65cab20cde078316ec9c766266a8c9373653bbaac997286a75c58a331e7c9e88

Analysis

max time kernel
150s
max time network
146s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
14/03/2024, 14:26

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c8d7080d63a583d37921e37b8e404845.apk
Size

5.9MB
MD5

c8d7080d63a583d37921e37b8e404845
SHA1

f836247941c9b9b15014cb479781793f61f1a664
SHA256

65cab20cde078316ec9c766266a8c9373653bbaac997286a75c58a331e7c9e88
SHA512

f89c54af38de7017882cafad5cb48962c5ca8b2da9a93539b3c2e5a0abee56bbda37489f6516a3180685690794bfe4f1e74af26c1802b7fbb27c47ac49361250
SSDEEP

98304:DSmIoAFE48UJNU7ai0t9XMohdcgPcOifp7oyU1MhLeqBW/npMM2yhzH5Tsckw/HE:mLVFE42a75hqyij0uehqM5NTWw/HX68W

Score

5^/10

evasion

Malware Config

Signatures

Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs

evasion

description	ioc	Process
Framework API call	android.hardware.SensorManager.registerListener	com.dgahbgackhmcmlno.qiangshendoudou

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.dgahbgackhmcmlno.qiangshendoudou

com.dgahbgackhmcmlno.qiangshendoudou
1⤵
- Listens for changes in the sensor environment (might be used to detect emulation)
- Uses Crypto APIs (Might try to encrypt user data)
PID:5029

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/.um/um_cache_1710426485919.env

Filesize
561B

MD5
59fb1b7688b89ec79beea152b8667896

SHA1
594efa0892206234165a805825ae6f2aa5286f63

SHA256
93f491fb8efd8b95b87d2d1335bcd27171ce4b25941991a078ba62df5f6d95af

SHA512
14262cb9d4f400bebf4d0a80df477d6fe9ef774a36f81054987c37c92b39c8035e5af3e7e4e5096e8c3bfc5b023717c641f33b69017ebf8908233b819c5c62d4

Download Submit
/data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/eventservice.jar

Filesize
217KB

MD5
1b0d940ba231198229eee34e553c2136

SHA1
d09bdb266f147eb28bcaaaccb94d4d5343055867

SHA256
ecc1b051d8857a396902697418cffc8f54627f26515742283f3cae7c47e23e71

SHA512
8c1bf4c6726a32dd91bfa34be3a46ea5dadd060d98437f8674c051af7f57383de23ee73af6a257be5274e71ab4344f805d3f473c7794c3d434a4215156dfece9

Download Submit
/data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/script.atc

Filesize
7KB

MD5
20d3a7d53c72a37ca3c91d449d851c8e

SHA1
2ecb168acbf428ce9cc4bc226070422ab3088755

SHA256
6fa9776cfa0fdde7aaa7ad1215b4fab2d7e4b34a7556a6cced3fc360ae78bbee

SHA512
4267c17f4a2ba6b06f4d66ec04e3819b00513f83b5f313ab8f710ab23ebbd9ab03a8b6aab44d1a356d56496dadbc6e43067351c81754fe0aaa5506cb23f830e7

Download Submit
/data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/script.lc

Filesize
1KB

MD5
705031d29d536ce084020d289461282d

SHA1
878134ab4cfd1222e29916b0f4a40e41cb7ef63a

SHA256
5eca1bd35edef0f9c5b11b6fadce13359eb1225faf78adf548b01af8963fffe1

SHA512
cbf241a1537ef8a721792583d00a754f992b87d82abb89c8d22ffd8b24d6c227be22f3046f1cb5daafe469eab19220813a62371245c5a5367d2bc6ac25565b90

Download Submit
/data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/script.prop

Filesize
307B

MD5
0e2bd76ab3ba2df6504df4f33bc1b32d

SHA1
fd7b091b59ae4cf5f2da4b7b66eff9145a0d889e

SHA256
77df837898d3ad864a8db7ffc79a6935df5bb77a771b54708c91c179ca09d35b

SHA512
20348b5267282aee16814ba2bc977498ac2fc8cd42bfc9c32f11b36a451059f4a2870a4ab5b4b398aedcc400cbff0ee0719cc606530aa455ad9d8c16d0031d48

Download Submit
/data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/script.rtd

Filesize
864KB

MD5
0c3c8c919c4132596acf31eb027facab

SHA1
1b6bb54eb45a427ec36bbc6a7426383876b7555a

SHA256
274981072680c6f535fdb7b78529d2419c452b1e17f0a999d09a2b8fba649493

SHA512
a0159fa19a5c92c6f5b38d3badf15591abef8ee53aa127771ad28d82c19f34dcd5602d1646d66893d0e1f536703e249b34b3f803f1b315adfdcb3514a73e4804

Download Submit
/data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/script.ui

Filesize
1KB

MD5
65bd87a4d0f8b33c63c23089965fcaa9

SHA1
5231f6690d0333123d1673b111ab0054fec72004

SHA256
91261f80f27a9c4c57fd757f500b50148d9b52281a3183d8c339185359c59d31

SHA512
ca2e57d1c6326ddb50cfc2a166f8ec0c7d25d538b7c41c4890a063645b3019c08461a41e797a53a7d20a232d1b4e12d8af01e150df0721826fcc8368f054a5fa

Download Submit
/data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/start_eventsrv

Filesize
327B

MD5
cc047ddb391c30c3be2ec6524ac741fe

SHA1
bfdf62e60a73a59a427755b047d543b047725963

SHA256
f7c1b46451abbd19d4ec899b9e1f71323dc6bc546b82576a31801c6beae947bd

SHA512
feb763d4909c08f099a6fed14a4ba8a7ac4fbc5524897f0e3b47760b89b91af9b8b7a0f94aa37d00cbfd9aee2a5021fbdf629d0fadcebd10fe94b0fe7c6545d1

Download Submit
/data/data/com.dgahbgackhmcmlno.qiangshendoudou/files/umeng_it.cache

Filesize
245B

MD5
96e7d60f34e8de4d441bfbe888684e83

SHA1
12ffb3619d2981620dfd900f5468d1886592b2b9

SHA256
32dbd2aad36d76715672e7fa60f30ad0233665d9daf0b3a802c79b1d6273f5a2

SHA512
edb592c8d1522096aae07d2a97bd00044df760dc484d53d4f653785f090aa7a4a5e7a48145a37212c3a7ee22d1958970da3a0edf327463912b5be926ea4b2992

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads