Analysis
-
max time kernel
125s -
max time network
131s -
platform
android_x86 -
resource
android-x86-arm-20240506-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240506-enlocale:en-usos:android-9-x86system -
submitted
08-05-2024 17:55
Static task
static1
Behavioral task
behavioral1
Sample
2607d71f14a034162b27318a2f480fc8_JaffaCakes118.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral2
Sample
392.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral3
Sample
392.apk
Resource
android-x64-20240506-en
Behavioral task
behavioral4
Sample
392.apk
Resource
android-x64-arm64-20240506-en
Behavioral task
behavioral5
Sample
QRomCommand.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral6
Sample
QRomCommand.apk
Resource
android-x64-20240506-en
Behavioral task
behavioral7
Sample
QRomCommand.apk
Resource
android-x64-arm64-20240506-en
Behavioral task
behavioral8
Sample
lock.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral9
Sample
lock.apk
Resource
android-x64-20240506-en
Behavioral task
behavioral10
Sample
lock.apk
Resource
android-x64-arm64-20240506-en
General
-
Target
392.apk
-
Size
1.7MB
-
MD5
7af2e866326d0514dbeb3859d747e7c9
-
SHA1
a447cd8b762649474b833d0160e48c4f8e89aaa6
-
SHA256
9107f5d8322775b267325aaad10d8682098bfb68fd7404cf7f8f184aa3c2afa1
-
SHA512
e2a4136398f65f5f99306acd268157be62009a390602e6f67a5c72a24432154e4172fe5fc24cd207790928a97fa2286e40300281eef035e98d05566acc1a9795
-
SSDEEP
49152:IYn3YegqXLmsSEz8qajE52ITAFghSR4szQdZW2Yz:IYIeRJz2WcghSnQdw3z
Malware Config
Signatures
-
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
Processes:
com.tencent.qlauncher.theme392description ioc process Framework service call android.app.IActivityManager.getRunningAppProcesses com.tencent.qlauncher.theme392 -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
Processes:
com.tencent.qlauncher.theme392description ioc process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.tencent.qlauncher.theme392 -
Checks if the internet connection is available 1 TTPs 1 IoCs
Processes:
com.tencent.qlauncher.theme392description ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.tencent.qlauncher.theme392 -
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
Processes:
com.tencent.qlauncher.theme392description ioc process Framework API call javax.crypto.Cipher.doFinal com.tencent.qlauncher.theme392
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/com.tencent.qlauncher.theme392/databases/download_database1.dbFilesize
4KB
MD5f2b4b0190b9f384ca885f0c8c9b14700
SHA1934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA2560a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1
-
/data/data/com.tencent.qlauncher.theme392/databases/download_database1.db-journalFilesize
512B
MD5f2d53db626c2fe56865621a1d793e0a4
SHA19f454a9465b94927254e5d928d68ff682d6d0166
SHA25691d8c24260656cc82a2ca52a7206ecd35a02e96b601d6c327cce0516bcda92dd
SHA5126f7c16230d1b24cf2bb07f8834a502768dcc3f19e2f906ecd681051af2b7c2a2c0b96bb373ca79c06a9f176fee26fadd9a448144468998ccfaee2f7fbf2c5180
-
/data/data/com.tencent.qlauncher.theme392/databases/download_database1.db-shmFilesize
32KB
MD5bb7df04e1b0a2570657527a7e108ae23
SHA15188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012
-
/data/data/com.tencent.qlauncher.theme392/databases/download_database1.db-walFilesize
32KB
MD56f79aa8dfbc11a3c6072b6406abfdb3f
SHA15ab7e45b26d46fa458b5be0c9fecce9e202b5a85
SHA256c77e9121e7abcb683882f760f621735b8caa3704673d8a8fa20be9d5f9ab5e52
SHA5129c4c761aaa607e7188025068dfd8f82a86f2ae7b1ca32c44e5691b8d47529cbaed0305273bbf1dd185d26b5998d3446793ad5bc091e44665c0e8a1c5690164cf
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
36KB
MD5c7e86172ffd62146455f7918763fce5d
SHA1dfbac78df41bb6d73ffe4bcc80c888dcf07c4a83
SHA25681cd48af94c851adfa766e6e6e100be83551560f40b0a5c1fd8003f0d63ab3d0
SHA512fda47a630f59122ba8dbbeab5affcb7a68a342b5ae5af26d761d119a4eb09a35f0cb2d0117862967f90c08471929de9a28b0c897b157271523e88ae59ccf9907
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
16KB
MD5e35aab696ce331e43d11f3cab91b38b7
SHA1f34710a45480dc98b8cf4511804245514833fe94
SHA2563007c747e513284afab333b3ae2aff9814d70755ab300d4261e805177cd02eb2
SHA5129cca537565b24db330d4b4e85215671f0f14ca02e69e840d160990bce133189a057fcb09d9a0ea4aa0be1a890ce53288e09714ddbac8ee99b92e69ea1752e942
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
16KB
MD5dbc465ff7e4f5d822a29290b8934da28
SHA1041b767fb17be7ff110761248af8ac06c31e343c
SHA2565bad67019abb6e3b5c25b84142fe378d0465d7d84eaaf3392d7c1752ad880e57
SHA512c8e3e758825398ebcdaf805751d48a86396549b4ad5e24d6ef8aa306d92870a5b987ca76a22395dca4239f0641b7a6bd2f8d667d6e8b0eab47007e247b3026f4
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
16KB
MD5afebea4374db54b7c7bc0292c0ab738f
SHA1d707206aecfac1cebfc6d1d2dfbe571565731711
SHA256ed7936ac600b14d66b9172c95c0b0e1078ee9823c2a39b6d95679bdd9b6337e6
SHA512ec574d9ad0a1ae5aa07f49be1bb728f677880dd27db50140498a4332dc2e44e85700f0096c0af9dd18f40658c24dd58e5fc4673767560129c869c750aaa3d72d
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
16KB
MD5a1bc56b46e4617ac349413c3068a7203
SHA1e44cbc616565b47fade2e2a87aa7b56c96130ea1
SHA256e5156abcfc25937d87b900ec3ce0548d958a018ba44173e156eefc1fd37724c4
SHA512dc2d0bc1d573ddb4a9f9e4c9a0a09def5bfa2f518bbd9bfd6ddc9609730a60eba2202c442c98185eed49b99282f3e885b64589f9e405427b179acec962e6b13e
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
44KB
MD5ea25a44c5f7c3d2763b0cec8ea033906
SHA1d4fd1e205f7ea89a879d8ac5bd8b0251da78f8a3
SHA256f0319d89aea03a0cc6295b5a43c784cc4f91954e141c520c2b9e8070f9171837
SHA5128f13640208499d841e6c0007909d2bab4f14e33ba20cc6e6440c429a7245bf352cc3fe9bd0538033668348415fbc20c9807fcee7201dba48e1070f56ab859cdd
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-journalFilesize
512B
MD579dc64d857f39fde37e2cccb91ff3f60
SHA19f4f1150d232a854baaf7ba2c59aeddc4fb9f595
SHA256adf1decbc9dbf4cb4ad36bf77670f88d299046dfa7bcd4b28150cc56aabc310c
SHA512dd7c66a9669a275e7cf6f3fca58894d8ff81a94744e9b213ce0f877ed2e5941be3483a85d8892320aaf4d86807b9a32b5cc9064420e0c2dbd2c3f928bb3e8176
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-walFilesize
4KB
MD55f20ea3b0da2509c4229d0b8a66b313f
SHA147aab05844f60fdbeb438df7865ef18c9abb44f8
SHA25695dddbf526f06de38d0be41db283e891ae2c125fe3e213859e40276e7c8a6915
SHA51235dd3821f0cf8d42ba57aa6e2782b4a67bc03f22a58fc30bd94a53c03b5418b8721f4a290c33910b094dca09a247c50bf29fd773d97c56e872ac67e4e32c3216
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-walFilesize
4KB
MD570712ef86818cfba7ab82b8945fdfb3f
SHA11018587393d1d75601bab7d35bb2d4c5692c4d14
SHA256735ed6e32aae6b3ae6518b28a9c192ac4016beb0b2c349dcdf101a27bb54d1dc
SHA512c53d96caa03632727f5c89981894aca691062a7dea142076e2842c4c1622a5614c0654b8013f353cd35d91fbe579d4939068a3b5a061c75f1108096dccf6abdc
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-walFilesize
8KB
MD597e3c330268bdcfed221d7aeedc6d8cb
SHA103597429090adfa3654f0029d73be105d21e1efb
SHA2562951c5e6c7e84b8e0d465c4583838a3997b05a6dd93e13745041de3312187214
SHA512ebb149b4a69574b3291f3e8a74955a73a831ee7b7392d445f5624a4952b90375f9be6ef3e1f81deff0523572131ba045b9fa04233b1d23ae650677ff8e0e1d36
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-walFilesize
8KB
MD5dd814d4c6943167c8f444c9e276c2a17
SHA1664a91c7d5f68b9ffa09eacc2d11110cb2d062da
SHA2563f6c00dfdfc1b6d4b85c66f2042a2a1167270c7e8c0074cbdcc337e8dcfe818a
SHA512555838ec52702610c153f6d06289a43295471f55f37e779478e2282b268d15694e7e2c0fbe57a75a01163699c91585123149d89a721e4b24c8a637800db0ea49
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-walFilesize
56KB
MD566c9edc49997b77c6b36ee31476d196a
SHA14620542cd667c2663287731b4f4f5a4b99de6b0d
SHA256f47239ec34bbfa4b50abaf3801f67e6d6f69fec72851f8549a70d267d4875738
SHA512b58b9272423e4dfb4bf9d1f8f2fd3cf74083d64b19ccd57254c98a37b19ae2528f662a6eb98049b724f1e103274bd6afb98820d2231a8c21b30fd8915ac11fb9
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-walFilesize
4KB
MD5a4af568f70228e2cd95b62d318427008
SHA1b38d9782dd5d7469844f8327c07b85040b570f0d
SHA256f1a0ac2d9cc762074e08387574afd2cdbf05b36c467f0913bb17fad50ccc8dd7
SHA512939d37b36b934f2035b3705b2133775b858dfef1bce9de01cebf7fd2825652a8e6ae0276663971c2bf77efc83d7a28dfb73577e3d3847b0828744235ff66cc95