Analysis

  • max time kernel
    9s
  • max time network
    133s
  • platform
    android_x86
  • resource
    android-x86-arm-20240514-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
  • submitted
    22-05-2024 22:28

General

  • Target

    com.qihoo.appstore.pay.lite.apk

  • Size

    260KB

  • MD5

    2440eb04289baccc027a4ec684d2a14e

  • SHA1

    4727a55de77c8e779849f6976084c4fa8ace3830

  • SHA256

    fd1fa6bda15e3145f109a643032a43c6d6f0576e2827d15685c934b82e2137b2

  • SHA512

    c09a345d9aaeae7298ca4a0b8533627b4d9d652212b5e76a37a09db3cafa29e3c7163c4e0fbd4f05ba03a781a6f7037609fd77c1bc03cff69cd4dc33a0a37719

  • SSDEEP

    6144:garGZOh0LeG1d3rUjjCXf7FyZwRMWgigaHjUNA2OcMMmIWmKVQlQ:gYADd3rMWinWgi1INyNMcmo

Malware Config

Signatures

  • Checks memory information 2 TTPs 1 IoCs

    Checks memory information which indicate if the system is an emulator.

  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

Processes

  • com.qihoo.appstore.pay.lite
    1⤵
    • Checks memory information
    • Queries information about the current Wi-Fi connection
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4305

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads