Overview

overview

10

Static

static

10

f6965acbd4...97.apk

android-9-x86

8

amap_resou..._0.apk

android-9-x86

amap_resou..._0.apk

android-10-x64

amap_resou..._0.apk

android-11-x64

Analysis

  • max time kernel
    178s
  • max time network
    190s
  • platform
    android_x86
  • resource
    android-x86-arm-20240514-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
  • submitted
    16-05-2024 17:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f6965acbd4661595c6036f4db9ae211b36e5bc0c692329f4b98562e00f31bd97.apk

  • Size

    27.8MB

  • MD5

    4c2313547389d0f0559f444d53fa4cf7

  • SHA1

    7410136739fe67f69cadf56ebe6250305e681484

  • SHA256

    f6965acbd4661595c6036f4db9ae211b36e5bc0c692329f4b98562e00f31bd97

  • SHA512

    3900f49f7e868af0c1d7cb087301e1fe773cef22afebe809bb565936a9b6598499c13ea45463b3f10c311043f025cf70817ba3184bea5528ff1705d81a930b4d

  • SSDEEP

    786432:tCGcAv6S4ulmSFO+meOD7PGg4aL0MbnikKbljFUDRZlpxT:txcKt4ucSvmeODjGgzL0anikGaDvxT

Score
8/10
bankerdiscoveryevasionimpactpersistence

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
    bankerdiscovery
  • Checks CPU information 2 TTPs 1 IoCs

    Checks CPU information which indicate if the system is an emulator.

    evasiondiscovery
  • Checks memory information 2 TTPs 1 IoCs

    Checks memory information which indicate if the system is an emulator.

    evasiondiscovery
  • Queries information about running processes on the device 1 TTPs 2 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 2 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    discovery
  • Queries the mobile country code (MCC) 1 TTPs 1 IoCs
    discovery
  • Queries the phone number (MSISDN for GSM devices) 1 TTPs
    discovery
  • Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 2 IoCs
    persistence
  • Checks if the internet connection is available 1 TTPs 2 IoCs
    discovery
  • Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
    discovery
  • Reads information about phone network operator. 1 TTPs
    discovery
  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 2 IoCs
    impact

Processes

  • com.onepet.petkingdom
    1⤵
    • Checks CPU information
    • Checks memory information
    • Queries information about running processes on the device
    • Queries information about the current Wi-Fi connection
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Checks if the internet connection is available
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4267
    • /system/bin/ndk_translation_program_runner_binfmt_misc /data/app/com.onepet.petkingdom-EsyOBpYRPkcGBHGuLvdCEw==/lib/arm//libweexjsb.so /data/app/com.onepet.petkingdom-EsyOBpYRPkcGBHGuLvdCEw==/lib/arm//libweexjsb.so 122 134 1 /data/user/0/com.onepet.petkingdom/app_crash/crash_dump.log
      2⤵
        PID:4662
    • com.onepet.petkingdom:pushservice
      1⤵
      • Queries information about running processes on the device
      • Queries information about the current Wi-Fi connection
      • Queries information about the current nearby Wi-Fi networks
      • Registers a broadcast receiver at runtime (usually for listening for system events)
      • Checks if the internet connection is available
      • Uses Crypto APIs (Might try to encrypt user data)
      PID:4471

    Network

    MITRE ATT&CK Mobile v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/data/com.onepet.petkingdom/cache/libweexjsb.so
      Filesize

      32KB

      MD5

      c2788e4bfa47bb02c1a0f3ca5b2813d3

      SHA1

      79f5fc939cd213abc6448ddeecb81c4e84b70701

      SHA256

      d18715b31c7e6f05337c45bbd81f47c9b0dcf13e197f2e8c424045264ad87933

      SHA512

      b91a0c2c46ce3301e5880a5a7fa57a003b63c6da6e29672fbcff2b0e1a7b8a34c8646caa95945b0e991340e13b8e4d60a290bf6cf0ac1307ece75701df4d5a23

      Download Submit

    • /data/data/com.onepet.petkingdom/databases/pushg.db-wal
      Filesize

      72KB

      MD5

      e265d9cd47a9e2c0ba6afd09551ea06b

      SHA1

      a9280971023d69d95d50530396f400782c92fbda

      SHA256

      a401b3055ebc71ef9b7a41edd3224e118a95f3d57a61d2c818311d757ac4cfab

      SHA512

      e590613eeb68c8bcf7e8444322d0536355fedeaec0ccc71f61d2d0eb57c5f6ac564097abe7cd84e5b80fa4f29f18e31fb698ce0795ded0eeed3a419d6d3cd31e

      Download Submit

    • /data/data/com.onepet.petkingdom/databases/pushsdk.db-journal
      Filesize

      512B

      MD5

      6d668df88b318b9abc7a0b11a5e48396

      SHA1

      26f2e621c7fc5e19c95039f505a63a6f44890ee1

      SHA256

      cb0f10bfa782f84e277b33c725e993ab459c4a0fc725a199f48a80f5b7568b28

      SHA512

      059630e199efe541eacfa9a3cc22e54e0f63385435d1ca6eb0c209d1f6c48ce10db903e9fdb9581ad1a5f8284458ce5d9758c1d6564ce248d1231ae17408c5b4

      Download Submit

    • /data/data/com.onepet.petkingdom/databases/pushsdk.db-shm
      Filesize

      32KB

      MD5

      bb7df04e1b0a2570657527a7e108ae23

      SHA1

      5188431849b4613152fd7bdba6a3ff0a4fd6424b

      SHA256

      c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

      SHA512

      768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

      Download Submit

    • /data/data/com.onepet.petkingdom/files/.imei.txt
      Filesize

      512B

      MD5

      9290892fac2968f142cafa1df57ba2e2

      SHA1

      fd75c12117631bd3bf2a137e60c70c5713780c22

      SHA256

      ceb60fd565e28ec6b3f9329d12017d137fd6bc0de0c49c9e9fecd87d77e2ee68

      SHA512

      6b3de364133a6d9d4a762a2dc23a99576425a85aa353f67520ef65faa0760d3a06c1b89be9d1a2483e390032ca87718bcef747281f988785e9cb197cbcd2ea83

      Download Submit

    • /data/data/com.onepet.petkingdom/files/cnc3ejE6/eje3cnc
      Filesize

      39B

      MD5

      7769d4507985f59116153463f09235a2

      SHA1

      b081e84d14300ac7a7947aade9c025fa83bc17fb

      SHA256

      5ba33c69421ad27727832442cb5939d5bc853acecd0d8162d7c10a6b96757dcf

      SHA512

      ce5bb431a31eaba24c0cf467bedb1abee2205b74c4533067058b09ce7e8f9480b8baa01866e3dc89d1800d07da6007f36c1b4fea811e3da164b187903480d29f

      Download Submit

    • /data/data/com.onepet.petkingdom/files/init_c1.pid
      Filesize

      14B

      MD5

      d2d47b269fd3afa6b88728e7f5356c79

      SHA1

      7a6cfa67faebf2287f2ab06984cbefab6d8cb791

      SHA256

      a7edbe0353d6b97d2d8c70e56c4e528a3f91522f2df11209d104f86465d0c9cd

      SHA512

      5fdf4a2b39d529cf3de6b43909b2b6fdfb9c0fe7af64487f2d47abf6c980d512f5fec3e243c77542bced6f7e8c0468eab979c1475cc63b52268e3c6bf3d647fb

      Download Submit

    • /data/data/com.onepet.petkingdom/lib-main/dso_deps
      Filesize

      4KB

      MD5

      f2b4b0190b9f384ca885f0c8c9b14700

      SHA1

      934ff2646757b5b6e7f20f6a0aa76c7f995d9361

      SHA256

      0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

      SHA512

      ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

      Download Submit

    • /data/data/com.onepet.petkingdom/lib-main/dso_manifest
      Filesize

      512B

      MD5

      c2082a29e96705a629749f4cf315aa6f

      SHA1

      5105d1d32a6e03780727da70f14dba2d9e3b6c48

      SHA256

      400bc458b160b942e300d6b6f81d16cf5eff77d4e006b17c9ef11008f6c354cd

      SHA512

      76a29eaff9d91d1f67793e8663d92eb831d1e80ea14a20ea093b5f2a4968494c17e11e1ff28a65a555690ff6a1f153ba8a774a05cc1f3e92db6e74b9ab5e8d85

      Download Submit

    • /data/data/com.onepet.petkingdom/lib-main/dso_state
      Filesize

      189KB

      MD5

      5b58a2f83dac8e7a1b3a42cb77d0a259

      SHA1

      671e4be9cc681af9a3b1921c6b863fbd2df86b8b

      SHA256

      33e429a3cd9a39ea4183fd56fb768ef3a002a84c39bd5d1576e544e18490f564

      SHA512

      fe07afd6fc4a1f6ae0389fb936054dbe3ac1e87244bf77ac2169a14410e1725b833d7c0cbef4cf326e5b78cf3820ff4196824fd7e855db71b496faf3be04d518

      Download Submit

    • /data/data/com.onepet.petkingdom/lib-main/dso_state
      Filesize

      52KB

      MD5

      28432d74c0ec0e59d65801daf2c7f791

      SHA1

      81538ec0a825550099e41af287a805b2b3f176ed

      SHA256

      f87962d6a565e68b3f0f528c0336181360569ab502551493a970ec12af9c4f77

      SHA512

      36643b24fd011eb044d54a936ff9fc5696ecd88b321273062fb12558f59b83e8903a6af145872d0ae7c216085f67203336064ae7b916ccb97ae8b53d11957391

      Download Submit

    • /data/data/com.onepet.petkingdom/shared_prefs_ext/test_app
      Filesize

      32KB

      MD5

      cd576ef0a9eef3b092433696ce52b0f6

      SHA1

      1a4ae935d98d37b84ec94ec4a7c004f4490f9cdc

      SHA256

      d2651589ff598844015dce31e04c9ee69eb85f4dadd7e9ea00a6aaf6614dff2f

      SHA512

      2dd445095fe8da215788d134775bf11440c595876c7b0dcaeef602109524299302bac87c4de195cc98d53faf9a8277bd95cbd1c34a36f1b4630f77228bc1c132

      Download Submit

    • /storage/emulated/0/.imei.txt
      Filesize

      32B

      MD5

      f9c7c87992b223b7769321278eec537a

      SHA1

      d2d0bf288e8308c46167221975c5d9a6a7dc28b7

      SHA256

      4daeb9ca20973ba79a4bfbd8c6220f4ac3566bc34ced7c226bc53f922d315b01

      SHA512

      42ef5dc0a0361444ffcbf22205b1993b0fdf397bced3c003025db16054ae47751d476ed70d71e27364b8b50a7b3a030a1f05b9f2bf6b979e224d5c4c342ae6e3

      Download Submit

    • /storage/emulated/0/Android/data/com.onepet.petkingdom/apps/__UNI__2966709/temp/1715879411894
      Filesize

      1.2MB

      MD5

      8d1def15bca02f68d61487412226bedd

      SHA1

      6d70e830dd927d8fc05fe6e43a5ae9f0d6a0eb7c

      SHA256

      268ca85d29d80a6aaa6a38888dfdd0189744f2f1b4c3d9803cd4c40bdbb22a1c

      SHA512

      51b0943e2dc9cccbeaa6480d774ee540ba7decd3aaa408cc3d9578bd43976fe10cc258aa0fe1bff7d93ea76153cdcb87f9da273f14eb71e1b6e194691b19aac9

      Download Submit

    • /storage/emulated/0/Android/data/com.onepet.petkingdom/icons/-203519239
      Filesize

      1KB

      MD5

      2662cbdb9d83890232c72dcd84d40ec2

      SHA1

      8fe43d8155f213b733d39741af809fda83052e51

      SHA256

      b16bb74cfaab6807fd4cb65db026f19f3f473f560167291aabd577cc371ea758

      SHA512

      94af660aa42c6da30f6b73d6f5e72ceb4c4e8e38906efa9b6606ecb3835445ed4df0b5fc454279d66a721691c6774ba98eaef949dc6bcba5af0e87d552fb27f4

      Download Submit

    • /storage/emulated/0/Android/data/com.onepet.petkingdom/icons/-3115182
      Filesize

      1KB

      MD5

      428897e9c709f408e1547febb888cd21

      SHA1

      e460718ed412c45d087781055cad2e7e9f9b0aa2

      SHA256

      710127b7237173352e03fb0991b2161c44a15d5b847f671ecc5f48d8bbe14fda

      SHA512

      4d90dd23b683fc77a0a35648e83d9a60cd7b1169ba6acba69767f5353ba48a6c3cf283c991b4f34eeb5480bb7cd22a0525708549f4c4c2845b18aafa306b80b1

      Download Submit

    • /storage/emulated/0/Android/data/com.onepet.petkingdom/icons/-919842660
      Filesize

      2KB

      MD5

      5a93461c922f923a0ffffb081269a582

      SHA1

      867e16783114422b9aaa60729a697603c874d43d

      SHA256

      ebb2369eecb28ad4ddad7713372a1edf937735cd938fd46169385207f22d0bf4

      SHA512

      456d5bafd758de3aad452ff977df644758716b47dcfaf5bb7bb7852ecd8b05dca78c867d0ce2f091ff6a4ef713efa24e76cf6a9fa4f505ff7a361d8231ad5b3d

      Download Submit

    • /storage/emulated/0/Android/data/com.onepet.petkingdom/icons/1115205645
      Filesize

      25KB

      MD5

      88d03acbbd44e600309d142de70e332a

      SHA1

      5dd7134debadd43881229908857ea5f409baebb5

      SHA256

      f9b2b8171f961f3d42ac4cfe1a03a68e69a4a2118e57acca5d9c6876a8110fca

      SHA512

      381efb955126cd4f9d1b6d487c127fd2291064b052fd3bdf1a5c27b120e97cef30a13d95dd12f9c115f5133acf1527a50bc10b12cc110f3116fe0e9eeac337d4

      Download Submit

    • /storage/emulated/0/Android/data/com.onepet.petkingdom/icons/426322083
      Filesize

      987B

      MD5

      27f697db942e92f53c0265bd6d5d1a41

      SHA1

      538c38320dd2344f2e808c0c6932d07a5286ce09

      SHA256

      ae0a83e5a365ac49a0bfdbb1129ef931f35a4b97c14e4e964b6a4e4305085567

      SHA512

      f4c409a97cdba31ae0844cb31c84003a9c6c1836d36a9a7176994df93d114251d88a0b88ff98d239090aba5970889758710f9d3e0a6fa3bd5dd5b7c8fde88441

      Download Submit

    • /storage/emulated/0/Android/data/com.onepet.petkingdom/icons/427245604
      Filesize

      882B

      MD5

      b77faca9216ea7a4a2c10aa17f33e4d1

      SHA1

      1ac131b50f0105603b3208944230343b8431ba18

      SHA256

      58042f878058f390b58e7ac3e03b0a9743edf8b784572b5b8cae0e37ad3b69cd

      SHA512

      8679b83d18ec24fd852e7af003497e1a0e4a8472ceb6c2ec0b922ee3ce1f48fbbd93cb50a60105ad7af9f447d2237d2c93a14622f1a3b818ce9c13f821db0180

      Download Submit