4837fac27a2fb6188af028b759082b18980b6adc71440e088bfc06db7e7d57f9

Analysis

max time kernel
8s
max time network
130s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
23/05/2024, 12:49

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

SupoinLesain(7).apk
Size

6.3MB
MD5

0242ce93af7aa58b821cd08346563bbd
SHA1

e686d8211aa9af6818fa68c8201ce6395487a485
SHA256

4837fac27a2fb6188af028b759082b18980b6adc71440e088bfc06db7e7d57f9
SHA512

f986a24b52dc97f62f6b74658ba83e5becc5d193dce66a0e634a389f30ac4622a7d85d219561c01792ab77fc0f7a41cd6cb8e92b7307db7910257c7d3affba1a
SSDEEP

98304:koE9zqMiF+iHG+yPIsUxQc2xXPZ/6gvw9OE222rqAzZqGPx2KsHMXJgofKHkkX2F:k1i3m0sUiXPeF222rQG9sHMXJxKEwrj6

Score

7^/10

discovery

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.supoin.pdawarehouse

com.supoin.pdawarehouse
1⤵
- Queries information about running processes on the device
PID:4239

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

T1424

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/Lesain/Database/Basic.db

Filesize
88KB

MD5
ff14b9fca7327eb48919f8b0c5e4c94f

SHA1
060cee2cd5bb7cfcccaeca8308a676bcae35bfe9

SHA256
2cd0765c510b360af5a224cd3d94cb8ac524dbf39b03b6699c22cced9ab49ad2

SHA512
b5642c1e97936354c4d88b820e8b9d4197e8288a27f7fb49c8bcdfb6cbab49fd85814682ac9ccb446362d4c2519fc1b30711a19c0b9ba397076332a17f13cd4a

Download Submit
/storage/emulated/0/Lesain/Database/Business.db

Filesize
314KB

MD5
a93a59d0edfe305188d7867e3f1a733f

SHA1
3d4d9f2bb78e7f832b6a0635827bb86fa233d0bc

SHA256
ef265ab3a9f4253696ff9e664dcb7ab3e61787aa6438faae75d72d1b5f5091ec

SHA512
df432607e441270f86a885efc8fba22b8f49f761c4ab34e860523012ca25850140099f538dbd0c706fd933dc56363d899ca9cf5fe82624aeb8f6816ba6ccdd0d

Download Submit
/storage/emulated/0/Lesain/Database/Param.db

Filesize
567KB

MD5
95ddc72b4af7e99a13a55ff1f38bb266

SHA1
ca6563284bf9f1ac0d58f471eed1017277968cc7

SHA256
e0f4006d44297e80e048a82e1f6a2548a498557a82f82a40a65cd3c618db4b6f

SHA512
6680c7ad09989d83e8a63a9246a5964c362c57b07b4f3ccb8f1c2a100b741535be92bfefe1b8ee33bff5ed2b0eea235f6480934aaee92e3747e031cd694409e1

Download Submit
/storage/emulated/0/Lesain/Database/Param.db

Filesize
1024B

MD5
3180c920ae9525cb0e831bdda04d3c96

SHA1
31dcbbe157bcca5bd8c0d125233a0f6585f44f8f

SHA256
89d1e0ebf9a35cd88686be7b22e779b3998e1fddbb58c8a2058e6865ede08d9c

SHA512
fc099d39eab90d75f0976577124572742adbad1617c6264bb4d8c8d3b612dfa8b47d2cf323d1cd1f58a22f822ed8ffba0344dcf27649d7e6c3dc669bcd3a0b3a

Download Submit
/storage/emulated/0/Lesain/Database/Param.db-journal

Filesize
1KB

MD5
013bba82cf0ac288551b18c35d9a2ee9

SHA1
d17ef6ccf3e84c65e8eee278aac5071bd180e14b

SHA256
8e7fee110fc238694fb8617bf87948566ac578233e1dcb008dcbd5126dc34fbd

SHA512
76fce5d2f73186b751844471a9c4bc56f84a4a71ddbb9a57965034fe5079586f7e3e6df40a781359da07f595835441fe5a890521960983e4f38d7bf7893959f4

Download Submit
/storage/emulated/0/Lesain/Database/Param.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/storage/emulated/0/Lesain/Database/Param.db-wal

Filesize
1KB

MD5
62803edc5b7261e36aadc73627381e32

SHA1
5c4d954d9321ab62c6d330a9d75e87cacbce17e2

SHA256
a7517c3ae99a4f1d36c4ea6ee67e444e21cd89e96e2244cfb200cc24d80c3b20

SHA512
c91c49eedcce036767c988fc3cd415526cc1dff5e1b5e8fc731cee1a71bda404d02f87891b274b87f6a8bfa2e9db59593d027ee62adfd51f770dccef379bde00

Download Submit