Overview

overview

7

Static

static

6

66271a818c...18.apk

android-9-x86

7

66271a818c...18.apk

android-10-x64

7

stasdk_core.apk

android-9-x86

7

stasdk_core.apk

android-10-x64

1

stasdk_core.apk

android-11-x64

7

bdxadsdk.apk

android-9-x86

bdxadsdk.apk

android-10-x64

bdxadsdk.apk

android-11-x64

gdtadv2.apk

android-9-x86

gdtadv2.apk

android-10-x64

gdtadv2.apk

android-11-x64

Analysis

  • max time kernel
    179s
  • max time network
    183s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240514-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
  • submitted
    22-05-2024 05:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    stasdk_core.apk

  • Size

    1.0MB

  • MD5

    b1a590ed02c586df1e69c62749410853

  • SHA1

    82528aeb58a3fd4fb242b3c4a9af855f42525e4f

  • SHA256

    a174df995ead589eeb861d2396cc6ffa53c72ce66cc195beb28a5c9c13386591

  • SHA512

    d4b11468f523b9cc688714ddb1be84a06e955b39cc0c3ff3071b8ed98428b6f0ddf909c1ea4bbf15015e6f06086d67b8a9be6dd68f4fe0b11c56c4f5a66f4532

  • SSDEEP

    24576:VzNdQk4lV207V3DiIEJ5gA136syCblVuxMffl9U:ZjVGM07JDxEJ5v1qsyCbUUli

Score
7/10
discoveryevasionimpact

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 TTPs 1 IoCs

    Runs executable file dropped to the device during analysis.

    evasion
  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

    discovery
  • Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    discovery
  • Queries information about the current nearby Wi-Fi networks 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.

    discovery
  • Checks if the internet connection is available 1 TTPs 1 IoCs
    discovery
  • Reads information about phone network operator. 1 TTPs
    discovery
  • Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
    impact

Processes

  • com.dbgj.stacore
    1⤵
    • Loads dropped Dex/Jar
    • Queries information about running processes on the device
    • Queries information about the current Wi-Fi connection
    • Queries information about the current nearby Wi-Fi networks
    • Checks if the internet connection is available
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4475

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.dbgj.stacore/app_e_qq_com_plugin/gdt_plugin.jar
    Filesize

    142KB

    MD5

    f0b930680aa93a62bb77d1916e64a3d7

    SHA1

    fc30b5641b8d32e4efeaf409d07a4d520a95a6da

    SHA256

    8f109682334d43d811c7d56620c5eb30c9bc1a89f3f36b91232aeb142a6f6ba7

    SHA512

    2a503f3aefd5ed8634dbc85cd952d10625e4bc18badc0661c7cfcc3345cfb43ba1e153d9fb264703e4cf0d6c40ac601942e841b9537125072f884c283adb5b99

    Download Submit
  • /data/user/0/com.dbgj.stacore/app_e_qq_com_plugin/gdt_plugin.jar
    Filesize

    336KB

    MD5

    798f10a662a4848ed33d16790c751355

    SHA1

    4198fc8cb89d53e338c2bf12122cb4f53183513c

    SHA256

    6f52b12d38067a97b22917660e919d36232b409c1505dee37233cf7bdcc12eea

    SHA512

    70beba592750c2d9ebda28b13378a82b2ff7d0e39d0caff0529d8e3ae7c23eb3b243ecd82bc132b1c12b354e8b171e589bdd846b169e955607e11a87c362957a

    Download Submit
  • /data/user/0/com.dbgj.stacore/app_e_qq_com_plugin/gdt_plugin.jar.sig
    Filesize

    180B

    MD5

    b23a77c1c0b865c67e4fd0ca80eb41d1

    SHA1

    e290e2dde37e0e2f6b1274f0a69ac4ed0d26af37

    SHA256

    142c0b3bab77907907546d3f17089585f1086f7d9711bef8cca9175ea659e26f

    SHA512

    b93447f22e7bc98a663e3c9f7a8a76cc1c462ca6288deca746256154d61ac58cd54cac199e3462a33ccfce1c43f3ff6a93b15dbf7e1fd0421632044b29213707

    Download Submit
  • /data/user/0/com.dbgj.stacore/app_e_qq_com_plugin/update_lc
    Filesize

    4B

    MD5

    dce7c4174ce9323904a934a486c41288

    SHA1

    e117797422d35ce52f036963c7e9603e9955b5c7

    SHA256

    0c030586945fe504b604ecc2e875c38ede400cd5cd73da9730302162e6b02c6f

    SHA512

    d570ab6a8f4a7b54d426b0481219074b5277ace37d88438d87ab97eb387938eca1cf7b09fa42d596c56ada860710d2a7385d2a96e1cedff58ad6ed8900f1b143

    Download Submit
  • /data/user/0/com.dbgj.stacore/app_e_qq_com_plugin/update_lc
    Filesize

    1B

    MD5

    0bcef9c45bd8a48eda1b26eb0c61c869

    SHA1

    4345cb1fa27885a8fbfe7c0c830a592cc76a552b

    SHA256

    bbf3f11cb5b43e700273a78d12de55e4a7eab741ed2abf13787a4d2dc832b8ec

    SHA512

    91972aa34055bca20ddb643b9f817a547e5d4ad49b7ff16a7f828a8d72c4cb4a5679cff4da00f9fb6b2833de7eb3480b3b4a7c7c7b85a39028de55acaf2d8812

    Download Submit
  • /data/user/0/com.dbgj.stacore/databases/GDTSDK.db
    Filesize

    24KB

    MD5

    d9546e7529040098de5b03ef296970a1

    SHA1

    7781f0f230dc2bd574bbea97194d0033431d350e

    SHA256

    585184ebd52cf769be667e0b871dd9324197f21e37152fbd5fe1cefa5f523ccf

    SHA512

    acf1935480b8b99c231fff1b1de32b7456094853cdf0d7819c57302100d608ae884bc2d44ad3ef3ff8c2cbf2d4d66ec8d77827e6c9605ebda1f31cfc522b542a

    Download Submit
  • /data/user/0/com.dbgj.stacore/databases/GDTSDK.db-journal
    Filesize

    512B

    MD5

    906903c0b132d5af9cc78e04bb92ca77

    SHA1

    e08a62d18908de7555e61e95ad8f0bbaa0d811c0

    SHA256

    3f6f5c30111e61c86c2ded9319cce3bf916a0ad5f5149066ba054ea90ff21d18

    SHA512

    5e0bf493bbad69e82511a94e43a84b5b95babb1fc369c18f3b2dc8ab1fb0764209c2aaec7565b0ac4af824578b1868a782897142c25fe807e78376a2cb8b888f

    Download Submit
  • /data/user/0/com.dbgj.stacore/databases/GDTSDK.db-journal
    Filesize

    8KB

    MD5

    7b25a87ebf80196824ddc61046fa9c96

    SHA1

    e97152ec85013bd08c166a9e2fcde55c854ec12f

    SHA256

    7fa28e3895fc7eedbad8c3f43a3c854b6da8ce687225472aa7d01f3aa9888e64

    SHA512

    c075104b9a75cfd6f8fcabb543d565af68ee473087c07c20c24c32e610769ef942246bd0480b4cbca773f0fb68bc257f61fef33e55a3eefb9e09421e1661d526

    Download Submit
  • /data/user/0/com.dbgj.stacore/databases/GDTSDK.db-journal
    Filesize

    8KB

    MD5

    b76459c7b0d9788cd63ac7fabba15bc7

    SHA1

    54b8693eed4a607d374303b9a64dc9cc076de458

    SHA256

    6b18b0eb4109f6aaaa53af8349d8620bbe130fae7c6c6188c94bf1d285cd86a7

    SHA512

    c038a4806e71772f951c40095b09aa603a74f048a7e9421a83262ebab99d090eca43b66f195d67d4d0ac45fb84d8e5b40cffd5e25b19871cdd51e407da284c38

    Download Submit
  • /storage/emulated/0/data/.systemid
    Filesize

    36B

    MD5

    adbd52d593343b65c1a5816d81f49a65

    SHA1

    a7696a50abb842ba1862352717ba052ff5ca7b5a

    SHA256

    438a297f4242f6a94bb7a07cc49a80c03e4cbb0d1e5a50e4d9d09ade1a376b0f

    SHA512

    9b8002f9daaa95ffe025f02cbc647346958a6d4069c4a7efc2fb678a09335e24b45c8f0901d05d8b6ad35c4c6d50c05723e9ed0b827e6257593d5a54964a4f2d

    Download Submit
  • /storage/emulated/0/data/.systemmac
    Filesize

    17B

    MD5

    0f607264fc6318a92b9e13c65db7cd3c

    SHA1

    c1976429369bfe063ed8b3409db7c7e7d87196d9

    SHA256

    c248c629af1fe0a8c46b95668064c1d2952a9e91d207bc0cc3c5d584c2f7553a

    SHA512

    9dbd40b135b46c7be31b8c7d11c75b0b179af3a6550fca52ec447583aeb50aaaedb4b1e9373cf8826615149549a2efaee04efdc9a282e3a6b387c73099c13fb1

    Download Submit