Analysis
-
max time kernel
143s -
max time network
167s -
platform
android_x64 -
resource
android-x64-20240506-en -
resource tags
androidarch:x64arch:x86image:android-x64-20240506-enlocale:en-usos:android-10-x64system -
submitted
08-05-2024 17:55
Static task
static1
Behavioral task
behavioral1
Sample
2607d71f14a034162b27318a2f480fc8_JaffaCakes118.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral2
Sample
392.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral3
Sample
392.apk
Resource
android-x64-20240506-en
Behavioral task
behavioral4
Sample
392.apk
Resource
android-x64-arm64-20240506-en
Behavioral task
behavioral5
Sample
QRomCommand.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral6
Sample
QRomCommand.apk
Resource
android-x64-20240506-en
Behavioral task
behavioral7
Sample
QRomCommand.apk
Resource
android-x64-arm64-20240506-en
Behavioral task
behavioral8
Sample
lock.apk
Resource
android-x86-arm-20240506-en
Behavioral task
behavioral9
Sample
lock.apk
Resource
android-x64-20240506-en
Behavioral task
behavioral10
Sample
lock.apk
Resource
android-x64-arm64-20240506-en
General
-
Target
392.apk
-
Size
1.7MB
-
MD5
7af2e866326d0514dbeb3859d747e7c9
-
SHA1
a447cd8b762649474b833d0160e48c4f8e89aaa6
-
SHA256
9107f5d8322775b267325aaad10d8682098bfb68fd7404cf7f8f184aa3c2afa1
-
SHA512
e2a4136398f65f5f99306acd268157be62009a390602e6f67a5c72a24432154e4172fe5fc24cd207790928a97fa2286e40300281eef035e98d05566acc1a9795
-
SSDEEP
49152:IYn3YegqXLmsSEz8qajE52ITAFghSR4szQdZW2Yz:IYIeRJz2WcghSnQdw3z
Malware Config
Signatures
-
Queries information about running processes on the device 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about running processes on the device.
Processes:
com.tencent.qlauncher.theme392description ioc process Framework service call android.app.IActivityManager.getRunningAppProcesses com.tencent.qlauncher.theme392 -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
Processes:
com.tencent.qlauncher.theme392description ioc process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.tencent.qlauncher.theme392 -
Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
Processes:
com.tencent.qlauncher.theme392description ioc process Framework service call android.app.IActivityManager.registerReceiver com.tencent.qlauncher.theme392 -
Checks if the internet connection is available 1 TTPs 1 IoCs
Processes:
com.tencent.qlauncher.theme392description ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.tencent.qlauncher.theme392 -
Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
-
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
Processes:
com.tencent.qlauncher.theme392description ioc process Framework API call javax.crypto.Cipher.doFinal com.tencent.qlauncher.theme392
Processes
-
com.tencent.qlauncher.theme3921⤵
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/data/com.tencent.qlauncher.theme392/databases/beacon_dbFilesize
40KB
MD5496896034378dd3b5f7564d7abd40684
SHA1efd126316807295a536a4de8ed378fe391f98381
SHA25654ba3e70e23430558b0a92eb3c8650e3f723873dd7d5857a7c1b469440e915d8
SHA5126eec9fa7f8f7faccd6ee621f938fa63c50c43d4bfddaf5429927262cb846650d2c9b86018309e79389a5ad638bbb27284c0724e6657123440475d6d7de0c882d
-
/data/data/com.tencent.qlauncher.theme392/databases/beacon_dbFilesize
20KB
MD58a2106ec092a823851e1e7f24b53766a
SHA19a8c45d6110a2772b0003f77f9127ccfb45b4648
SHA256e1aae152a2a7f513609e6a0c36acaef080a24756321d149c9820ab9b45a739e6
SHA512a46ca8d0fd81dee7bc3e96ed13a95e86dee8b94611c199bc3bc486438e95cebc58c7027a0bb6535e764c41a3c58c567b8f8941f9baa828d5e04514c94eb6fe97
-
/data/data/com.tencent.qlauncher.theme392/databases/beacon_dbFilesize
20KB
MD546a2ce0970a12035074fa6bb3c05125b
SHA1d19266827184a8b8b168149bad769187519a315f
SHA2569d6ba3ff22a97cd0e362c19c02f9b8ed315336ccd040505eeded8aa7c86e07ff
SHA5121f5e3d751118c8cb2391e61f51c00c78a618784141266b2d25db7b4ae613ffa62c58d12ec8b913789add59077d8eccd7c3fa2fc008750f3f2bf11c1eef8df887
-
/data/data/com.tencent.qlauncher.theme392/databases/beacon_db-journalFilesize
512B
MD5d382c2c1a8ae72da5c1841dcc14086b1
SHA1fb33dc80722f9bb93a2165133ebf8d78d331a551
SHA2569c197ff795ef3c85d387068ed0ed7bde9bd1bd73bb6257bd41caec62af0b94dc
SHA5127c602395702727f7417289fb3871608e09229e19c8fd44e660b25338071f2bc4e0367d7abfe47be17666539c9e7a15c10cd23fac25786bd7a9645220a5dd50c4
-
/data/data/com.tencent.qlauncher.theme392/databases/beacon_db-journalFilesize
8KB
MD53e6dd3c60a7a3176cbfbf226f36e40e6
SHA141f6a8a00f02d76b53460040dfab30c11e5f11d2
SHA256484783f92ec3cac241619aad2ed8bccf984cd9b55d735e15761a91c45c47cb2f
SHA51260ff4e0758bbcea1d69cd4bee479f6ddcc3e97c1e532674f2cad69e34c8a7941bdab4d432f158295d7fa2ed683ba8e72d78a40c2e6fbb5d2fb655e42620d8d5b
-
/data/data/com.tencent.qlauncher.theme392/databases/beacon_db-journalFilesize
8KB
MD58ef9ba56148e46e8f32efbf9f1cff017
SHA14156ff38d3023754f9508fd546a5ad41c11b125a
SHA2564b24edde6b33664426a00ea3dfdbedb003f6651ce49afc37f33750de99da5250
SHA5126a15cd699da578dd2186bb226f1880de1fdeff2c9856311fe45e5c9b280d3cc9fde1d0965a6411e8e74d8a6fcf563b05402dd2c28e2b1c36296fcfa7cfa87c52
-
/data/data/com.tencent.qlauncher.theme392/databases/beacon_db-journalFilesize
12KB
MD5595244c66ace2825ac1bf9ca243526ad
SHA13760bedb2c82738cc59db9b3f71eb8200ee9a399
SHA256c2ee3073ba2d98bda983ef52820429cd97a36a6f2b7e7f76e4392757939a898d
SHA5126a9b32e6ef6b0308bca615b1dfe9f2a767558da4686f7f9bc924589a0bd5414b480875d56a981b7a4b7311f787cd36714859055f5870d1273eecee272e293f6b
-
/data/data/com.tencent.qlauncher.theme392/databases/beacon_db-journalFilesize
12KB
MD5d1aea77bb19238f11714252902f814f2
SHA1d216edc3c816a1d051bea9fc7de5bf70234f50e2
SHA25627f3479c10a8a532b6a52a4860ba34eb28f861ce119ed313336be313311f0370
SHA5126a2028e0177ba971cecec0b5137c40bfd23732b6e78d21b427a2c11aaf53d4756ba19087b97f006f6e65604d9b5c098273592e7524569f57d9ff772ceae5ce57
-
/data/data/com.tencent.qlauncher.theme392/databases/beacon_db-journalFilesize
12KB
MD59409f3252f4780d910118592d9b8ec14
SHA1cc5cbfe37a0e8d38e483439aae56aec6b0b1a83c
SHA2568474f1e3d47a6ce6b933b869d981bbb6ec6fb7bf74d068c4794bcf389a23efa7
SHA512c8308d869850dc205d9ed6af74de272a24894cc19423929ebe1c4881c3977a5eb5741120866845ab7237e93b6168d88614bcd830020df2dd1e297332bf624c3c
-
/data/data/com.tencent.qlauncher.theme392/databases/download_database1.dbFilesize
20KB
MD58e3ef6d833424a2e3164215d190f4c01
SHA19fc5b9219e577aa4dec58e1b82423816c7fb5f0b
SHA2560c5e1cf552421c30b282d6c587ebc7f8143d498629485ae2fe5d6e1686862f49
SHA5122f992ea450410e0a0b54e31e28f2b037a3f97c204c3677c593a09a140e896c30540760d018edfc2d9849c19b5da47f627bd1fdecac9f7009792f059c0e9b54b5
-
/data/data/com.tencent.qlauncher.theme392/databases/download_database1.db-journalFilesize
512B
MD53fc3895248e2303fd3f3b4bb2b1fb58c
SHA13cb497a4b821c8f816987200c13dd998982377d7
SHA25669dabaee9f6d109a55569adbe8bb4f18afb90541dba02334035d7303ed879a05
SHA512be5e618db9ad2a054a85035ebd06076e473f583021f9a5ea3fe3018b45892162e5ff9fb776628a611e9609a6d5a7a8937ec67c1002b2f14e845f6d4a8771dcf4
-
/data/data/com.tencent.qlauncher.theme392/databases/download_database1.db-journalFilesize
8KB
MD55b41aa8313bc9d45c7c60064e29867a1
SHA1caa6afa0cbb55cafe5a2b8bebd99dcca5cb56ed9
SHA256a44275e670ff4f74d6a291dab61e3a932d018f9fcd31ffc95df60c35dd218b68
SHA5124c51da05b1229d4a8d074c22396845ec1ad4817cc937686069dea0cf62c69d855a19e229f775c9bcbf46ce6c1e6118b2efe73665d31e8c1445c1ce39508798f6
-
/data/data/com.tencent.qlauncher.theme392/databases/download_database1.db-journalFilesize
8KB
MD57949911f82571a812a4cec06527923b4
SHA121d8397b6a7b84e3953e7369615fb9dada4683d8
SHA2564c284ad2535620f704138f9e0d4ea565c46288b34fec9dd9ed6e6a0675117918
SHA51214973615a8c1e90bb586dd9674ba9ccb6961fcd748204350771c98538dfd637e418c85f54baba5775eb48fc09dcc410c51c80afbd52dfaa65057104b619d7042
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
36KB
MD523841f1e0cee21bc2c283570aa5b2f43
SHA168ed0e3bf8d5dff914619f74b1e37dcfadd16ddf
SHA256e17f984e0e24df8a5c4d875218cfa9b110665cd11c9df30df8ddaf2a19a45836
SHA512120466eaefc668272eaf2b1a75043415840c1a5c53ce06644e1ae282a7d4bc985a69b4f2ec293c619f7d0075d36644574be14a59d2685e8e71e6bfe5cc7ec4de
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
16KB
MD5aab9ae8daebb1f9771e18a72a7f3e6f8
SHA1f9e64a1764505119cdcf3ab4f97fab25e6124d6b
SHA256f22d95dfeacb8d4e5d046205d4a474137b7d7d9f58490a7fe9f15203d19fa58f
SHA512c0266dbaf810c7aa74f840cba743f3bcaa187874fa6cd91b6d19ebcf219abba47348f0d110c0880a2185e7df023e15748038f9406add485a3c6ecd89d6482c29
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
16KB
MD5f39e946045304d4612ef5ac5659e50ec
SHA17276df98c3c34ae7a130be60f64c3c5d8ef01c9f
SHA2565e5970cf6adf5a7fdfc9e1e0d7b85ccc652a06231099b2a1f8a74aeb2498d028
SHA5121d18ff31129981073d3c3c14a744b28525776713059c2c1bb8d89cd3b88d9aad8a873e31c1441c9ea19dad0c19ed51f61f76325563d885df3267b97471bf2561
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
16KB
MD56ef6990cb251b7ff8021c788cbe5b8f8
SHA1ebe467bdc9ae6d2d316dbb804dfec4e3a236ae1b
SHA256264aa149404e272cea32f6154ea831b7dd8591fade0d6ee802f72f41385d940a
SHA512a5c5c597c8d8c5ff3f6e11a2a24113b6dc58e37a4ceeadc88fdbd62b70ab135801afb163c5b8bee85eae3911e7b5816a3e1c7e2fdaca1011e140186df5cedafd
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
16KB
MD53389aff8d9c59594d8a1b1273440c87b
SHA153686d30bca5e51bc18bbb04eecdcb489a04c46a
SHA256087ddf2e439b1b2c27c8206cca5f5712a10ea8a4c6a068a42f553e861b82fe9d
SHA51291c8b239ccfd60cb9d75c7289c1046562b19d824a5d698e4b55908c52cf89b16889c70b4dc47f68472e3506d8718f3adf01b1768ce84388272374ac2bd05dc37
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_dbFilesize
44KB
MD5e1ab7cbed3fb53c12f309deb97988d2e
SHA1bf26f7301643ca198721d10017ea63de94718084
SHA256e4d36cbc27ce2fe1e354ac6a145cdecb096b55e6cc5cb6d1f00eca2a2cf05e0f
SHA5129b162cad2eaa83ad93952b8a8ebedab0a32f014b6c74c357965f073c2cddad90582de7ce012d6fa012aba60bb2abe9f39fc159fce358a68a6422a4557e72acc2
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-journalFilesize
8KB
MD5a9e0a3296a12ee257187ce0f91e28aac
SHA12555fdbb69d572c414bd5ec8fdf628ae23db108a
SHA256275bfb1a150acd3555508ececdf0d68c682604c3fbe46f379ea5e629ab8abe75
SHA512d11a3275f4b78a6fe24c8f78c980f1eee19bbf7973a69ab122329c31fb35b6d4a907f34aa974c545b5ae88dc7c76f15608c599784198f6d6525baba6a336bb64
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-journalFilesize
8KB
MD5ed87a4d433f3a1b88047b8c168b05aca
SHA1ea4ceee2fc1e8b0cbadde67c75d066925f778668
SHA256eefa79fe8d04263ae5914922a06394a7e10439a1a9a8f110ef4632bab34f029a
SHA5123435443b6894774900ff1f76b8156eb21461a68426bc6e77138f0c3cb79102439531ed0a3ae741fa1c0ffe07f59366875d7073779660e1591bb294a90779e201
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-journalFilesize
512B
MD570c9a45058d54fff64cf2c9007b8d7f4
SHA11dbb7b6397765a7eb395c742c973fb90b2de277a
SHA25654ae7ff47a797d1c1f7a63ec2ad5381a33cb82e905f3a33cde62dc5c9658b319
SHA51212c4aec8fba970adaec68e1feeac7e94bcc13e4139eb7411b88a923ac8d4cc46217a12ba711cea4f0094b72d4e58ebd51f6bf7a75099516496de75edc40997a4
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-journalFilesize
8KB
MD5f8d36d8b6b4d15941b674a80106dd152
SHA15446ccb8f666071878f4645bed9026f54f104b2b
SHA256acb94a8e9bbcef02ee9325ca1ca240a0febe7b2d96035b92407d7640241a72db
SHA51275df67addd5f0ee39296bafce52214c8522905ad2f63de0e5fef400dfb1ae082e99fa3f4dae93461549801ca96546d387f827309fe36999747348ec894c427e2
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-journalFilesize
8KB
MD53d64d708a00e204e4beae0dbd6b0a93e
SHA16702d94253498e324f69ea8ac53bd7e90a68b4fd
SHA256d128bfffa0b3f9e2c7b58abd93b09643e8c7104c4a272b59c7a095194e5b56d4
SHA512b9ca2ec84194102397cbae18746fa26f42d3f24df41825d8689dc15acf73631bb36043cdb6c1ed86729288c6208e8217da42f11654a442435a3f84761c3bfb75
-
/data/data/com.tencent.qlauncher.theme392/databases/eup_db-journalFilesize
8KB
MD508399010ad4324186fd4122673956109
SHA11fc1c899e3eb085d989a006d288ae0807603fe4d
SHA25637c6efda3f995a0db1d982899d5a166d169166ff62111ca1d15baa8ae1b59e3a
SHA512520667ede1d7debb2f863a463672282bfe9c0d705ca52898cc46568165c83ad83b6e461b2f0bf209d5f163948612dcfcd9374c76325e4aaf542ca3b31a257fdd
-
/data/data/com.tencent.qlauncher.theme392/databases/theme.dbFilesize
16KB
MD5a365ce2a7be72a1736f11e9afb7288df
SHA1dfefaf9728757da4076ab6adf79d9932681b2d21
SHA256dec004a5f4f1f903132baa8d99bd2da5da17ebd3a086e8a0d3e59bf8c8d82591
SHA5127ffdf78e0c39085c3872c24e372be991d62d953e89a3e30690d053223cc7b034aafeee4c3fc4062d3f9ef6747c71476f786f76d795b1fc759084844ad017b305
-
/data/data/com.tencent.qlauncher.theme392/databases/theme.db-journalFilesize
512B
MD5899bcf7b0ee2939d70b53cea7fe172fa
SHA1393594c847b4d32949841feca9f23e33d1b9a4ef
SHA256524d746d7b002be72c8942cf4d241f0630eca24a2d5d8ba5cd60960b59d513aa
SHA51246425d31289225451a7d1aa7895b3b31c09ebb4a3327c0e11bf9e882c4a42597864ab692f9c204dd182a25f7e454be14045a46492ddefaf729a7b650e8f8531e
-
/data/data/com.tencent.qlauncher.theme392/databases/theme.db-journalFilesize
8KB
MD532f3d711b851dfda1b208905331c59bc
SHA195a129151332f3ac546a7fded1749c82b0008722
SHA2568d9c216a8f335e1e90f7ac8222d71220d9b5e95d2632b29305f22503089d3592
SHA512ef5b409d199e50d25913e0844e890696b071317838a05f571c02abedb076b0917ff8f4d8eeb13f549276fa1ad4c8642dff4a67c84d2793bf7c30579b5c5cd029
-
/data/data/com.tencent.qlauncher.theme392/databases/theme.db-journalFilesize
8KB
MD53d659d8dd2fc41731e15d3f261072888
SHA15f67b88be6e2aa2bca624689c377ce1c19b87225
SHA256dd81265c976c2735247a51298e5c783edcb106dbcd1a0531036c603e75a2d050
SHA51282d8fdee53783ab9be3d5af476ee8705fb7dd9169fc52ed7edcf90893e2549ea6544150927487e4de4f813a71cbbcaa496b9f85d4212a6646ce17c5cc8905155
-
/data/data/com.tencent.qlauncher.theme392/databases/theme.db-journalFilesize
8KB
MD543bc67e1c193b77d6b0648a119306d5c
SHA1b8d52beab5d7a896ec5b2ae77f52ebb8241c1923
SHA2562626c9dbb23690302141b444114ec1b2ccdbc6a55685ee33b4138245f666fcdd
SHA5129676ecff94c7633f087ca21f02bc7975afca478de6a2fb3bb99d376ce96dc7cdb2e3ca74c868003a892430420c74964e33a11199af8cfc9ef2efb86bc46bbf52