bcdd7c0101504bf29da0cbe359b803813272c8e0f4689f7b8bb1b6f749e1a434 | Triage

Analysis

max time kernel
25s
max time network
133s
platform
android_x64
resource
android-x64-arm64-20240506-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240506-enlocale:en-usos:android-11-x64system
submitted
09/05/2024, 07:16

Sharing

Report Analysis Logs

General

Target

360sdk_3_1000.apk
Size

1.7MB
MD5

1e9aa09b41624c4ab3dfa530fd1078e9
SHA1

32896aa59fd6f1509f4f46ec4eebb496658f91aa
SHA256

fdd2ac00ca6342d0ad1a684ab5ff6e683b2b56891ae08e6a16578892977e50b7
SHA512

9ec9ffacd3db5ab686eed1f68ea8f466030301cebb510ec3a9f3ffb6dc94277d4afba85a92bf7c3679c3fd6ecedad486fdc07adb152a77ec4ddce9dd943d40f5
SSDEEP

49152:ktqW6lW3LwyQmpkUTtjB0osrxHwD7lKHN:6qW6CLwQp/TT8rx6KHN

Score

6^/10

discovery impact

Malware Config

Signatures

Checks if the internet connection is available 1 TTPs 1 IoCs

System Network Connections Discovery

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.qihoo.gamecenter.pluginapk.gift

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

Data Encrypted for Impact

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.qihoo.gamecenter.pluginapk.gift

com.qihoo.gamecenter.pluginapk.gift
1⤵
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4913

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.qihoo.gamecenter.pluginapk.gift/cache/uil-images/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db

Filesize
48KB

MD5
b9cda44b742a6afcd3bd76ca7ffd0ddb

SHA1
5e2c46616222ed7fbe966f0977089c675c2881a4

SHA256
787fc5a8b1b0454f1e8357b2fcb110b750be9c0e3abb1a3a68a477523a64aed6

SHA512
6fcf7db6e131cbb626121f6db13925b65332fca564fb3e430bf98840a9f640d63bd53ccd0e517265114b009306e45546f69549f16547acfec5d51edeca234a6d

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
512B

MD5
1c5a27d15454a48ea4dfa92521ac4d1c

SHA1
56d85d9e2cfb71922493dd23b8c36d645bdde77a

SHA256
2f5fb6f3908b2a31e1a4ac6cc8de3f845161cf4162d7175e5ec5a5cacdc03b9e

SHA512
c7393f5fa04dfa43227516c7fd996ded49139c16c236461c7212b5f5e64df5124491d5e33e9698ac52d344bc3a986a82481bd10c902400ce954f5552cb067816

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
8KB

MD5
ce7e54ceabe4c48a47d0e30656846786

SHA1
54d5866ba3cae78df5d69eb9d5079de36b19e6f3

SHA256
ee0ef12e420bbdc430f61b45e5a274aca7a943b6e84dc6c5f427985867c88833

SHA512
4f40c4d1abab7fe16367a470b25082a86685d5d8db4801c6462f6937606ac52f89d50350a8a630027ec5a372cfeb57221294b98de8d6cb888572cd57fd10d71d

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
8KB

MD5
cc4251d91065fc8e2c4a712313f905e9

SHA1
26dfa0fc939a118679246ba1ab6b2067294bab44

SHA256
7db1f982124579d1c2eff81b7d987a15fdda5e2befacd147bbb1743fa1eb7b32

SHA512
b5ef8b02700108744f11e89de131937d1a6c24a6322da0ffa5b3f837d026d0e3b29bd30c1c2d812abe320c233316404e2a77abcd57e639746efd41f7c16e5799

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
8KB

MD5
1a2ca7d59ac2b0f3d24440e7abb45c49

SHA1
6393ec42d28ff6b6fbc5dc23d86b04c26b4394a1

SHA256
f7da296196af7eca06b8cc1291b3be2fc15d93172c23c287b7ce8452adbe0565

SHA512
be4efd9783c12d5f4e6c4a1d9f2cfec11bca5f24998871b4f46a89bbd5399e540e78b96e525afe874763936b70579e71e7b09548543f3546282dbd730bcda139

Download Submit