Malware Analysis Report

2025-01-19 07:01

Sample ID 240522-qkaa2acg49
Target 676278f8f32877f7f2471ba4a130890e_JaffaCakes118
SHA256 deb998eff5c1f1c261559356ebd0af8a991258a73f3bd73089f7c9880490ad1b
Tags
banker collection discovery evasion impact persistence credential_access
score
8/10

Table of Contents

Analysis Overview

MITRE ATT&CK

Mobile Matrix V15

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral7

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral8

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral9

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral10

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral11

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral5

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral6

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral12

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
8/10

SHA256

deb998eff5c1f1c261559356ebd0af8a991258a73f3bd73089f7c9880490ad1b

Threat Level: Likely malicious

The file 676278f8f32877f7f2471ba4a130890e_JaffaCakes118 was found to be: Likely malicious.

Malicious Activity Summary

banker collection discovery evasion impact persistence credential_access

Requests cell location

Requests cell location

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

Checks if the Android device is rooted.

Queries the mobile country code (MCC)

Queries information about running processes on the device

Checks CPU information

Queries information about the current Wi-Fi connection

Makes use of the framework's foreground persistence service

Registers a broadcast receiver at runtime (usually for listening for system events)

Obtains sensitive information copied to the device clipboard

Checks memory information

Queries information about the current nearby Wi-Fi networks

Loads dropped Dex/Jar

Reads information about phone network operator.

Checks if the internet connection is available

Requests dangerous framework permissions

Uses Crypto APIs (Might try to encrypt user data)

MITRE ATT&CK

Analysis: static1

Detonation Overview

Reported

2024-05-22 13:18

Signatures

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to read SMS messages. android.permission.READ_SMS N/A N/A
Allows an application to collect component usage statistics. android.permission.PACKAGE_USAGE_STATS N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE N/A N/A
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. android.permission.SYSTEM_ALERT_WINDOW N/A N/A
Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION N/A N/A
Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION N/A N/A
Required to be able to access the camera device. android.permission.CAMERA N/A N/A
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call. android.permission.CALL_PHONE N/A N/A
Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE N/A N/A
Allows an application to read or write the system settings. android.permission.WRITE_SETTINGS N/A N/A
Allows an application to request installing packages. android.permission.REQUEST_INSTALL_PACKAGES N/A N/A
Allows access to the list of accounts in the Accounts Service. android.permission.GET_ACCOUNTS N/A N/A
Allows an application to record audio. android.permission.RECORD_AUDIO N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:58

Platform

android-x86-arm-20240514-en

Max time kernel

178s

Max time network

188s

Command Line

com.mianfeia.book

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/bin/su N/A N/A
N/A /system/xbin/su N/A N/A

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

banker discovery

Requests cell location

collection discovery evasion
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A

Checks CPU information

evasion discovery
Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.mianfeia.book/files/torch/core/3.9/finalcore.jar N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Queries the mobile country code (MCC)

discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getNetworkCountryIsoForPhone N/A N/A

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Reads information about phone network operator.

discovery

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

com.mianfeia.book

com.mianfeia.book:pushcore

getprop ro.build.version.emui

getprop ro.build.version.emui

/system/bin/cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq

Network

Country Destination Domain Proto
GB 142.250.187.195:443 tcp
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 log.umsns.com udp
CN 59.82.29.162:443 log.umsns.com tcp
US 1.1.1.1:53 sdkcloud.e.360.cn udp
CN 59.82.29.162:443 log.umsns.com tcp
CN 180.163.252.237:443 sdkcloud.e.360.cn tcp
US 1.1.1.1:53 is.snssdk.com udp
OM 47.246.28.225:443 is.snssdk.com tcp
OM 47.246.28.225:443 is.snssdk.com tcp
US 1.1.1.1:53 semanticlocation-pa.googleapis.com udp
US 1.1.1.1:53 s.jpush.cn udp
CN 119.3.253.130:19000 s.jpush.cn udp
GB 142.250.180.14:443 tcp
GB 142.250.180.14:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.200.46:443 android.apis.google.com tcp
US 1.1.1.1:53 update.sdk.jiguang.cn udp
US 1.1.1.1:53 sis.jpush.io udp
CN 124.71.159.41:19000 sis.jpush.io udp
US 1.1.1.1:53 easytomessage.com udp
CN 1.92.70.140:19000 easytomessage.com udp
CN 180.163.252.237:443 sdkcloud.e.360.cn tcp
US 1.1.1.1:53 tcp
CN 120.46.141.4:19000 udp
CN 121.36.15.222:19000 udp
CN 59.82.29.163:443 log.umsns.com tcp
CN 59.82.29.163:443 log.umsns.com tcp
US 1.1.1.1:53 track.mediav.com udp
CN 180.163.247.134:443 track.mediav.com tcp
CN 123.60.79.150:19000 udp
US 1.1.1.1:53 sdk.mediav.com udp
CN 180.163.247.134:443 sdk.mediav.com tcp
CN 124.70.159.59:19000 udp
US 1.1.1.1:53 _im64._tcp.jpush.cn tcp
US 1.1.1.1:53 im64.jpush.cn udp
CN 124.71.183.120:7003 im64.jpush.cn tcp
CN 139.9.135.156:7004 im64.jpush.cn tcp
CN 139.9.138.15:7004 im64.jpush.cn tcp
CN 119.3.188.193:7005 im64.jpush.cn tcp
CN 124.71.183.120:7000 im64.jpush.cn tcp
CN 59.82.29.248:443 log.umsns.com tcp
CN 59.82.29.248:443 log.umsns.com tcp
CN 124.71.183.120:7002 im64.jpush.cn tcp
CN 139.9.135.156:7003 im64.jpush.cn tcp
CN 124.71.183.120:7008 im64.jpush.cn tcp
CN 124.71.183.120:7009 im64.jpush.cn tcp
CN 124.71.183.120:7007 im64.jpush.cn tcp
CN 124.71.183.120:7005 im64.jpush.cn tcp
CN 124.71.183.120:7006 im64.jpush.cn tcp
CN 124.71.183.120:7004 im64.jpush.cn tcp
CN 59.82.29.249:443 log.umsns.com tcp
CN 119.3.253.130:19000 easytomessage.com udp
CN 59.82.29.249:443 log.umsns.com tcp
CN 124.71.159.41:19000 easytomessage.com udp
CN 1.92.70.140:19000 easytomessage.com udp
US 1.1.1.1:53 tcp
CN 123.60.79.150:19000 udp
CN 124.70.159.59:19000 udp
CN 59.82.31.154:443 log.umsns.com tcp
CN 59.82.31.154:443 log.umsns.com tcp
US 1.1.1.1:53 sis.jpush.io udp
CN 1.94.119.240:19000 sis.jpush.io udp
CN 120.46.141.4:19000 udp
CN 121.36.15.222:19000 udp
US 1.1.1.1:53 tcp
US 1.1.1.1:53 im64.jpush.cn udp
CN 139.9.135.156:7003 im64.jpush.cn tcp
CN 1.94.137.47:7003 im64.jpush.cn tcp
CN 139.9.135.156:7004 im64.jpush.cn tcp
CN 139.9.138.15:7004 im64.jpush.cn tcp
CN 59.82.31.160:443 log.umsns.com tcp
CN 59.82.31.160:443 log.umsns.com tcp
CN 119.3.188.193:7005 im64.jpush.cn tcp
CN 1.94.137.47:7000 im64.jpush.cn tcp
CN 1.94.137.47:7002 im64.jpush.cn tcp
CN 1.94.137.47:7009 im64.jpush.cn tcp
CN 1.94.137.47:7004 im64.jpush.cn tcp
CN 1.94.137.47:7007 im64.jpush.cn tcp
CN 1.94.137.47:7006 im64.jpush.cn tcp
CN 1.94.137.47:7008 im64.jpush.cn tcp

Files

/data/data/com.mianfeia.book/databases/ttopensdk.db-journal

MD5 74a65cd15c36b585601cb8fab15de9d9
SHA1 396655cf281ad7f3612dfc998622eb1f18317520
SHA256 739fb8810e1f31f9e7aa60f8ee0e436a35cd358d5392a78a3bce4f6d550808ee
SHA512 1bfb9c0c42cdb8ccb4ebf1d0c3af591ec5201466789420ff49d480dc01d16b1b4882c860aa906f37e9aef69dbed80b2ef2eec0c3d8ec9dd04683fc572544ad9f

/data/data/com.mianfeia.book/databases/ttopensdk.db

MD5 70414a9ce8617f8a537be51b3e3bbcce
SHA1 2f1c40d21068ba097fe2b2d05d60fe466d318378
SHA256 37baac5a04dc4e77a82d0aa1ca6f66f0b1528fab8881cb25420b41a9e7d17c8d
SHA512 e516eff5d59aa8a1d7400bf744a2a7714e53d5d688f902d8f62bb9be245b588ce0a571c737a5bd5022489768c7fe83e717a641b5ed93fc4d9f4c68fed9998934

/data/data/com.mianfeia.book/databases/ttopensdk.db-shm

MD5 85991fd8af80bf5643a79000eb88764b
SHA1 8f2144d8690d26278f0267c676bce9a3d26a13a0
SHA256 a08c6c92c6484d30028ede9d4b057d1b5d01e8ce632de78e78093560135f9cef
SHA512 00ce3acf7a6852f5d02e27400e8846f069620fdbe92349639a53ae34993e63a09418d5088350d725a4dfcdbd06c546031569b8e41ea32c1d5da045e667190e06

/data/data/com.mianfeia.book/databases/ttopensdk.db-wal

MD5 4943069234a86f42ebd630c7103b46d2
SHA1 0a0cdeb3d49b2940aabb20166a9668c693cb69e7
SHA256 57d729d7c5d7005bd3807fd396866b808c30793d326afa92c34f7d4a84858c1c
SHA512 3ce2c16c75bef7b5e8c446e9b9001b29c971277ec626ed394118fb9da0745d6e2ee84886de3525fbafad889c99422c2d8974371b4256cc146e5023f14314b4ce

/data/data/com.mianfeia.book/files/torch/core/3.9/finalcore.jar

MD5 089de5b2d4ed5a8329bf9b24e64b1110
SHA1 32ac41c748f9d6862cc211e6fdea4be07dd02482
SHA256 4d367a4d3ec67192bb713f956f2150dace29bae4403bb017818b63050bf2e16e
SHA512 add1df18c6b6a03d1ee01ab9d2d227bbcf9242604eab52cfa612b1e2dfced544929149c1d5b6c31604ee8b8daa5deebbdae601d83d1af0532bc8921d08d69cd3

/data/user/0/com.mianfeia.book/files/torch/core/3.9/finalcore.jar

MD5 31e12ccc0868f8a4b82998429c7dda30
SHA1 e6601827d205900644ee0e40b4dea459675a360e
SHA256 f387434e30d0e00c2806e9192c852c2a3cfa30e982aa00b249103b808044ebc9
SHA512 f23f5cbeb60d14ccea92d4049aa387bd479873db1e4e5474010379e89b0aa8f5228e3bcdbc05629ab18063d7da830842423cc587c84c0d702d9d98a5d52ba6c8

/storage/emulated/0/Android/data/com.mianfeia.book/files/.sfp/.sfp

MD5 d26399306d8cc38eb5dcea814cf6979a
SHA1 31c8d56985af506357dadf8bd04314834b9237d3
SHA256 10fd9416854f81bf2968ffea3d8e5cb308aafc188cf1234245ca7d5ffa71cc4a
SHA512 b0f68cfdb057def11184b13400e497c04638f93ca09863759799fc1f410c696c56f1a4a887fff8cc381c995966a7b559b943bea64d06611a4310190ea92a1114

/data/data/com.mianfeia.book/files/torch/single/core_update

MD5 65dd71968d7003f3d5aeece96c3acaae
SHA1 167f6557fdf64986e24e3ff417cd5d4bf80185b5
SHA256 496053582e594bdc0ed7ea8030bc24ee468ae5923b5857ea3305dcf69908652e
SHA512 2be10471d533ca840360b1335074a47f5eb3f2ce570ca3cd857cb2bf4754bd93295f411c1a16b33313de6e637eeddab556178953292d3552311d9efbef95c1da

/data/data/com.mianfeia.book/files/torch/single/profile_task

MD5 abb19cce260f6d5ea303165bd15e0967
SHA1 6a53132fdafc65f48fdd5dc95deffc5672f5b1e5
SHA256 46e8de8ca7149958b4b1d28e2c30c348d751a8bbd9845acb8d1912d0f403395d
SHA512 6d12f147e9d732cf2deef84c37d444f47ebd5eb6e22215d9a1602bcf3d19fbdf27a44eb33318dac22d48f8cdd7d9e66c2abfc19006e8f276d180b873b20719b1

/data/data/com.mianfeia.book/files/torch/single/waitingDown

MD5 02c01515329d6cd84e4a232018eb75c4
SHA1 a9d8d199af1eac80226cfe7176311e285ce85921
SHA256 7aa88cb19a86f16f5902e0bc20f248ab7ad318f30bab995fda7b1cf3d2eeff17
SHA512 b1c65474eca86f30e3a40cc611a58e08cdfbae2166b62b3cccaa1782a742b9914ecaf1172e372eb0ed886776592b3b32be966ea8b204ba7654008095e9b84612

/data/data/com.mianfeia.book/databases/downloader.db-journal

MD5 f631f04721540fed2ee7b392fdeae58c
SHA1 a4cf5b0f8e91e877f6f102b45725b03e26aa331b
SHA256 4378dd85a17e7ed48dd3cef9c0bcef3e93c15dd55b1002d58cb19ac8a4f69a56
SHA512 31550420a01305a7cce3707a4608fdb644ffda6d0459bb5db5543c1a0396a0acd379ccb1727727dcb3ed99f0ac31e83fdaea893b8e261bd4e372f4fa23a38302

/data/data/com.mianfeia.book/databases/downloader.db

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/com.mianfeia.book/databases/downloader.db-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.mianfeia.book/files/torch/single/uninstall_apk

MD5 2b1ce1a3db7243aacb1387748acad8b4
SHA1 f9ecf779eddec9c015db879a3e1c87e9cd8697d1
SHA256 8af454504b27790a7584aea3c216ff54d107df922b9754c65867b427449cf313
SHA512 4afaf92b2cb0aff1deb3ca6e40d04569934bc6aeaaf8a3068bb21faa3ff03ae86ada45717dbe36eadd6d07e955f17f6c98e75c3365597d290d8841eeb7cba5e6

/data/data/com.mianfeia.book/databases/AKTorchDownload.db-journal

MD5 05160d6e11f0a6a1941fe68b087f4597
SHA1 42dc9593d86c9146879c9b496ad118b52d0b5cc2
SHA256 332e425590fe0e221495bfc370513921eb009421acdee2b3374300fb1f9259bd
SHA512 73263b3557615b1e9b3323d30a9c0ee390a1085e133fad82d153467f1b538cbe32aeaf215217604a2e0ace43267c9ccb8fabaa780f43fea2988b85d4d125c87d

/data/data/com.mianfeia.book/databases/AKTorchDownload.db-wal

MD5 c2c98edb4c334ecae67e562e01348de2
SHA1 a76f8e779303416feb726add8f8b673557dee89e
SHA256 10b1b071af4e7ceccc6c546ccc9710e301df353c804ac209ab954565dfd8f2cd
SHA512 5a22c1141e5244cebf8e341945d4f4b2412aab4147d4106c2614328ea43ec0529bc4c539b88fbeaac38badfc60eea8d917e50851d59c3bbf66b5b8f60abf5597

/storage/emulated/0/Android/data/com.mianfeia.book/files/torch/apk/uninstall_apk_list

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

/data/data/com.mianfeia.book/files/torch/single/device_collector

MD5 d575fcae7e7206adf82a2d227e688ee7
SHA1 e2ded966045f981a3dbe28c1774ddb0f95d4d33c
SHA256 de99baab6e04948e0fc88033d04566789d8107a24da2ffd8e410959c1b3d7f0c
SHA512 bad6db97e2a7ea53d52f3906d643e619e06eabe455ae0c5987ea8bbc50078aa34223cb4848380bb6cc464dfac29503c6db062ef6ff66bc0acb3ee3a56ff1fe92

/data/data/com.mianfeia.book/files/torch/single/log_reupload_task

MD5 099148a0ecdac8e0f0e4b405459e9817
SHA1 0a8c77e3758779e17d24eff5c17128f7f7c4aca4
SHA256 3d7b0c6a6603aafc61db1baaadce5ae6e449be2a8b22c3077ed454228d7cee10
SHA512 9a16274a2c2aece9745c2d2aa81aadac00b22f6ac31be39a3f46db4acde15c28d7af404159a1ea6845904fc2289a0cd8b5a4ed75216e088c5973ca2f66f7e58a

/data/data/com.mianfeia.book/files/torch/core/3.9/oat/finalcore.jar.cur.prof

MD5 448cb8eb13433cbc3bc349c34fef1089
SHA1 511aaa2501ac69c3998d8c3fc101fae3d36015c9
SHA256 fbdd7ef610d25cd366ecc93818d07e8dbdd4a20e16b9d713d4c0e6af8f352dbe
SHA512 3ecf5bc746910cca05b1e41ff600fc0d7248647179059015122d1187e40dd5cf4722973f01440b25cf82c30c3fd4cb78d266be3971677db25f1429c5f023272e

Analysis: behavioral2

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:47

Platform

android-x64-arm64-20240514-en

Max time kernel

179s

Max time network

190s

Command Line

com.mianfeia.book

Signatures

Checks if the Android device is rooted.

evasion
Description Indicator Process Target
N/A /system/bin/su N/A N/A

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)

banker discovery

Requests cell location

collection discovery
Description Indicator Process Target
Framework service call com.android.internal.telephony.ITelephony.getAllCellInfo N/A N/A
Framework service call com.android.internal.telephony.ITelephony.getCellLocation N/A N/A

Checks CPU information

evasion discovery
Description Indicator Process Target
File opened for read /proc/cpuinfo N/A N/A

Checks memory information

evasion discovery
Description Indicator Process Target
File opened for read /proc/meminfo N/A N/A

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.mianfeia.book/files/torch/core/3.9/finalcore.jar N/A N/A
N/A /data/user/0/com.mianfeia.book/files/torch/core/3.9/finalcore.jar N/A N/A

Makes use of the framework's foreground persistence service

evasion persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.setServiceForeground N/A N/A

Obtains sensitive information copied to the device clipboard

collection credential_access impact
Description Indicator Process Target
Framework service call android.content.IClipboard.addPrimaryClipChangedListener N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries information about the current nearby Wi-Fi networks

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getScanResults N/A N/A

Checks if the internet connection is available

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Reads information about phone network operator.

discovery

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

com.mianfeia.book

com.mianfeia.book:pushcore

com.mianfeia.book:iwanvi_read_process

com.mianfeia.book:pushcore

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
GB 142.250.178.14:443 tcp
GB 142.250.178.14:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.179.238:443 android.apis.google.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.187.232:443 ssl.google-analytics.com tcp
US 1.1.1.1:53 log.umsns.com udp
CN 59.82.29.162:443 log.umsns.com tcp
CN 59.82.29.162:443 log.umsns.com tcp
US 1.1.1.1:53 is.snssdk.com udp
SG 103.136.221.67:443 is.snssdk.com tcp
SG 103.136.221.67:443 is.snssdk.com tcp
US 1.1.1.1:53 sdkcloud.e.360.cn udp
CN 180.163.252.237:443 sdkcloud.e.360.cn tcp
US 1.1.1.1:53 ad.cread.com udp
US 1.1.1.1:53 jiami.ikanshu.cn udp
CN 52.83.175.35:443 ad.cread.com tcp
US 1.1.1.1:53 alog.umeng.com udp
CN 223.109.148.179:80 alog.umeng.com tcp
CN 69.234.245.240:443 ad.cread.com tcp
US 1.1.1.1:53 cx.ikanshu.cn udp
CN 52.83.175.35:443 ad.cread.com tcp
CN 69.234.245.240:443 ad.cread.com tcp
US 1.1.1.1:53 zwyh.ikanshu.cn udp
CN 59.82.29.162:443 log.umsns.com tcp
US 1.1.1.1:53 s.jpush.cn udp
CN 124.71.159.41:19000 s.jpush.cn udp
CN 52.83.175.35:443 ad.cread.com tcp
CN 52.83.175.35:443 ad.cread.com tcp
CN 52.83.175.35:443 ad.cread.com tcp
SG 103.136.221.67:443 is.snssdk.com tcp
CN 223.109.148.176:80 alog.umeng.com tcp
US 1.1.1.1:53 log.snssdk.com udp
OM 47.246.28.226:80 log.snssdk.com tcp
CN 69.234.245.240:443 ad.cread.com tcp
CN 69.234.245.240:443 ad.cread.com tcp
CN 69.234.245.240:443 ad.cread.com tcp
CN 180.163.252.237:443 sdkcloud.e.360.cn tcp
US 1.1.1.1:53 sis.jpush.io udp
CN 1.94.9.210:19000 sis.jpush.io udp
GB 216.58.201.100:443 tcp
GB 216.58.201.100:443 tcp
US 1.1.1.1:53 zlog.ikanshu.cn udp
CN 59.82.29.163:443 log.umsns.com tcp
CN 59.82.29.163:443 log.umsns.com tcp
CN 223.109.148.130:80 alog.umeng.com tcp
US 1.1.1.1:53 track.mediav.com udp
US 1.1.1.1:53 easytomessage.com udp
CN 180.163.247.134:443 track.mediav.com tcp
CN 123.60.89.60:19000 easytomessage.com udp
US 1.1.1.1:53 sdk.mediav.com udp
CN 180.163.247.134:443 sdk.mediav.com tcp
US 1.1.1.1:53 im64.jpush.cn udp
CN 1.94.137.47:7009 im64.jpush.cn tcp
CN 223.109.148.141:80 alog.umeng.com tcp
CN 1.94.137.47:7006 im64.jpush.cn tcp
CN 1.94.137.47:7008 im64.jpush.cn tcp
CN 1.94.137.47:7007 im64.jpush.cn tcp
CN 59.82.29.163:443 log.umsns.com tcp
CN 223.109.148.178:80 alog.umeng.com tcp
CN 1.94.137.47:7004 im64.jpush.cn tcp
CN 1.94.137.47:7005 im64.jpush.cn tcp
CN 1.94.137.47:7000 im64.jpush.cn tcp
US 1.1.1.1:53 www.google.com udp
GB 216.58.201.100:443 www.google.com tcp
CN 59.82.29.248:443 log.umsns.com tcp
CN 1.94.137.47:7002 im64.jpush.cn tcp
CN 223.109.148.177:80 alog.umeng.com tcp
CN 1.94.137.47:7003 im64.jpush.cn tcp
CN 124.71.159.41:19000 easytomessage.com udp
US 1.1.1.1:53 alog.umengcloud.com udp
CN 223.109.148.177:80 alog.umengcloud.com tcp
CN 1.94.9.210:19000 easytomessage.com udp
CN 59.82.29.248:443 log.umsns.com tcp
CN 123.60.89.60:19000 easytomessage.com udp
CN 223.109.148.130:80 alog.umengcloud.com tcp
CN 1.94.137.47:7003 im64.jpush.cn tcp
CN 59.82.29.249:443 log.umsns.com tcp
CN 1.94.137.47:7004 im64.jpush.cn tcp
CN 223.109.148.178:80 alog.umengcloud.com tcp
CN 1.94.137.47:7006 im64.jpush.cn tcp
CN 1.94.137.47:7007 im64.jpush.cn tcp
CN 1.94.137.47:7008 im64.jpush.cn tcp
CN 223.109.148.141:80 alog.umengcloud.com tcp
CN 1.94.137.47:7005 im64.jpush.cn tcp
CN 1.94.137.47:7009 im64.jpush.cn tcp
GB 216.58.201.100:443 www.google.com tcp
CN 1.94.137.47:7002 im64.jpush.cn tcp
CN 59.82.29.249:443 log.umsns.com tcp
CN 1.94.137.47:7000 im64.jpush.cn tcp
CN 223.109.148.179:80 alog.umengcloud.com tcp
CN 59.82.29.162:443 log.umsns.com tcp
US 1.1.1.1:53 is.snssdk.com udp
OM 47.246.28.230:443 is.snssdk.com tcp
CN 124.71.159.41:19000 easytomessage.com udp
US 1.1.1.1:53 log.snssdk.com udp
OM 47.246.28.231:80 log.snssdk.com tcp
CN 59.82.31.154:443 log.umsns.com tcp
US 1.1.1.1:53 update.sdk.jiguang.cn udp
CN 124.71.159.41:19000 easytomessage.com udp
CN 1.94.9.210:19000 easytomessage.com udp
CN 223.109.148.176:80 alog.umengcloud.com tcp
CN 1.94.9.210:19000 easytomessage.com udp
CN 123.60.89.60:19000 easytomessage.com udp
US 1.1.1.1:53 alog.umeng.com udp
CN 223.109.148.179:80 alog.umeng.com tcp
CN 123.60.89.60:19000 easytomessage.com udp
CN 1.94.137.47:7003 im64.jpush.cn tcp
CN 1.94.137.47:7005 im64.jpush.cn tcp
CN 1.94.137.47:7009 im64.jpush.cn tcp
CN 1.94.137.47:7006 im64.jpush.cn tcp
CN 59.82.31.154:443 log.umsns.com tcp
CN 223.109.148.130:80 alog.umeng.com tcp
CN 1.94.137.47:7008 im64.jpush.cn tcp
CN 1.94.137.47:7002 im64.jpush.cn tcp
CN 59.82.29.163:443 log.umsns.com tcp
CN 1.94.137.47:7002 im64.jpush.cn tcp
CN 1.94.137.47:7008 im64.jpush.cn tcp
CN 1.94.137.47:7000 im64.jpush.cn tcp
CN 1.94.137.47:7004 im64.jpush.cn tcp
CN 59.82.31.160:443 log.umsns.com tcp
CN 1.94.137.47:7003 im64.jpush.cn tcp
CN 223.109.148.176:80 alog.umeng.com tcp
CN 1.94.137.47:7009 im64.jpush.cn tcp
CN 1.94.137.47:7005 im64.jpush.cn tcp
CN 1.94.137.47:7000 im64.jpush.cn tcp
CN 1.94.137.47:7004 im64.jpush.cn tcp
CN 1.94.137.47:7007 im64.jpush.cn tcp
CN 1.94.137.47:7007 im64.jpush.cn tcp
CN 223.109.148.141:80 alog.umeng.com tcp
CN 1.94.137.47:7006 im64.jpush.cn tcp
CN 124.71.159.41:19000 easytomessage.com udp
GB 216.58.201.100:443 www.google.com tcp
CN 59.82.31.160:443 log.umsns.com tcp
CN 1.94.9.210:19000 easytomessage.com udp
CN 223.109.148.177:80 alog.umeng.com tcp

Files

/data/user/0/com.mianfeia.book/files/torch/core/3.9/finalcore.jar

MD5 fb2023d6175792422c87bf463b84fe07
SHA1 91f2a33d199a3cb7799fd39b8d691ee3ff9f130f
SHA256 947a2aad1ac73244c4bd9ddbe24e7383c91c5685cdab3c9946fd1bac453d9de8
SHA512 cd40c7306c0e902d5bb3c2641003f5dfe4cbe73d3dba3e03b56169852ee65250f64a6d14e5ad56e6279b81a5c5a5e3c780624736eec38101268f5ce03a451b0d

/data/user/0/com.mianfeia.book/databases/ttopensdk.db-journal

MD5 46183312906f4a40d90c832dc39b6fd1
SHA1 4c5f5636116bda00cfbe2b7b748a6f7dab83d797
SHA256 0c7438273f960b9b2c61b598868c6d0f802f08da4a858c903dee6fe25ed02422
SHA512 9b58bcb5f72908c295248361727421089427eb8672f25d194e001c6ba7e885d77bee81679bd32d43040f04c7679c70017d5ec66b018be7f0a4e7ba82e5db589a

/data/user/0/com.mianfeia.book/databases/ttopensdk.db

MD5 0ce805fc4c862d649b8a469554b0faa3
SHA1 522ad35082767eaaebf13f7433ebc64386758830
SHA256 e6a7d4abdfe77191a4156445aa6fa486911f8431b1a06ccd56a5cb11523d9654
SHA512 cb95b8f3fd4417ba6ef55d62611294434b5c6820d5ad6932759b8002bad33ad54a5fe6e3e9e02b633a2c67b2ed9980e94a515045dc4b066abd4533675326919d

/data/user/0/com.mianfeia.book/files/torch/core/3.9/finalcore.jar

MD5 31e12ccc0868f8a4b82998429c7dda30
SHA1 e6601827d205900644ee0e40b4dea459675a360e
SHA256 f387434e30d0e00c2806e9192c852c2a3cfa30e982aa00b249103b808044ebc9
SHA512 f23f5cbeb60d14ccea92d4049aa387bd479873db1e4e5474010379e89b0aa8f5228e3bcdbc05629ab18063d7da830842423cc587c84c0d702d9d98a5d52ba6c8

/data/user/0/com.mianfeia.book/databases/ttopensdk.db-journal

MD5 1244a18955e958ef67e8ad6662eb80b0
SHA1 a23aa596bb22391303e7152fa558adb6e9d0f53e
SHA256 86686d008fde56a1c97274cf9792cefac4a464eeb79982e78b2a3b889b396426
SHA512 aeb47c85d277388ae4f03cf9b3b3c21f278a38b690a876672d60cc2c2db0066eeada6bd2f99a1dd8509961d598322f3cd6e83516a21ac3c921014db3db6d1a91

/data/user/0/com.mianfeia.book/databases/ttopensdk.db-journal

MD5 e50dd3a90643146a59fe5b088d8053c4
SHA1 c6e5239d7950c364a2b69463360e87c6ebf4048d
SHA256 dd7d5aff8018bc25121071bce9c8c1476a9710f29f295c1bdfc1639e1130be3d
SHA512 2c6f03ddd0e8565cda92d06593c19480bff84fce53860660279804807cc0c172da5caf9b7f3f1aa880ea7bb21957b0777f2807a891cbdd44a64c883a072d7188

/data/user/0/com.mianfeia.book/databases/downloader.db-journal

MD5 ec3203a5112303b6b37c7654cbcf9537
SHA1 48d6eec8d736c0ebc080d5ee2ee8f1210c522104
SHA256 625d7d7e3c1f2eb243ed69ee7f8b4d3d18d324a462f4b8ce93af66b4ece4baeb
SHA512 a9e2cf85471e8fd1db82eac33d24f454912b005a33832bed6fef7ab8c689971ca023abad637e1f7a45825b7c70c72116e5fdafc4905b7469eecd05a0504c300c

/storage/emulated/0/Android/data/com.mianfeia.book/files/.sfp/.sfp

MD5 6ed3a592835f20825a55bd065cadccec
SHA1 1c40c18ce06a028490dc62c8ea289a1516b2f7e1
SHA256 c37508fc20ccebbf96fc65c769bd933e9cace9b6d18d00672a85dacce039daf6
SHA512 f947c7e7b5664224f8f6fd3de22080561029b1f36a50afc66dc69886093a78f3bb14e604523c032fc608a8774cd877163390fc9f2b29623f934e3142abfa1fb8

/data/user/0/com.mianfeia.book/databases/downloader.db

MD5 3238cceb8a6326feca8432969c8caff0
SHA1 703ed98d86aadb7e555d28c359455df1c11398b7
SHA256 d9fd06f4c84688c836e5c95d5a8ca24bbb2d8edaf30ff0b12acadefe2d723df7
SHA512 b86aa069f307924b3a3d257c59ce670729c695f18d25db4794b0a1e718fdc72c69abcef67f88d579c4ea5ab4885c0ae70c7a0398f053df3858099a5fb6af6b8f

/data/user/0/com.mianfeia.book/databases/downloader.db-journal

MD5 d39dd0b09aa98b23906b77f272734bdc
SHA1 62e7d6a8f62db87009f37802c26e0fd9d8e3d4ba
SHA256 2034637619927ad7674fe6840ca31a29a9cc5717554ea12e67b172f7deff0a3c
SHA512 3e9efc390a81633586a3a9360921031c1e85e076472ff300cffc17aa238a60647ddad24943328d567cf6a11d759961ed06cc2531f7bc60f3a1c00d0b9e95ed00

/data/user/0/com.mianfeia.book/databases/downloader.db-journal

MD5 e97db3c4735e8c5787ebb268fe2d5f87
SHA1 2ec189ce771c8f7ffa9f6e7486f59d4049a68f95
SHA256 0b707663a2fce54e75675c53c801424df0ae34f133270393116c930eeb38b4cf
SHA512 34628b4628bb228a750099e9cf5c5c98682e361918fb9f6ead4b6126fd216ef6b793059ee4a3fde01d00a2913eddf38322edccf48279f2398fa888e1c20df21b

/data/user/0/com.mianfeia.book/files/torch/single/core_update

MD5 a5b9764899d558f9723b2dd0e71f3cc8
SHA1 b5a99628363558e148e2f1f8128ee50c762705f7
SHA256 81f7dba4dfaf2a4dd359a13819601873546e01e618047bbfd7c73948288ed9ca
SHA512 ec585482d240932791c79b180dfacfccb3e5029590eeae3eb7eb052c6a529ad36dde5113a3640b36f3592c9692ce461f32d534ae5cd95e85f0016370da460e98

/data/user/0/com.mianfeia.book/files/torch/single/profile_task

MD5 4074ec5591271141833291f5b3f843a3
SHA1 968656253fbc9723aad757f893e75aff232fe6e3
SHA256 4a15b51faf6d5b1d832b82b2ce1986071e898bcd9546573e795ebd765b1f2230
SHA512 6eee9e3e28f088db6cb25ba2d414ce6c9fe2081f1bcab9f578a5a98c0197d49224ae9f3e3b071b469bb2139003113380939d73714e3f2383b756fe614827c755

/data/user/0/com.mianfeia.book/files/torch/single/waitingDown

MD5 a8d5e8189bd7845cf8ae3ab7a9fea24b
SHA1 b27fb18fe21666d6e6cf697f5cbd867c78d48c72
SHA256 1b036372f49adb25ea0b682d45a52ad0026da0a99329302cc75c3cf8fe8d820e
SHA512 6f30997ec1c928b6219ff63b65a783a6a128453ec2f712b0dcc4e106ff143bf1562f3278b69ae6d87168a1cf8c09f62580b0ca005128e5eaae68c4fadb9f23e7

/storage/emulated/0/data/.push_deviceid

MD5 6fa8d914c5af1da60ea1833fb4a4355b
SHA1 896144fade156c97021b598ddbed7816b159c872
SHA256 c8c58dcb2eb206e55e3738757f62b641052b810a606dd548024407572cc0660e
SHA512 28592e5b563cb8a0a66527d4c9d4daac57881ab14fbf8c2d2526465f3b50c283e43db9dea2def61668acb5379a1793fe8711bcd9c0e803632646013d9d3bb43b

/data/user/0/com.mianfeia.book/files/jpush_stat_history/normal/nowrap/ee57eabb-93b5-4ea7-9fb7-7f30e391154d

MD5 3513f0167347f99ebcd57f578e7b672b
SHA1 2b3a9e111a3577187f354e1874837176cc9d1d3b
SHA256 ab1c1ad5dfa45073eda6219563f7586b8347c7bb1ae89541341b9e2de75a1071
SHA512 05e62d290ea70aa698b55f0267a3efdcdaf7cd11d8dbec5e87c7af76600fe706de5cbe0be88c1d379d7d472d4431b3adaf657eb41942e7f5f355e27a40de7738

/data/data/com.mianfeia.book/databases/cc/cc.db-journal

MD5 56503cb9331290628e4b3fc5419a4ff7
SHA1 85ad6e190e93fff16979af99d5f93ec52bafd0b7
SHA256 5efffd12f57a738a3f7f418ac4ab1341c2e821769571182ad7c258751a450e62
SHA512 9d879484ab05ca35be9f009b62f83a749e38dc215ebdfd3329dac7cf158484736d8340876e708a245d649c7ffc901ce30d517287cfc4682bbcd79669dd9ad363

/data/data/com.mianfeia.book/databases/cc/cc.db

MD5 4cfe777c9f6e7859f5efe2197401d8e5
SHA1 bb3774e8879ad5f6db0c37f151c3d6bc7b4b207a
SHA256 c422190539b6414072fc3950da19a17985c0c4c2172740b2f74682b520af5231
SHA512 6be469864edaf8eaa110f618f8abd27962da92e20945dcd38073ade2b60b10f00552d54d5db9d9f75ca133213031030e71e2e30113ff033e5ef507a28fe0b1de

/data/data/com.mianfeia.book/databases/cc/cc.db-journal

MD5 922e2cf4258cd89088478c5427ca358e
SHA1 debf124aaed2fcd480284e6ecdef705549034bdc
SHA256 62512260a918934719b9294877a9d25b7738127d017240f5f3b97f61534563fd
SHA512 d9697d589728d8a974a26f15ad90a800ebbbb30e9e91c99470828f9a59c7852dc341b1715553257bd70a71cbfa59ee1d7c67b3bd6d2a719eff64bd4e9afb9247

/data/data/com.mianfeia.book/databases/cc/cc.db-journal

MD5 afa3fbcb93c4f09e456bf79fb0cba97b
SHA1 d191ccafdfcca86ad5a252347f5f1ea067b1d834
SHA256 6169ff0de11b3f321d0e354c00a25643f8af4cb5e54715cbff3867c0e12c65c8
SHA512 3eda03e639f1ef7dc8f6341aaa494c0e1ef8ca9bfea1ba8a9842007826e2e254fe96343f2d43d7dd4b9a5e257cdb9ee64b721958501b8934cae5d8a4a908f064

/data/user/0/com.mianfeia.book/databases/freebook_comm.db-journal

MD5 71718e34b54ce326f99078ede4da4561
SHA1 02b3445184a3e8ea5f3086bf6949de5ebf99e875
SHA256 5fbfb12ef90486b801c1337f8b768a6d83c37a9b65ab418bb7e0b9934835ee5b
SHA512 a4b261f3243f357eca481851d685ca83461a5924075c278ca121b8e3ea069b776e866e0dedc019a2a91c19c5e439c4dc50ffcff50f537162ab8cd17b2c857863

/data/user/0/com.mianfeia.book/databases/freebook_comm.db

MD5 258777969ae5af532ea504a6eb2bf83a
SHA1 c16471cc9b04645931f9f1ec7f64e368e54033a5
SHA256 1cd2b2d782a5657b91a014012c4eeee82c844afd48766e872623e8f7b9794905
SHA512 28acb3d9238e79812ffbc1bd8bef56bd812a5dabc5705306d0b9393a05735e9927b7917a258aac16785ca25ae8d8d4942ba50f370b8c9ab9ea90cb07bc3d7903

/data/user/0/com.mianfeia.book/databases/freebook_comm.db-journal

MD5 32021b4e690802e4fa5dbcbb99b5ba2c
SHA1 3860e8e0fba03687edd0a86dd99dfbd76c12e7a7
SHA256 397fe01859c8b4e9db639930aa8027fc6cba3199277903211adfcd93cc0e7bc7
SHA512 ed7b7730ab908c9b5573e0ce0045eec14bacdfd695bf6b35719be560e47f66a8bae689f3043c3ed835158614cc1e4bb54d54a69e39a4a761430c590dd96bd57f

/data/user/0/com.mianfeia.book/databases/freebook_comm.db-journal

MD5 7f566c8677aabf11b1242dc4ecd93fe1
SHA1 842bb39dfecfc099d190a4c260cf96538f35debb
SHA256 e3ebaf669ac43481efc06ed9992ff7bc1a67d2d8d5411008a45c62e5a081501f
SHA512 7ec74622a044f7920f3155ec32c74ed484045fa2c6ce8990b9854adf57e7833af5e7aff556c076fc99b2b23b39cbfd16a758f79199c06a2f6fb813f5a75563d4

/data/data/com.mianfeia.book/databases/.ua/ua.db-journal

MD5 74143f67420c3937c9657e339bcf68bd
SHA1 6325d82dc3217d3f4b6b611a9df5e16a2e17e3d0
SHA256 bcb67296a087054284ef43eb4ff71642c83c4b1f5443d2e4e5bf001570a1ac97
SHA512 548f50366d5aa528b6422a05542138a4ca6ec086572f4d498a34d83960f2be6d6932bc1c827b8f762d41697ee17c1f7e1985b5e46ea3353a74670236d4a5cd33

/data/data/com.mianfeia.book/databases/.ua/ua.db

MD5 ce4f8a501e205c5c7b613bc033548f69
SHA1 c8e9caac41ad826321bb9a8021fbb7a6dee1cec9
SHA256 79028d5f43ea2a6d1fb0c079541ef6f8d7300afd1b655fb9ee41a36f122bb98b
SHA512 da63f243f35d91137c378551ec84b8922f99386d16ccfe5c48a3abd98011ab88683adbf74bd0a07b7d25df899782ff6b883bdfc75ddd8035b23e68acd0719ab1

/data/data/com.mianfeia.book/databases/.ua/ua.db-journal

MD5 33d775da86d7f6b8e2a14f286f8a5e7d
SHA1 c19102cab5bee54f404745ef6a7310c582be370f
SHA256 a295136927ef29dc073b954025e0c86adba38d4a44bd7ac303b6a1d26153d33d
SHA512 2a35a924f21b2f3032c4648d73033343be503499b3fa3a9f8cc61b0a2508b1015e8d0653864ad537537b705af28d0339f900d70f824205badd91c0d49f1f697a

/data/data/com.mianfeia.book/databases/.ua/ua.db-journal

MD5 8a0543266578291dd917a4776a7520c6
SHA1 30f44a9154617ec043adbfbb4ffc94ec764d9d64
SHA256 204deb3e6650d84899f86c22a690d26bfaeb34962fc0881a85e35c735123feee
SHA512 451d2e2ba226f418c3a6883a24718af6cbd0c805f6e8df53fd8e9a741b027ab75341d3d02e50ff0146e3d088e930d6720c97c518d4bb6a272d1418ed9141d3f5

/data/data/com.mianfeia.book/databases/.ua/ua.db-journal

MD5 62b40bb5c3fa197a88b8c6e0fc0d1698
SHA1 11165cc7d7f978088cacdd9dc9247d38d033368d
SHA256 90229e49577ef2dd974efd2a8568cad265738c3785af5bc77b3510f01768a5cf
SHA512 2d33a81fdd8079908a73e274dd92bc0219c3b43ece1169a61d66b04466368e24632a2002d8018c68433fcdd623c1ebad43af8e599d0fad87e0251ad502fd2fe8

/data/data/com.mianfeia.book/databases/.ua/ua.db-journal

MD5 607e254d40a2b7b461c69d217968f119
SHA1 27cb022e8185b603ed75e0c13e153ad5913a83de
SHA256 11c52b19eadc4c7dedb05f19370739b27a1a9daf99df02862cdf8d156cd5f251
SHA512 c2f61ef557fe8f316870c9c9951f291c01f353dad1e150826f7911d0f4b85f02e8c20b3595131a851fd6ab68b5ef0557a6f6ed8469b07e073ba3eaf498e35cca

/data/user/0/com.mianfeia.book/files/torch/single/waitingDown

MD5 19ecab91543fb9620a066af449d33bc9
SHA1 db651b1d454667fb35056818df966190f0a01e12
SHA256 97d488b748ca9123cd174ee957684c55f9ed7bc21456153266a8b9241ce9853e
SHA512 215509cfbc7bfb48b2a449ead82bbfe043c7686abcead56e08b61dfe3c06eb5fe0771fd9df02d597860e7637520f1a71db0564aac16e69533744dd11bcc760aa

/data/user/0/com.mianfeia.book/databases/freebook_comm.db-journal

MD5 f625793678aee78f6c28cfaf0dd67592
SHA1 73a50b5a3802c5250e99001bc64f2b65bfee746c
SHA256 60c9b48654db493f7fa7798c33184e3bb2d78a930579de4e1491deb6a489a343
SHA512 a8020219abdc7df4a8329dcc3fd0932d4bb6f8fc9260781cbe2a569357119a5986ea788205c24e21f447f65d42ad093e09d8c90d9ec80d353fa4e4106110906a

/data/user/0/com.mianfeia.book/databases/freebook_comm.db-journal

MD5 8a5a05b900716cb6f5a8a7f73c162a7c
SHA1 ea9f5c8dd076f9a8c603e9fda749b063d32a9eeb
SHA256 2ae54fb9ff0b676133a2fd34086e252aeb5e91c9c07366829fe9e0fe66427fe3
SHA512 0a433d37cced20eb3e0784175d583b355b088d14708230de20ba8d69bcd44e0b0b0e2caa1af5136a881944272fda5051905595e774f23b2beef695ae95524823

/data/user/0/com.mianfeia.book/databases/freebook_comm.db-journal

MD5 8d4dadf9f8a8783f105ea881f663ee62
SHA1 b7cec30e1e63be2fc181e7e4e0187005b303ebca
SHA256 988cef082cf9fc3277374c7bdc641d6e02a1a67934c026c98491ef36d4d2fccf
SHA512 9c78f0ab454afc21805f6c829620045bed4dfb5d48e6ce5a4eb1579e0ee2113eb8899fbcfd07fba4715e57effd91fcee457b3300430fd6f4574233c4f60095b7

/storage/emulated/0/.hide_freebook/.ygzhang

MD5 6e81ba959f85aa98d0274d975b49b8a0
SHA1 eac5b3582fd7893e89de1f279f9db6e266d70756
SHA256 3c0515c8843f44b00acde9aa9b5fbc7e0346e5ce1c397d3762ae7d1de833f8e0
SHA512 2b22dda108945b1a734361cd6d971105e54235b51dc79eee3c9bcd147d6baee673b43b163c5142ee077935dead867e77a2841726219f54322447ebecd2183d24

/data/user/0/com.mianfeia.book/files/umeng_it.cache

MD5 7c9e2c8d3101b8ad3627dfa1b2f00887
SHA1 86711235631081daf8aef9c566d228e915c4d2df
SHA256 d3692e3716988730d070f6a1fff72fb1c4aec93f6559e4a568c0a086e91aa393
SHA512 29867f410d524e14a0fa16e3b0a15f23fdc5042deb21c8c9c9c888e99a40e6b40b4511b078956dbf5bc2840db7786b500ab4e50a4223c79e5bfefde6f337e313

/data/user/0/com.mianfeia.book/files/.umeng/exchangeIdentity.json

MD5 05c3cff85067a2a79955d375f5f2e9f5
SHA1 15e7ae5865e08bcd33c3a07dd34a7273a4bc04d5
SHA256 6486acff1f84dbb14efdd12f36806b493dccab5c8b413034e0220f236be20013
SHA512 d35eeccef14aa231f63c4469e7fb96be6ef674c6b2d8a0a4ef177e481c078639829ac056e5709567899e4b3f5648028eb2116f069ee0afa11267cbf59dedf397

/data/user/0/com.mianfeia.book/files/exid.dat

MD5 333ef0b4189d6680b0bed1a7b83a0ada
SHA1 5e2b699fad359743f14f46da6eb7544665f7d926
SHA256 a118f247fe4295af88ceaa60da11ca929571c414b3b2baaa514e5f40e8614e00
SHA512 d962aba337057a0a15560ae5f0eb6c76c9398242595bf8d4586e815f18a270d7fc0fa3367984b96d65f8ef726ea8f4897193eb21c6fe7e42cd5709f488881062

/data/data/com.mianfeia.book/databases/.ua/ua.db-journal

MD5 8d3e159f92c60d57b203db762392abd3
SHA1 a99c7cd340775a0ce971e45ca77fde6ab66cb618
SHA256 689222abb5e7535e1ce2baccc8f927b5c71b04f698d3980c6f39422488eae62f
SHA512 7cc3aac7a3f468aff28ea52609b7f4ba1ba9c23ca3d0f25d5ff5f423dc1f60ed7dd83c4441a0e550c4393dafc328f4e86b5e48e30fc6f2126973556c6acce098

/data/data/com.mianfeia.book/databases/.ua/ua.db

MD5 18f05a955701ffcea2f5ded9bb2f2167
SHA1 5a3a0d79c6018b33e7ebcf794f87ede51d893640
SHA256 36a9e9012bab696e656ea76b5186276e447da722536281685404c169284f43c5
SHA512 e25fa9db4a57c0a6eb082ce15d1d7466504e6aadee488191bbf6f335c116e529fc25b493255c63260dbe264df1baf4225a3f93aa6a6f941ad8a0c3de6261137d

/data/data/com.mianfeia.book/databases/cc/cc.db-journal

MD5 04a97ec069bc6fc50e61bbc3a869c4c7
SHA1 27b12044503ccf7d503d436fc1766d5297e88678
SHA256 0b7e7bd8d179aad68151f3c960e9cb088dc07d8e44b8a790c0d4c03bfa9636cf
SHA512 df19d0734d3276bb236cf61141d9611659fff18a9771b75a22eb7f6cbd5a252d63912e4a4772e38df72518a100a4995856a609ba495e8b5394eb90f8b3be1bcc

/data/data/com.mianfeia.book/databases/cc/cc.db

MD5 86752a4be6564d8370f2f0e403995003
SHA1 29f7d50675f6e59f3b808eb6dcc8619384412115
SHA256 50484dcdc6b9c2801773018386a8143a52a5153eb2eeeaf5be8bbe46a49ca90c
SHA512 79c9435c1e0d41a3f97784be3e5a3cd8c0bd2d32ecdf326808bacb00c76d876d0447617d6e72ef04cd4b996c92eda4eb7bb200987ae7928ce2e0e7c8e807a5ec

/data/data/com.mianfeia.book/databases/cc/cc.db-journal

MD5 37399197a97258db1986635de0fd1b0a
SHA1 82a51081c6aea0370348cd0278fc10bfc3f13316
SHA256 f111961a06714f1f3148c65d05c43a972418191373956cf00e1df01f7295d6e6
SHA512 2035f6a3d78769e0eabaeb4ac5e37f07846facf9e2088d4c95b286d160c4069c5ce50941e303b053f6b848a4f07811e8147fa3d1c439c515fcef389a05373f1f

/data/data/com.mianfeia.book/databases/cc/cc.db-journal

MD5 3dd0822e56ff7ee307c205db8c9499e5
SHA1 800dcfd9560ad030a748914cde9f2fb7c46d2a59
SHA256 1fdc73543960634b0302a8332e271527d3b50a46ac7d8530dc23daf60969facf
SHA512 11e14a770a1a91dd2c1ddb1db9727a55294a795f183bce1f00c0a791e071d7de79749f5f83191d94505270f610647ff0d75d4c9abe42715ac4866c1272709631

/data/user/0/com.mianfeia.book/files/torch/single/uninstall_apk

MD5 a31af7731438cca85319cc548e914017
SHA1 61a08c5063f6666fe5c8f4e1958d66025ff82334
SHA256 1e20893aa68b0c1560f8833b49cab27e9fea9d29f90cac52c10371059b8920e8
SHA512 4a9b9aa4455fad31558bc2248ff5567f58283cbf9bd50f53ecc404784d91b4f36e2378676ed208593a0ccf434d0c5a274e5ffdc8d87d34a809ad17c828f69bbc

/data/user/0/com.mianfeia.book/databases/AKTorchDownload.db-journal

MD5 4aac2388bd6e6fb45c4ab8a8311f777f
SHA1 23d1d5f83cc62dde686fca477cf53ccd8e39f8f4
SHA256 6dce8bf970bfc68150cee1659d281d4a0f8a1d24d9516003b179bcb7f7810fe8
SHA512 af3353e7965d3ee9f24abb912334e96d8eb97ac34c80b9373a8c58e5768189039f2a637ebbbaf21f0a0f4c482ff0f00f2f8c43c4da46d854bcda8ecdc40a1dac

/data/user/0/com.mianfeia.book/databases/AKTorchDownload.db

MD5 d602c0385a66729320b5bed3ff3bb785
SHA1 bbf6e3ce6723aa0e66fa38cc96e42e07f7e88a6c
SHA256 9741de70b6e207329c4c78baeaffe6ed72e570a73d1343394eda15ec105ecc44
SHA512 ddbab0fc82de5b79b0ab7c8cac9dd1993805bce3c83b06ac2675b1f223eb91d624b3cef0c7619efee143fb2504ffa0f3e9340abc664826d84b7035be3296d07a

/data/user/0/com.mianfeia.book/databases/AKTorchDownload.db-journal

MD5 999761f0b74df5ed796f27f02f9df548
SHA1 56f9367f8e8baf2543907fc87556faf3d93271ad
SHA256 83247885a200c1ac98e67c745e2f59316e201d4f0d2ace665c59c3b46a55340b
SHA512 92132e5ef1e8070aa7ae784614510f0f3fdbfbef8634d747d3b8b0346723ed215b1a2d008f5f791c498d23bc1f55b9a71b165f1d47a01b9c830da3622ef829fa

/data/user/0/com.mianfeia.book/databases/AKTorchDownload.db-journal

MD5 2320ed4497163865ac797ab13fd446c6
SHA1 36df4370bf85f332dfbab7e030545c6275ea6daf
SHA256 576a9c3d9d13b19b5ffcb878185d4ea88544197efeb21a4d88d51d0698445b53
SHA512 b0f90d0decfe78674420bd0f8ed22397f35d7b65387b81c95df726fe5b1367bc0c5f2fc56294b57faecc046a67bc6d5d15a04534e431269ed519a37783afddc9

/storage/emulated/0/Android/data/com.mianfeia.book/files/torch/apk/uninstall_apk_list

MD5 d751713988987e9331980363e24189ce
SHA1 97d170e1550eee4afc0af065b78cda302a97674c
SHA256 4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
SHA512 b25b294cb4deb69ea00a4c3cf3113904801b6015e5956bd019a8570b1fe1d6040e944ef3cdee16d0a46503ca6e659a25f21cf9ceddc13f352a3c98138c15d6af

/data/user/0/com.mianfeia.book/files/jpush_stat_cache.json

MD5 b09e42276239a3344bb3c5a75203a78a
SHA1 51ed524ec9a1d2ddf659f4e6395ecd3bb105fb19
SHA256 00a824fe5632e8872747adcb173ff4154b96fe5c089d8b34c895f281b476b56f
SHA512 514307b507beff0ec1b7ca337d357879da30490bec5426ca85e41d6c5be45a8065566a011a36da7bd4e10e6fd0848cf37c2a72d0ba417b0d32059a46092aacbc

/data/data/com.mianfeia.book/databases/.ua/ua.db

MD5 3d5bffe4df2f7329560026ebec9d0621
SHA1 773054e63a27f48327f0d3400228ff39756a9c77
SHA256 93978e0ded0d3c6815989a0a97fc40dc5c2765fbb5b3d623f82b04704a4ee693
SHA512 51f7cf48846e4981d60a920aeba670617cf1db172b85a1260d46f6b4322862ce81a49e99afc40a6b5892902580e01bbdecb3272fdd7e4a3932dc21b04dedf632

/data/data/com.mianfeia.book/databases/.ua/ua.db

MD5 9d09dc8fd6a65ba4521cf4b3f1096f29
SHA1 0c3ec5298f81ac9d0ef9c57c0901eb2b9955c9fb
SHA256 d5d59f8ea1002979987ac3ff8ae3828326c55e80798167e48258150bf082b202
SHA512 f632e8adcf167e7cda6a2e1d8fe54d601bdd9f090fe5e949de8739738de56f75e11813c641aa1743ed465e38e55f08dae3698b74755e231074205d04c89cf41c

/data/data/com.mianfeia.book/databases/.ua/ua.db

MD5 96586ca255475759ef06f6679531c6f2
SHA1 bd95f6ee26bf854ab8d8eb8c07bfe79324f468f6
SHA256 b27f3fbc5943a12f3a4c2ed4a971d018f48ad52de6170feafebd563ba5cb1816
SHA512 c18c0c5a6162ddc0d2df670d1b151fc06cdb3af9205d13d845d587df0de29c90001f69daf7df649526123eb01dec26ef4864a8d063213c4f4115553b7a3cdc0c

/storage/emulated/0/.cxb/.cer

MD5 151a4796f4a744cb5a9fb247da870c4c
SHA1 c4ab5fa54d0740adecdbc22a93b379d6cbd537a1
SHA256 be325d317104fa375f690915f54e3934ebaf2907aa633428c8eee8d191d0b090
SHA512 48a0b753ae320d83821b650b4ec391b3fc4823a0c9a5072d56fc7df80bd1798fb8a8e6b35aa81268a41d60c1d3a39f1a585cd2bb390f921226c47d81b80b27fb

/data/user/0/com.mianfeia.book/databases/config.db-journal

MD5 eb0e5ef0572c93cb9cfe97ee06aeda6f
SHA1 7dd34cd5e759f0228f4ba1c30be83fc8bb9ec298
SHA256 1f253e0648b6bbb4757ebad029bb57a2225241769e2ac0ef9b0036363db2a454
SHA512 6ac14503560083b0e77f456a41c320429475331147cbcc887ddeb9b61dd8ca75adc78d628b190edeb8d5f57ead13a23c85a3e63ea33634333ea57b2e925fa1e7

/data/user/0/com.mianfeia.book/databases/config.db

MD5 3b59caf4a1bc32282e668f907b1de5b3
SHA1 1addcdfb241540f32a8aab8b77ede8c47e43668b
SHA256 b02d8102806c5688750810e331964ceec0105eaeddd7009406eb2aea8ec4836c
SHA512 923e29eb99c06a58ede2720bf53be647db6ff1b8dfb0064580bc479e4047e5de17ff9fc2c678fcb01d2c05d6d40f8a1c8fc53b6b67f7724207bf98f69472c885

/data/user/0/com.mianfeia.book/databases/config.db-journal

MD5 18af48b41e6034e7bfb0a99cc3aef2e2
SHA1 4a1423cc9950a2c461b5ffb692ddadaa7ac4f714
SHA256 22deacba59237f69ace30c8bedd3efd9f7eaa9fa588857d91142370f4b622538
SHA512 58468fab75e9537f2504992352fbf6e82bca8e25c3aecdd0b9b0a7b9ec0ae32a7441e6e80c8b0bb4aaf78ea5f6fbc019c5ebc34c762badf9f7011d51fd4034d2

/data/user/0/com.mianfeia.book/databases/config.db-journal

MD5 59c94da8b5dd034ad32e975c37137d2b
SHA1 112c4117879e0b721500d7cd9c8ef82298672c5c
SHA256 f82b3f864f2b3f7ea541866de6ff01af89bb23e0e2d20c19b06dcdfcc01bb710
SHA512 9e175d64057ab278abb5e68b047a43078f18d867f121ac64254a97141856f2d42eb691d5f0a4f5c85a1ba7ff3c1714ebd31bf7479dbe1c3640f0cfb19322acaf

/data/user/0/com.mianfeia.book/cache/tt_crash_log_dir/1716385472637

MD5 d5ff94a2835f406b0cd72706fc97cb9e
SHA1 f24d51ef8323465eba1e5be9f8c9e7644b020f01
SHA256 3ea3533e9276daa4a5add3bbf3cdf545e170d90d65b998a9d69671ba97ed2ab1
SHA512 add9c6f9aa18cc68aea447fa24337ef1d4f2efdfb6b573723b9fb4291ba1257c8062d2c63a7e6afa8619b1e7d0b746465dde94855a8449680a2e1794ddee2554

/data/data/com.mianfeia.book/databases/.ua/ua.db

MD5 4ea6cc7af25a210c5a209304ed6dbf3e
SHA1 bd8cc830945bae684a7add373834d5d9d27ca438
SHA256 205c63468e1512ba5d95616cd9db920882cefd840e3a1f1076a4399f32195757
SHA512 867c9828acbfbefcca0f05d8133cd75436a118e800fa7b6f89cdd48cdc45b0f3dd7bdae73651c5003aba7bb3ebb28727b9759cdc249d83cfc74c163c643d1e98

/storage/emulated/0/FreeBook/book/80001512/.fb

MD5 5c5ec4a7424f25b949600d0352b11ae1
SHA1 637e32f83cb92a9d160aed00b70eb3d9e3e30664
SHA256 8ebac67ef4f4b2d02c868579af012eb957b5aa9d960652f21629223ee41e64d5
SHA512 baf334ac792ff2d23e145a4a07b1f374620a1f20ebdbd81a17182a9f9177506811b49d213712a24a110533945dc59bc630e6d494630f5d411239fa49a99ff9e1

/storage/emulated/0/FreeBook/book/807000106/.fb

MD5 8383d83eafe52287d2378ab018d0bfc1
SHA1 100defe20b036e184fb85d08b5bb002e29430dc6
SHA256 7b570f3bb14890a5226903aeaaa27166a1c2299d8b88e959e89fc43514e5b86f
SHA512 5253026cffbcf16213ce2255fab3d7a0d87c91276a1e62f6ec83811e358a860bdc7c459c66a80dca251e3b00da69d55196fbb50d0296d31782cfdf7ca7cac7eb

/storage/emulated/0/FreeBook/book/817000010/.fb

MD5 5d624e3bce2037d5e24cac7f6c7a791d
SHA1 348a5c1932cf6d2aa26cd5bf78e084bbdbf1369c
SHA256 2bd0b9946fcbe08218067574dd10aa41765189da2ce359cec5fe3f97c86d6f7b
SHA512 e4692818e4b6db5d41bfd4831cea929d7bd1198a7b5d993369e6a1ad81f687373f2b01906a7ce6dc159122bb788c53b170c79e494c8410a18c9c6c7406a9a848

/storage/emulated/0/FreeBook/book/80002406/.fb

MD5 5310c1731dae219f384e7a98f1d782a7
SHA1 90a90d7293a1aef704519b08d88ee61f80a2d11e
SHA256 562d83d45cdc681a8a7006b79e0f6abb0bc2d0c63ede7a2befa28cd5ec9c63dc
SHA512 178787046f49f6bf49ff4b822fad1be8d97a71bfe06ab1723afa3ceae90050e4579b6acf273e0f195df075c196c91c2d346487aebed4f4812b30995e20110889

/storage/emulated/0/FreeBook/CRASH/crash-2024-05-22-13-44-38-1716385478401.log

MD5 42f64a37c96e770004a5e2a39963899c
SHA1 ac06479c70b5016e269cf6da64a0447a4827fc18
SHA256 0177f2b7bc8e3efbbaaa3bf6ab26a6bbfc097fb2c63d9b79505cf9009a08fd5e
SHA512 6c35de3e4054500a615c827855e44b6639e136b7482f03c1a8d549394c1195b7c672a2e37a83490ce8bf9ed381a8d9d48c937e71c6e4fed0992c7ebebbbc8431

/data/user/0/com.mianfeia.book/files/torch/single/device_collector

MD5 724cca534c92920021496925667ef232
SHA1 4a95209e3e714ef7fa09d15b101ef0145c9bbd66
SHA256 af91d33e2b95c0c4873cab96ad5f8dbba550738b393f5bb23c876554dc097d49
SHA512 ce481fe9a622b1d287b11cf2ee25c33896c72a0ac04f21b2d8007c996e9e9cadb9a25d859cca6b54179f7f0aa800f50f54c4e3cb1adc2eac753cca9288c43a6a

/data/user/0/com.mianfeia.book/files/torch/single/log_reupload_task

MD5 394411759779a72b03450735ef1c9c9a
SHA1 da8dc97d27e43d74ad562128b47fa7e0e50acd38
SHA256 4b19dbdf18e503d958610cf02383d1da988d50376ae3ec7f77e11a2ba4a2140b
SHA512 36614c5e2a2179dde3a6ee7582cc8bc9249750fbe49fa5854fbef2c187a12325c11f882a881466e3917af2d7030ad8a0ff54965c0b0f1c85eb2f011d5f623017

/data/user/0/com.mianfeia.book/files/torch/core/3.9/oat/finalcore.jar.cur.prof

MD5 4e5b8b63332730989be5b34ffba43eac
SHA1 cefa58223b8902a2c40783d44e7a6a35070dec84
SHA256 f108ac181f3869821a01325208f1d2a2bf881a36576cd844443a4ca3794aeeb0
SHA512 6a7038ca1e2026283b4ca953df87a4585d20fd321ec1d1d53dc4c11904418ddfe0b67e96e8b64bfb9097df9a312ae6339ef1d7e73ba39d7f7339e30d526516a2

/data/user/0/com.mianfeia.book/files/.um/um_cache_1716385583503.env

MD5 96ca3adb57e2853661956a6ce5cdeec5
SHA1 d6eaecb03049d4d8aa053a6a3dee8543018eb537
SHA256 1d9c9725c2fcf6b8fd05519559c2cfd0206523256e048fc866ddba9b61e0fb6b
SHA512 b1e9c5f5f685c4d94f12759c30f1e9f64b48e804ca6ee50f77b3781959c888a0048d73bafc9724d85c5fb8901d80569a37b0417cdad4aa871767f8c4e4bf4b99

Analysis: behavioral4

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:44

Platform

android-x64-20240514-en

Max time network

4s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral7

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:44

Platform

android-x64-20240514-en

Max time network

4s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral8

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:44

Platform

android-x64-arm64-20240514-en

Max time network

5s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral9

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:56

Platform

android-x86-arm-20240514-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 172.217.169.42:443 tcp
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral10

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:56

Platform

android-x86-arm-20240514-en

Max time network

4s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 142.250.200.34:443 tcp
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral11

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:44

Platform

android-x64-20240514-en

Max time network

5s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral3

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:56

Platform

android-x86-arm-20240514-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 142.250.187.195:443 tcp
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral5

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:44

Platform

android-x64-arm64-20240514-en

Max time network

5s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral6

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:56

Platform

android-x86-arm-20240514-en

Max time network

3s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
GB 172.217.169.42:443 tcp
GB 142.250.200.34:443 tcp
N/A 224.0.0.251:5353 udp

Files

N/A

Analysis: behavioral12

Detonation Overview

Submitted

2024-05-22 13:18

Reported

2024-05-22 13:44

Platform

android-x64-arm64-20240514-en

Max time network

5s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A