ea54b83b70f6614a6ca0a60a78c4abcbbe5be461a15af22ff4546fe71d0dcc80

Analysis

max time kernel
137s
max time network
187s
platform
android_x86
resource
android-x86-arm-20240514-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240514-enlocale:en-usos:android-9-x86system
submitted
26/05/2024, 16:46

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7622aca4817931650f70563513f7674a_JaffaCakes118.apk
Size

19.7MB
MD5

7622aca4817931650f70563513f7674a
SHA1

bddd206442051838fad98678adea532a8656970f
SHA256

ea54b83b70f6614a6ca0a60a78c4abcbbe5be461a15af22ff4546fe71d0dcc80
SHA512

55ee320e0636f4479d9b47371ba5ac1ab66c77ceb535ec19055eabffa829edd1ecbb8328f096759593e61e651d4d7d63cf7885f9988dd8bbe7ba321ecb9ca53d
SSDEEP

393216:wyb2cy2rhMozrvwCWu+S8xxGIwl7OPNvlfXFOKZ2ryiEJSov5Z2:wuIAMI4CW6EGIAOTqy1Re

Score

8^/10

banker discovery evasion impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 6 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/xbin/su	com.shuame.mobile:optimize
/system/bin/su	com.shuame.mobile
/system/xbin/su	com.shuame.mobile
/system/app/Superuser.apk	com.shuame.mobile
/system/app/Superuser.apk	com.shuame.mobile:optimize
/system/bin/su	com.shuame.mobile:optimize

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps) 1 TTPs
banker discovery

Security Software Discovery
T1418.001

Checks CPU information 2 TTPs 2 IoCs

Checks CPU information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.shuame.mobile
File opened for read	/proc/cpuinfo	com.shuame.mobile:optimize

Checks memory information 2 TTPs 1 IoCs

Checks memory information which indicate if the system is an emulator.

evasion discovery

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.shuame.mobile:optimize

Queries information about running processes on the device 1 TTPs 2 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.shuame.mobile
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.shuame.mobile:optimize

Queries information about the current Wi-Fi connection 1 TTPs 2 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.shuame.mobile
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.shuame.mobile:optimize

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 2 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.shuame.mobile
Framework service call	android.app.IActivityManager.registerReceiver	com.shuame.mobile:optimize

Checks if the internet connection is available 1 TTPs 2 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.shuame.mobile
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.shuame.mobile:optimize

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 2 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.shuame.mobile:optimize
Framework API call	javax.crypto.Cipher.doFinal	com.shuame.mobile

com.shuame.mobile
1⤵
- Checks if the Android device is rooted.
- Checks CPU information
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4265

com.shuame.mobile:optimize
1⤵
- Checks if the Android device is rooted.
- Checks CPU information
- Checks memory information
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks if the internet connection is available
- Uses Crypto APIs (Might try to encrypt user data)
PID:4362

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

Software Discovery

T1418

Security Software Discovery

T1418.001

System Information Discovery

T1426

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.shuame.mobile/busybox

Filesize
353KB

MD5
cbb5a5610124d7c25264933bbb72184b

SHA1
7adf8746a414a8f8a098d449f47672c68561d603

SHA256
a8ac1fef0c0f690f89945e30f8a84df25aa2707a661c306a3d4679ac5248fe03

SHA512
c7b56b214f0b2cd1261b1c4b4dc394b5fb944d00b69171d80516514400c842ac0bb39873501fe0c7e869d01671173a88bbd33ffd8a6d2c206d8e9e9e47b424bd

Download Submit
/data/data/com.shuame.mobile/databases/0M300KYTRV0ZLNW7-access.db

Filesize
4KB

MD5
d87fbbe95643706565377bb9347270f6

SHA1
c0ae5ad2cf0f090eff49c4b2fe38d272e5628313

SHA256
8021cad16e5f85f7311d5ac5d3939c2b2deb69b69212d485f3dac8eda7483f53

SHA512
6215822435c1bcd4d47b89efd9e2f1e38b0b6a9293bda195486c0a1e1722c6e9971225ddb05021ec70ec0b363121d4da28eb11722c9d66928bb005238c120bf9

Download Submit
/data/data/com.shuame.mobile/databases/0M300KYTRV0ZLNW7-access.db-journal

Filesize
48KB

MD5
1b13bdbe079e61a5e17ae9fc68e89e13

SHA1
a4d3a6850867bc3c39a4b96356d7e44ab6ba67bb

SHA256
af180feb227b4d5024c451f6dc92fc979e93168375f459407c85d38e724c94e9

SHA512
b8dcc48251aa6c1f9af959a480fec96ddd8af532ef8fe46266025a741bb4f164eb446d7cb9f9133bc70c2c69e233fe7f1e16e63c5a2b85e54544f173d02d7ca1

Download Submit
/data/data/com.shuame.mobile/databases/0M300KYTRV0ZLNW7-access.db-shm

Filesize
40KB

MD5
e4772a7f5a7144b6644d25017d9df909

SHA1
bb7b359a6241d355d76064afc32ecde370d97eb8

SHA256
fc067538899ba1c0114f3fddfd570e0b2cfefc435fe4b4f9b977842533bf371c

SHA512
4e28e9353a92813dc288e0cff7c9281ee08ac5d41f3514beeee2889fde641d8cba1e28fe6d94f688d7c938b07bdc34eb83adc82763da69e319e6bcd27032f715

Download Submit
/data/data/com.shuame.mobile/databases/0M300KYTRV0ZLNW7-access.db-wal

Filesize
32KB

MD5
05631e570814114d29720f6a87ac8412

SHA1
27e1ea84f0e1ed7e3ad08bcc95e1c0fc8a1ff29d

SHA256
fe952707ea50cd260ac4679de612c0e6ad5bfc51119dd85257a030f12b5de263

SHA512
7fbd5a0562bd3ec01d8b5018f6a79db9db94db62dce345fd0a481aeec3f53546463bac97eb382a3475e0664b336b01b485263db4cd90406dd9cd1bc904298e6a

Download Submit
/data/data/com.shuame.mobile/databases/appinstall.db

Filesize
136KB

MD5
ccf07c5e72abed35fea19409a7cd1f00

SHA1
6dfca30a65f829cee120c682ccee4fd9a890d5a4

SHA256
71c263abb7f70310377835237ad97f809d4ed84c8286c09ca05bd7b902c03c87

SHA512
f813abfe644bdce2818f51bc35efeaa7fb95916016ad0418c0ae8c6799d66e83c4281bc01891714e7b7969865d4d1510e392f9c64df0098e509e244b53554fda

Download Submit
/data/data/com.shuame.mobile/databases/appinstall.db-journal

Filesize
512B

MD5
cee1850b914e0919b5c0652bc741a925

SHA1
4dd10cbd8fc8299c388d3d4b8a948e10c0edf66d

SHA256
32c3980908d72a1831de5ad8729ff663ba605e35e49c1b2814a0fc2d1c4fba37

SHA512
1e0efe9ac002ab3a261f22d649e5170dba9cb8ba9c9c5ea7711536cd1386fa773818f16af55b6eefa50b2577e789f7a034e795262f16ca50187f71dd2b8b4245

Download Submit
/data/data/com.shuame.mobile/databases/appinstall.db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.shuame.mobile/databases/appinstall.db-wal

Filesize
36KB

MD5
092666c51bb107953af1aa5ae648c281

SHA1
2cfbc51e30e2c9f3c75f3f1ce35bb2868c80c4a7

SHA256
076a31708260a2ccf62350b7399819d32e87f6bd337498725a0323ce76494de1

SHA512
c0b4a7d0001bbf02701761b8319140e0949f30745f52026458e7ee573624d4b3fae3667c80c853b0a1a0884df9b501cd6cc2480c6f0cbbae69bdbc085680055c

Download Submit
/data/data/com.shuame.mobile/databases/beacon_db

Filesize
4KB

MD5
caef3fd6e7e3a6e7edb1bca31ed7e0ad

SHA1
e1e0310c3c3acfaf46da846544c1e2273c61d500

SHA256
e09a270bfa7a497eb83ddea2c35a5b275f6cf8daf226753ff649ad3e9f820bd9

SHA512
15d2cd619ee5d61c46b943aa5cee5dac59e7de3f07c9440de9b8866faa5988a69d80560998651e0fc6e70027f637dd03fa1ccdc2798fbfb80d79329a25f6289a

Download Submit
/data/data/com.shuame.mobile/databases/beacon_db-journal

Filesize
88KB

MD5
c038f5d756eddc9648c070d66deef326

SHA1
d309b920da915437aa1f18b9cabfbad276823d81

SHA256
3e0482a8edb09171a85bfd65f4125ec846bd9896c624088b2d1c4fea3670605c

SHA512
5b1422ff30fc50b760445c73a1fb4b0dd8d4d7b773bf8fc58015f5ed5c1d0c79c9db6926bddc325fc987989df83ac9de5f13f4c025f429a783b4c7988677a05d

Download Submit
/data/data/com.shuame.mobile/databases/beacon_db-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.shuame.mobile/databases/beacon_db-wal

Filesize
104KB

MD5
ad02b35b5576db9823ba1dc1227b9531

SHA1
09f0363bc3ade4943c280d553a63848346fe87be

SHA256
fa7facd922ba21f16265973ae98f56c667279bae52d5787d1780d639d6b3f92c

SHA512
a2f27dac50821f06d19e9832c02b2bf79598ca425bf19e41cefd71063432e92ac31de36489bb42e46675af1edae5b79477a28d9db0d643e2a29cdf8a2a797436

Download Submit
/data/data/com.shuame.mobile/databases/name_file

Filesize
12KB

MD5
ac4cf7caff840bbf8fa5c344b2df7d30

SHA1
f38f99d4e0533d58abac84c4fe151e4e647649ff

SHA256
330f18f6eec4299787e422465f7d7c46c56c839a8d5a7e014fd0278037e93565

SHA512
77493f325fe4f3d4d086be8cb517fdc2c587e854ae1c2c5c03a92de57f18afa2b3502575a8505a9ff13ad7abf65cc3aee71c75a8e86cf7aa9ed1febb2408686e

Download Submit
/data/data/com.shuame.mobile/databases/name_file-journal

Filesize
512B

MD5
a46a5e744aa74603926cc019a8a3c257

SHA1
84408e39fe129cdb067ec7e431fd6dad3019d69f

SHA256
fea3a2c1325c7ab72baaec45f9f5e7a902682b478880dc5cad73201894026010

SHA512
48d63adfa21bd480d0df773dab7ccd4e4d6d72e18023ddd1c68f78d6910e039b80fc2cb4ea6929280dd7449259dbd8027886a0bf7d9e65c68dbbf7d7498c1bdb

Download Submit
/data/data/com.shuame.mobile/databases/name_file-wal

Filesize
20KB

MD5
7baabf6bec0452ed7eab5fd81da02c83

SHA1
1b3b1ff82a63617288276c9d8cc12f0f86bd757f

SHA256
b0022b5403ad89a012bf479ddeeb5c58f1d6be0399705bdde19b0e0b5d73a009

SHA512
cda998b488c8a4e5493dc2f92dd10c59030e6db9eb183b8f54f7b1a91d906a48f10a6e936c2b44b163bcf24579f27c3c8bcfcd09bc0117c1c859381fe6476b10

Download Submit
/data/data/com.shuame.mobile/databases/qqdownload2.db

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.shuame.mobile/databases/qqdownload2.db-journal

Filesize
512B

MD5
082173b78e1ee86dbd52fe50900ef228

SHA1
3283800b583f765fbdc8d31854006253e5a7287f

SHA256
8123a0c1ad1ddea2d5c3bc5add21c81d79309a3f76d854248ce1fac5ca52df08

SHA512
181bac67f8843a2f8d46953dcf2f73a5ca8dd1fb98cc85ba625361ac02909243cb9d1ca9a19a067bfc99f53a8ceba14af3c0f45616b019f5c72c054f837921bd

Download Submit
/data/data/com.shuame.mobile/databases/qqdownload2.db-shm

Filesize
36KB

MD5
04b7ed8f5aee103f490c4b8d3e11f03b

SHA1
b8fcaee3b8cfd31fcb474921e49365b2939f6dbe

SHA256
14833653096331ccdc2acab6fa651974994fc85fb440e70353e9dd1e71006e2a

SHA512
6c38b7f003ec0834bea6ef0ba3072f87491c8311c877c2801b45d10fb5d53ac2d10d49ec631b1ee4e20c0c350bff84518d1c3a3929af3bc3830201162861ea93

Download Submit
/data/data/com.shuame.mobile/databases/qqdownload2.db-wal

Filesize
32KB

MD5
57305f44a8ad179497899ad270c68d87

SHA1
2090a3b5928f96d07bb9a61bfad1c354ef3a5a16

SHA256
b1f8db234638754fc9a736658cf020c0ff32bddc3700dbc1a6e64ed884267726

SHA512
cc4398bc0062fc0fdf87e6d8ff7b0b620b17444be2f1a258f692d4544d2270a8676171ed916c715739169b0ec56c8d8b23678b7c5b06634b45153db5d99329d0

Download Submit
/data/data/com.shuame.mobile/databases/searchRecords.db-journal

Filesize
512B

MD5
dd0d95c810dd5f3a4c2edc7bc94e9391

SHA1
fd69110ed7f49046affdbc936ad095accb3d9452

SHA256
948b78a007cc1d5f00fd3ec4af01e56f832e217a06e3e3345cba6c4893eee270

SHA512
dffaf926d9f68dbe89417f783ca6f4e31823a43ab3138cf6440767ca8a6eeb150d4f0ef5c7b950a1145145e1c0b0a00aa2ecc1e8ee8a385d1b87de64146b9158

Download Submit
/data/data/com.shuame.mobile/databases/searchRecords.db-wal

Filesize
32KB

MD5
dfbf138b4a03f83c1dc1910fd9ff7ba4

SHA1
9715d60ddbb7801911c6250db5b25e5f2018f429

SHA256
83012deeefe87d44aa5203ce43080a00f017b00517c4e29c359fd1d526abd58b

SHA512
e9a08b00b63fac242ebf3bb874d05e2b2c46e1972b43a8702e8bfc6d25d414d2c55e3855e66f88a855618562ecd8cf31182ea8edbd4d759edd52a42a857b72c9

Download Submit
/data/data/com.shuame.mobile/databases/statv2.db-journal

Filesize
512B

MD5
1b0fbb4d4bbf6025e67944d314b2b9c6

SHA1
a47753b29825fddeca44a679a8730c63f8b0ccb5

SHA256
e9dcc83cbbb2f9dcae5e2e1930924b5a39c07476a7ff248717bcc8a337bd60d2

SHA512
516d4bbd7e24bea4c1ef0f75eaebf0c1c256cfebb402e30c8ddb7b4dc3b97a60ea38839baf4bf6dcc0adee5f2f29243759c280b1250e12696eb437909b04845a

Download Submit
/data/data/com.shuame.mobile/databases/statv2.db-wal

Filesize
44KB

MD5
e3965cc950ff4af5fccfe5ce8ba55881

SHA1
ab0c4af1c7dddb4a5118dc512bb7b76f83127491

SHA256
cf1134a9bc47fb06c8635c3641449a8f9a50af9dc22ce54eeb0f899544114822

SHA512
35d7d7bdbbc33a4c92d7e95f6e62e5f6eed4f21dc4345c71e44a43b6798f2cdc7dc068e4f8cb8ab55a3e9047c5b29b24420a9453e211fb5cfab262e97fdaa5e3

Download Submit
/data/data/com.shuame.mobile/databases/sysAppInfo.db

Filesize
32KB

MD5
1c4274aa7a9a5cac8c6d1df71e4588c6

SHA1
abaecd685e01cc68801292e3dc7085654a22feba

SHA256
3f6cd5f480ae69859b7841450f3d032c528ba385ebf9f371b9c8fdc6eb4231be

SHA512
1adb95935798607bd36cedcd183924d3068f50097d017b278da7caee7771532b61ec3606f6189b6dec8426eb038fe40be75079ce35894b1a8e0d1d815261150c

Download Submit
/data/data/com.shuame.mobile/databases/sysAppInfo.db-shm

Filesize
32KB

MD5
b059834b740602766acce21e551f3053

SHA1
60e95431f58af10dbbbd99e701059c67d5f94a09

SHA256
4ea95a356c46739a64694c22fcc86e7ef5c57e6b90619d0e21392cd35432302d

SHA512
e5b7066043b45b2a659e99441a0eb5aab6353590727b63a29050007aa2eccfff88df33d9d677e0eae67f126144b15a66d0c02209fbd5e274b27425d9250328b1

Download Submit
/data/data/com.shuame.mobile/databases/sysAppInfo.db-wal

Filesize
102KB

MD5
8378e602d5f4b7886d07b55101d71c56

SHA1
6eff05c6d4fd30749936c4e1a13f1dde95370a9b

SHA256
af324ec99f18bde3a3bf600b2a6aae0ae568726f309651765f60e42d087065a2

SHA512
b021cb6ce1e17a252129deefe93e6123aa750d60348a5ef7e94163f3109fa46ffa3f01cd2f0effbec082e9c1b664a6a0c01cc475c3a71b9fe6bf342bdaedb35d

Download Submit
/data/data/com.shuame.mobile/databases/tencent_analysis.db-journal

Filesize
512B

MD5
99521e57bc187571bc00cc9cb94689c1

SHA1
55ee31179c1808b7a6caad92ca4c20e6214cf4eb

SHA256
f93187514b2912c4e391053732abcfd638d9825544bfbb83a4fe8402f7441ed4

SHA512
4a65e8f8df9ecde3a8d6bdb7b899476fa9afe49931acfaf7c5db4960c8762551e03a3ca651d2c75bae7bb47f879dc9974260a0655237a07c4c1cb397147d16a7

Download Submit
/data/data/com.shuame.mobile/databases/tencent_analysis.db-wal

Filesize
52KB

MD5
5e79dabd85a83cf7857215157c7f8cb8

SHA1
553bf3a4805d8d81840ce9b48bfb69825da11a17

SHA256
b56051a66af99270d739acc7640f555336996e0fe6d544ed890fb42e823b19b5

SHA512
1fe11604364d1e6864fcae4074ba70e4cabb2c4ed70b1694afdb28f11b6d6590e9246317706bf43c072dc98da0b870e76523da56a0bf433f70ef7eb359a11f5f

Download Submit
/data/data/com.shuame.mobile/databases/tk_file-journal

Filesize
512B

MD5
2b046d6e7f80f4185c2d61d295c0a964

SHA1
acf116099c218dcb33ca503b014180cf05bd5e6d

SHA256
77dc4ec7bcf40182040d81257cb32e47ec0769b92c0a5d95e2d24e281b11f91f

SHA512
00a0137e1dabd6579dd50ac54a3d13a3aec687c2750e71902e59dfa6bd323be95f8411b3808f7555dff316b6e42d1bd122f27a0d3511c42963d274e1b066ba74

Download Submit
/data/data/com.shuame.mobile/databases/tk_file-wal

Filesize
20KB

MD5
64b5c92cdc7ebca8bfd899e989dd33a5

SHA1
6694fa10a2a4029619d725912732e7d3308f7613

SHA256
6e9c93253c6bf93cbc5316301afedba0ebbb601bd3f06e67dbe91f072aabc3db

SHA512
5f79dd926ffdfde3e15b93622b35a1a44390b132abe3e5999d285c2a8284e5d57b0b013195130f0de36a3ace9bc07ef728f942183f90a0f1d215a1f92a7c0078

Download Submit
/data/data/com.shuame.mobile/files/40291.dat

Filesize
14KB

MD5
84e972f1df72e81d4c6409cd6f9a3006

SHA1
112b03dcf8483c2f8ca026ba40e3987ae9b87d3b

SHA256
ca7a46d44c2b978169fdecabee722cbb4185c24a03d4bd232bf2211c6be3f3fd

SHA512
3cb84cdede0834c79b29733d8e274ac1c8a6481f3def35c5a84e512e3c654a7496ce8360dc309cf52eb4510090aafe5a02d0844165e7a70c47d133180340658f

Download Submit
/data/data/com.shuame.mobile/files/wlogin_device.dat

Filesize
24KB

MD5
28c1a92d6c52a7b29feaa702f3b904a3

SHA1
3f19b8bee1ab2a679e0d3a68f67861ce7e5f2619

SHA256
22632ebce19443bc401085efb77f3bdb8d565dd9596341caea8325b69d02452a

SHA512
a43e36aaca1e718174c8a8f6c93379d940d3c283be9429fd1ba3528d23f3e1a4e6ae8abe5390fdb6682856b870ee367163295e32586d0fd7d6b8209965f2a3d9

Download Submit
/storage/emulated/0/.sims

Filesize
32KB

MD5
bf20e195470df79cfa0c6d400270eb31

SHA1
1f2491ab5b52b617ff56baa4d1b8432bc0ea1190

SHA256
6dfbf552e0b708d3e98be07110b1ea468222687321b2f69fb4b05ba9e54208c8

SHA512
dd7b680c4339f1e4a6b8dc193abae1c2d95be5e08f8f5c9f93d586b316f7781123055620e5f4dbe2a4e4c5ad1c94760f31faa1555e734192f37d1b92f9a6e1f7

Download Submit
/storage/emulated/0/tencent/wtlogin/com.shuame.mobile/wtlogin_20240526.log

Filesize
624B

MD5
bf383036579cc5106dd9c7fc74995910

SHA1
8063dad3499c4353b49a0afb0ff704e0d6935ce9

SHA256
63b055e893130b0b222035b0159d70654c8dd9f2ed3e6e3f94b41210e3846783

SHA512
2916fab2943540a7664e12f5a739cecff8f21aa3241ffedae1f12b0d2c744f8dab778b430abefae05fe02dd08e25b74c4d4391654327b69275bd456451208a54

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads