Analysis

  • max time kernel
    8s
  • max time network
    129s
  • platform
    android_x86
  • resource
    android-x86-arm-20240514-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
  • submitted
    22-05-2024 11:55

General

  • Target

    whpm10t.apk

  • Size

    6.9MB

  • MD5

    cd0acf9cd550f636d3b46f27538f6ffc

  • SHA1

    f2005dcb3c57d5ac6e1e30b7e89309f7c48fff06

  • SHA256

    e2c45f8aeed6b56bbc2ffb40f822f127b90e61cac3b8c9cf1896651a67f301d2

  • SHA512

    2fcab2596879621401beaf6dc23aaa6c93224283dcdedef3ac59d1db18b3ed4dde45078588876327bde92fb2c09485d1220f2bfe8e2431bf125eb9a3996bc2f5

  • SSDEEP

    98304:Bb1ciTIb6febFhpvTPtRRkd8nCslfjXwJj+M7R2AhdrT2oevOLBVzfr5xxq:BxDTIb6mbfR+WCoe+gR3h9VYujxq

Score
7/10

Malware Config

Signatures

  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

Processes

  • com.zhzcloud.dustanalyzer
    1⤵
    • Queries information about running processes on the device
    PID:4320

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.zhzcloud.dustanalyzer/databases/btpm10.db

    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

  • /data/data/com.zhzcloud.dustanalyzer/databases/btpm10.db-journal

    Filesize

    512B

    MD5

    e06aa5d1afc518f3f6eb7de2a23b61c9

    SHA1

    0c3b32ef84e99db05c5ff3bc812f7e5984774713

    SHA256

    1108ab159aebe4f27b4ad75742b96cb02969a3b6e6864aa7afe4257d40fc5a16

    SHA512

    afd0aa9ab731d02072555b82053ff3dd49c7639e8b608465ff2bcc78d0d2727a5cd6eae1f8d953aa46b33d931e8cbd11bb0d5f476edf83d314076f7ab5d6db49

  • /data/data/com.zhzcloud.dustanalyzer/databases/btpm10.db-shm

    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

  • /data/data/com.zhzcloud.dustanalyzer/databases/btpm10.db-wal

    Filesize

    36KB

    MD5

    4630f6e54a9c301da2c78d373678fe38

    SHA1

    d8fe30053a735c1bfc4c2f44bffe31453420d48f

    SHA256

    17714419bc2bd09eab5fb082c283a0c0a8f7d08910ebba5f93dcde23dc548732

    SHA512

    2cb72a9de288ccb653cee997bf9c601d7db90bdfcc668a8a2df19c85546697460b2cb630abeb6707b3592c1224bbd31a1474380092fa9bb2a2e5a5c1e79cbb5e