Overview

overview

7

Static

static

6

f788fc5157...18.apk

android-9-x86

1

appmgr.apk

android-9-x86

appmgr.apk

android-10-x64

appmgr.apk

android-11-x64

authguide.apk

android-9-x86

1

authguide.apk

android-10-x64

1

authguide.apk

android-11-x64

1

business.apk

android-9-x86

7

business.apk

android-10-x64

7

business.apk

android-11-x64

7

floatwindow.apk

android-9-x86

7

floatwindow.apk

android-10-x64

7

floatwindow.apk

android-11-x64

7

global.apk

android-9-x86

1

global.apk

android-10-x64

1

global.apk

android-11-x64

1

oclt_v3.apk

android-9-x86

oclt_v3.apk

android-10-x64

oclt_v3.apk

android-11-x64

protocol.apk

android-9-x86

1

protocol.apk

android-10-x64

1

protocol.apk

android-11-x64

1

push.apk

android-9-x86

1

push.apk

android-10-x64

1

push.apk

android-11-x64

1

rooter.apk

android-9-x86

1

rooter.apk

android-10-x64

1

rooter.apk

android-11-x64

1

core.apk

android-9-x86

core.apk

android-10-x64

core.apk

android-11-x64

rt_c.apk

android-9-x86

Analysis

  • max time kernel
    9s
  • max time network
    135s
  • platform
    android_x86
  • resource
    android-x86-arm-20240221-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240221-enlocale:en-usos:android-9-x86system
  • submitted
    18-04-2024 07:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    business.apk

  • Size

    725KB

  • MD5

    33d9303b03466a73a349a2a398258a8e

  • SHA1

    2dd39ef6c64e23fee4b2dbbd8b3c8d33a6d0b7c4

  • SHA256

    4358c3931c05d5f777fe8fa67274606d33de3a5fb9415b7b873ec6d47b29d391

  • SHA512

    3236bb9619db07c69c54232553634421088695b571391b69c327db8bd3fa71673b179b812f39ff252badaf2fdb6ebe30babf8ba146313ec2d2cceab2a4a7af17

  • SSDEEP

    12288:WEmAR+kksCS6wQ65RpE1ltwuGse93re4f2o3jZYiTgC5BxPYU6LAkL9k/QMUe78m:W1q+kkshJ61ltKRg4f2+YhC3xwU6387F

Score
7/10
collectiondiscovery

Malware Config

Signatures

  • Queries information about the current nearby Wi-Fi networks. 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    discovery
  • Requests cell location 1 TTPs 1 IoCs

    Uses Android APIs to to get current cell information.

    collectiondiscovery

Processes

  • com.qihoo360.mobilesafe.business
    1⤵
    • Queries information about the current nearby Wi-Fi networks.
    • Requests cell location
    PID:4314

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads