493440904df0809a87cb64465706f1c129c28941cd2fa6e5edbb0da86f62dd62

Analysis

max time kernel
25s
max time network
131s
platform
android_x64
resource
android-x64-arm64-20240514-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240514-enlocale:en-usos:android-11-x64system
submitted
23-05-2024 22:19

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

360sdk_3_1000.apk
Size

1.7MB
MD5

1e9aa09b41624c4ab3dfa530fd1078e9
SHA1

32896aa59fd6f1509f4f46ec4eebb496658f91aa
SHA256

fdd2ac00ca6342d0ad1a684ab5ff6e683b2b56891ae08e6a16578892977e50b7
SHA512

9ec9ffacd3db5ab686eed1f68ea8f466030301cebb510ec3a9f3ffb6dc94277d4afba85a92bf7c3679c3fd6ecedad486fdc07adb152a77ec4ddce9dd943d40f5
SSDEEP

49152:ktqW6lW3LwyQmpkUTtjB0osrxHwD7lKHN:6qW6CLwQp/TT8rx6KHN

Score

6^/10

discovery impact

Malware Config

Signatures

Checks if the internet connection is available 1 TTPs 1 IoCs
discovery

System Network Connections Discovery
T1421

Processes:

com.qihoo.gamecenter.pluginapk.gift

description ioc process

Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.qihoo.gamecenter.pluginapk.gift
Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs
impact

Data Encrypted for Impact
T1471

Processes:

com.qihoo.gamecenter.pluginapk.gift

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.qihoo.gamecenter.pluginapk.gift

description	ioc	process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.qihoo.gamecenter.pluginapk.gift

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.qihoo.gamecenter.pluginapk.gift

com.qihoo.gamecenter.pluginapk.gift
1⤵
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4634

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.qihoo.gamecenter.pluginapk.gift/cache/uil-images/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db

Filesize
48KB

MD5
b9cda44b742a6afcd3bd76ca7ffd0ddb

SHA1
5e2c46616222ed7fbe966f0977089c675c2881a4

SHA256
787fc5a8b1b0454f1e8357b2fcb110b750be9c0e3abb1a3a68a477523a64aed6

SHA512
6fcf7db6e131cbb626121f6db13925b65332fca564fb3e430bf98840a9f640d63bd53ccd0e517265114b009306e45546f69549f16547acfec5d51edeca234a6d

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
512B

MD5
0aa22570e605f9d9314144e0b4f57587

SHA1
ce819e20bd63da0330e4a99d4e4467df8e6c5789

SHA256
32c20db0d0e3c183bdb8bbbdbd5c5a42a04c9f661c310f67af234c7dcf634369

SHA512
07c81097e00151a6dba3720facc17a756179887208644cd809763930a3ed1d1947007841e02a47bad4ba2b5dc5e0e2623c6fad7a5c20a23cdec1c003d5c83930

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
8KB

MD5
5e5e2e03134c0a83493e96f0c4a34dce

SHA1
1aba513fb99fee1d2f38c2cfb1f94a320e286a08

SHA256
130148c432e1c881e959a90c9f9371c4d079b5a537cc0f9064c45ca03de23b0f

SHA512
3b1a0023a98a3466748664b0adf3b6e7b8928b5fbe37db7577a131de8b2404454b8c0b67a75d38ccb55146ecc8221f0bf2bbdfda0157b414c0d5e7a187efdd43

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
8KB

MD5
2bdd66d1936880032e9a81440a8a01a3

SHA1
94cb032172efbf37d6cc721ee0d9f596847031c8

SHA256
7d66c39c26504cf621ea4a5c85beb7c960ddb392154f3c8bff3cc01e1ed99231

SHA512
6434c76847fe62550522ff1ab9fb58205b8aa06386d9b844bb6d6933c12065ae3b4a1ee1bb2084c1f42f769180a0ea5f2eda5aa0d9942f2801c61d5502f6bc85

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
8KB

MD5
4cf73bd0725ea81a14af91ed71b7fd5a

SHA1
026c3bcbe8f126c9544670b7ebb5a2c34d29a412

SHA256
1ee26ae4072623665f9dab6574e1caca7e1b2436677b0df24a3a5af1cbfceaec

SHA512
57ba0f73be472feac0c0c38e21ca9175ba950bdd36025a86719def1a51f68fe10f2e069d7f3fae8f68ef2a2397eb7da13bc9498ab263d5864c0124b840390406

Download Submit