043ea

SHA1
abf6148e14a35029f8cbfa4dcfd44731569c0ca5

SHA256
bd7affc855f56c5eb27441144d6cd9210e835c481082c491bb82816a539fe4e3

SHA512
02a3c3f098d0bebe86a6c4662a43076ea534a3c40795482408319b30e91b1662a569d386f8f1bc3994b62f1f15a84bd935f99628051ff777c5cb74b760d8d4f7

Download Submit
/data/user/0/com.moyun365.android.zkchemistry/.jiagu/classes.dex

Filesize
2.7MB

MD5
0138b4365664c25d966d2cfd7cdb75e8

SHA1
bf5bf5e525d3fbb487f7a8c8e961807c90c138bd

SHA256
3afe3f7175f990314e1e7c5f7b4588b8766460ff6599692bb90b587c6e427b36

SHA512
771d8fedabfef1b0f32d72b4613fd60c42279d5aaf209790a13f120994c5feca911eaab71e074e742b16060ac64395b892837fbce05e591d083dcc12b44ecf40

Download Submit
/data/user/0/com.moyun365.android.zkchemistry/.jiagu/libjiagu.so

Filesize
455KB

MD5
e5a53000766ebc433b27d6a66ec4f555

SHA1
2c8f53f1c03aec2005bcad67d731f07261dabde0

SHA256
78e4ea857f10c2df6c7b94f0584524b52ecc099ed29478fe3964037b8a86ed2e

SHA512
370a1cb93b14556ad861724f4e9995c9a4c6d37cf2d570f888d1c6000c66d27ac63496b0703361e9fc9bc7f309b7aa4407c5f339d186b0a5b72520d23d04b68d

Download Submit
/data/user/0/com.moyun365.android.zkchemistry/[email protected]

Filesize
6.1MB

MD5
9eb1a27e2f54b7811c6c823a1a06b018

SHA1
7288d58ef939df07a6583165cb4a30cff2d4aeaf

SHA256
f3c1d074e55009b7d10403a8d48a5206a9c9f0364b75eb088316602b94d1fe17

SHA512
62dfecad5c1ae49ffa42e9c50e106df488da549a79c7bf65291cbd8490e32e414c3df894b6937aa56fbb1f94fa0788c43085f55089a935c8e7e01cf860e85b46

Download Submit
/data/user/0/com.moyun365.android.zkchemistry/[email protected]!classes2.dex

Filesize
2.3MB

MD5
c3a59c58aa12b7cc2c6297d65893f4c0

SHA1
c5cd5807dba5406aadc150b456284b5021a90f7f

SHA256
ad79f9e8a5448806f44915be97a703ed96afe5b0ec84fb7079674e81ed5ebc81

SHA512
6dac64bbc07350e388c4b0cff48f0bf2cc5b67fd78dd84b9216f6e9052de5915f5378b6248a3e47a08c5c717e8563165b915ab9705ce4689c782aec4f2e7d914

Download Submit
/storage/emulated/0/360/.deviceId

Filesize
48B

MD5
4c4c5285293d5141f582aefa4e038669

SHA1
e01852a72e5a8e6f7d63a21426b515118196047b

SHA256
36c5c63f39ddf7a6a9c01946e4f78b95790aa734176802e793e95724a1b5b731

SHA512
097aa673273e307f7bfb7c08861ad389d4b5f7fae55d972a5c1636aa66d0b8d23b5eb9b696cefe0e5b942f23969dabf0147397aeca85fb9a4d75e0473104e399

Download Submit
/storage/emulated/0/360/.iddata

Filesize
32B

MD5
14400d1f474106c92471e10d73661ded

SHA1
0ae05f983ff536e6247996b1529d71693bd8578a

SHA256
524ef6aa2e19ec2d7e4adeb077c099574f17d5167faa392f0244c40b7250e786

SHA512
3637234d61756007e3f075d361e092961101c70f9b7b373e3586508475d99dc31349a0ac4f236306c872c0b4ea8efcf53e742c777e6c22763f62c676f297b93b

Download Submit