f95773e8a95f52babbf28ee44b17d12a5af6b2f1983b89a4b479675a1b177992

Analysis

max time kernel
3s
max time network
158s
platform
android_x64
resource
android-x64-20240221-en
resource tags

androidarch:x64arch:x86image:android-x64-20240221-enlocale:en-usos:android-10-x64system
submitted
16-04-2024 01:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

29e10e48615c69ef475ea6f203d30281869f5a1979e1e15b84bd74c0643f76ee.apk
Size

4.1MB
MD5

4f9b84a780b172905aa3bbb23797dc21
SHA1

791e0d2ef94162227d588df66918dd4fd5301c8e
SHA256

29e10e48615c69ef475ea6f203d30281869f5a1979e1e15b84bd74c0643f76ee
SHA512

f5b3ecfc1486ea1c37f09c6bf9ba0e6239885e4a92db589f19ecf31048b47ec8bf575cfb4ef6cc3e74b63bcdcd48e0b6d497a9bcac618bd690aeaba39fdbce91
SSDEEP

49152:xKjjqMqY4nCZcomDQyhFvLkuN8KYn+xETg0pJf2wc8ljXhe7sxkk+j7ZzwrUYisL:+qMqYS5oNyhFIz+MvvXFkk+JQUY0OtZ

Score

6^/10

discovery

Malware Config

Signatures

Acquires the wake lock 1 IoCs

Processes:

com.lyufo.play

description	ioc	Process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.lyufo.play

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

com.lyufo.play
1⤵
- Acquires the wake lock
PID:5025

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Configuration Discovery

T1422

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.lyufo.play/databases/google_app_measurement_local.db

Filesize
16KB

MD5
eb52a90bb70b76e946b62f50b6f7fb85

SHA1
42d767b5d1faa7dcef4cb4e1432a5f47ec2e9ee0

SHA256
48472f593a3e9cf9e91ee5f7d66dd9ff291bfb247eb6b46778c710fc24e8d3c4

SHA512
b356c858cadd14b6ecddf134f1c494c0107a1d36be9387984fc53dcb00e6779d944f058f4ac99d0fc2fe3a427cd1c2921c6fc38ecad53909fc4b5b6f04459b5c

Download Submit
/data/data/com.lyufo.play/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
6dcfe529dec7b80e6de3a49297060c85

SHA1
613433dd0486d05e82175be9902ab3acad131528

SHA256
a4a493573853a2aed1d77f1bf205e2da9dff72bc8e7d6f66fb011bb5be6828b2

SHA512
86088e8a9c91f647a0ac1da994f5eed3d0373c681378645969c12c0ee9638abf411e06241be4c84703fd18d28015d2a9613487657374e8384e1588a764662815

Download Submit
/data/data/com.lyufo.play/databases/google_app_measurement_local.db-journal

Filesize
512B

MD5
843f2a33996b505945310fcb65cccd94

SHA1
ec32db04606754f17bbf135bd5a4e282572b634a

SHA256
cc3bf34850d495fb1f1c9cc0a817052fda45032d499a02a60805b55dad0f2e77

SHA512
9e9345ae2227de5f238e2a84eecbc3088555c5fb64683824a06ff15cdecfe092810b7617642ec1fca7fcf17a00a9075272ebfafb76b41df42d9ac6c176ae7143

Download Submit
/data/data/com.lyufo.play/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
883e1ac8e1d5490b67eb70d6e4a0f4d2

SHA1
c63417bc73c519cdad4eb2af931d0585ddd8b0fb

SHA256
a648b7acc36b94fdef741ab4e30fbdc87098ffd0e90f9181da67a613b3255b5e

SHA512
38f1fc9e3b7db9209949637b68e530bde6deb63a62cb4f0d6f8d64a92cb383347dd2a6aba8ce6027afe71711fdf364fd556817b47ee6ba73946903c555329128

Download Submit
/data/data/com.lyufo.play/databases/google_app_measurement_local.db-journal

Filesize
4KB

MD5
e87cdc89d568dbf6d5b278e055d67ebe

SHA1
1a2b545e0e3673d6ae5dcaf66ea86100a84af34d

SHA256
b6e0912b89f7596673ee61c36ea159f68c4691c62d08785e37c40dfe8dc4d732

SHA512
4c41b18f86e8902a41fb6379f92abb397e3168b2e7a758f3d61de26f8628111661ba6338e6864db15f1d0e7e71636140cec981310a6708315c50cebbc836d6f2

Download Submit
/data/data/com.lyufo.play/databases/google_app_measurement_local.db-journal

Filesize
8KB

MD5
e0357c3e310d4b4d8abb0d39116dd41b

SHA1
cbe564544fd1245aedd59471777d7670bd4aeef7

SHA256
69deac6d2b9c072a146a2a5b520cd1aba1fe2cc3a6a60cb56e8380ba923f0c7e

SHA512
906f16aa893cdbdef912c941d4061387ea7c3308b20c8c5f890d824899b2df88b36f8182ab681e63afa72f5420b3496507db12ef3103803c09883517fd60f47f

Download Submit
/data/data/com.lyufo.play/files/PersistedInstallation5301751217091447089tmp

Filesize
90B

MD5
d4684bde46a1d7a957e62f2f7a3fe2c3

SHA1
ad785c7760ba2ee0363f65bf12dcbe0576212473

SHA256
b2d4810c720bae775c7a8958df9fdd7e5ce73d170da1a2e4fefe126db92e49c6

SHA512
782bb96dfc22164e701f650f4b432492c62c35df3d2c13616feab64dd634a577ec8037d33c55ffc2137999fcc46fe953369eb40960c478c3fe1916557caa16cf

Download Submit