dfeb219f1602a8b8bd9f9b1dffc3363b427aabee39b60e0421cdaa579f655c26

Analysis

max time kernel
174s
max time network
182s
platform
android_x64
resource
android-33-x64-arm64-20240603-en
resource tags

androidarch:arm64arch:x64image:android-33-x64-arm64-20240603-enlocale:en-usos:android-13-x64system
submitted
04/06/2024, 23:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

968d3bb36113fa51c7d3ccb53f0cf011_JaffaCakes118.apk
Size

17.3MB
MD5

968d3bb36113fa51c7d3ccb53f0cf011
SHA1

629e49d353ebd37bd643e31d2a1a06b61ea37e36
SHA256

dfeb219f1602a8b8bd9f9b1dffc3363b427aabee39b60e0421cdaa579f655c26
SHA512

f36fe950e3a6ec8fd689c3ba13bea8654f1117d717ff61ae174398a0216c6761cf84267a0896ed59804ec5d8bdebc124798977746bc6dcf131dbf4125241cc6d
SSDEEP

393216:VmPE+CuTMl+b0TTsxlXx1GbeThTrOF394g4n6d4sa+8hfB5:VmPEHuTc+baTszXxwbeNrOF/4u4sav9D

Score

7^/10

collection credential_access discovery evasion impact

Malware Config

Signatures

Loads dropped Dex/Jar 1 TTPs 2 IoCs

Runs executable file dropped to the device during analysis.

evasion

Download New Code at Runtime

T1407

ioc	pid	Process
/data/user/0/com.boxring_popu/.jiagu/classes.dex	4261	com.boxring_popu
/data/user/0/com.boxring_popu/.jiagu/classes.dex!classes2.dex	4261	com.boxring_popu

Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

collection credential_access impact

Clipboard Data

T1414

Transmitted Data Manipulation

T1641.001

description	ioc	Process
Framework service call	android.content.IClipboard.addPrimaryClipChangedListener	com.boxring_popu

Queries information about running processes on the device 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.boxring_popu

Queries the phone number (MSISDN for GSM devices) 1 TTPs
discovery

System Network Configuration Discovery
T1422

Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 2 IoCs

flow	ioc
27	alog.umeng.com
89	s.appjiagu.com

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.boxring_popu

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.boxring_popu

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.boxring_popu

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.boxring_popu

com.boxring_popu
1⤵
- Loads dropped Dex/Jar
- Obtains sensitive information copied to the device clipboard
- Queries information about running processes on the device
- Queries information about active data network
- Uses Crypto APIs (Might try to encrypt user data)
- Checks CPU information
- Checks memory information
PID:4261

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Download New Code at Runtime

T1407

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Clipboard Data

T1414

Discovery

Process Discovery

T1424

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Clipboard Data

T1414

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Data Manipulation

T1641

Transmitted Data Manipulation

T1641.001

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.boxring_popu/databases/cc/cc.db

Filesize
36KB

MD5
b986a138e325f9ed31653e246087baa6

SHA1
1cda06c101efbf7c89305f44b552e38282225064

SHA256
6945d75275af161fa082eab8b348f4cdccbab03854963f5e861fde210447e058

SHA512
5894180006885af44962dcd92c6f33a640d6080060a51a38ee4e348ee2dafe9abdcf2a931cfad4c395ebe20e08b96f810ca54b5b1f584fa232cdabc76be0740d

Download Submit
/data/data/com.boxring_popu/databases/cc/cc.db

Filesize
36KB

MD5
1b77217d803a7c04af9466680b92d104

SHA1
0cb959f4773c6730e8aed5746706c0f3ecb35c1f

SHA256
66c83ae35e997c33eaffe9c0557d98ee31931c18b99585a64eb6cc8f63d303e3

SHA512
39ea189895ca93855bb71b4a5447815e9373ffd39b50611ac172ae321ee7716fd4af5f86c1fd0d17e12b771f4016a86184620a7c5d07f57b88f017c4ce8312ec

Download Submit
/data/data/com.boxring_popu/databases/cc/cc.db-journal

Filesize
512B

MD5
807fbef6baa85588e0ee9ee3ffc9ffb3

SHA1
db195086463366e99e8dd8985e225c656b3a7b75

SHA256
421220f07d249acf27943f9b569a0cc89c91db5508c97c5e6b61399732129ae6

SHA512
324fe3c45d8408cd57ba28317e9a6b3054b92e3ad39df1dc56345dabad5d29a4f7a52754f31000e0c015e74d3769b438fa8d5d88088e96d8652557ff037c8c16

Download Submit
/data/data/com.boxring_popu/databases/cc/cc.db-journal

Filesize
8KB

MD5
593cb3cc2da37ea81718f85d25d190b6

SHA1
bc3843bec27f3bcae90cca599073c32543840090

SHA256
530086d719b4dda2566989aee898afaa5d534fbf9624c4dae4fc4e7c121ba075

SHA512
1355032674eda4604766fed1eb75b9c909cc2eacc94750d9456f3c66d50f2c7daef64fea1b0c2f01c8fe4ab35b99887eea7314c8ad2365195f96ccff5a3bff87

Download Submit
/data/data/com.boxring_popu/databases/cc/cc.db-journal

Filesize
8KB

MD5
52fa06fcffb03f9f0cfa61a6dbb24190

SHA1
9331039a7b9066066058e61fa267a1b5efce1546

SHA256
eeed4e222be276c9cd924ce81e10cd9f60bfc69e0e9f0c0ed0126a661fde8921

SHA512
b6947e4511fc88c39495332c90bd74820d056d981d8e7a3e825f3d5fcdb6d14ebfab9493ecc466379d58a22066f9d3225996e24c2a6ae289984dcd3fc55dca2b

Download Submit
/data/data/com.boxring_popu/databases/cc/cc.db-journal

Filesize
8KB

MD5
58108b8e639aff914296a8f3aab9dcf7

SHA1
56baf024168f15c88410f9fe90eb2ee0ae85b103

SHA256
4ed5dcb8d24c72017d1e019a3bdd949e3b833a8c6905635103719b4393c1561e

SHA512
dc067d882a5a0a8b546fa72014c20da7e5b769adb67ce3f9204eced1eff2427152b5dcc001c11f8d0d9975a71a406c7f9e6435b0f48f115c76aa6a885792b92c

Download Submit
/data/data/com.boxring_popu/databases/cc/cc.db-journal

Filesize
8KB

MD5
f869c8c5b719524735decceb0587bf27

SHA1
624cbafe45b2b72d31a125d929f46c1ea8e06b30

SHA256
d6e36ede1e43d6e56952be2f7159df337a68c982c25a939086e47603c088f90c

SHA512
5542ea4ce8e79c3b5911d73f6c460021c0383d3f79ea6a81a390e6509f6361decd11918acba5e4414825acdb9da3695f0c10d78e2f11b6892e993db695506c94

Download Submit
/data/data/com.boxring_popu/databases/cc/cc.db-journal

Filesize
12KB

MD5
ea29f57c90b4a1d76042ca4d9f23fb41

SHA1
8ec616a057aecff9c5fbd4342929dbc769093db5

SHA256
e2d3f14a39c2c5347755a5e818399daeaaf10011d305a3d1ed8fe32a91699133

SHA512
f595f6e47413dbfd19897147f2f4bfe6725a34c6f858a147d74141101c74154150bc85d5000ad3c5304cfbd0ae71286642033ae7180916daedf1961bb2b60375

Download Submit
/data/data/com.boxring_popu/databases/ua.db

Filesize
32KB

MD5
2c3e3c6922f5028309a26b7f412d35e6

SHA1
d2a979f272e0e9125311811cea0ce94a0b9f4ad3

SHA256
26257d53bb111e1831c301c6406cc633697502a7d1a92ef83fa9d9b035a2b3e9

SHA512
7aa525d6ef72f0b8349a9a46aab18282230eee316a5a872f5650f5efaec685b951e9ecedc923231a16882b3c87bd4970ce3c1b61df220be1e9123e8beeea5731

Download Submit
/data/data/com.boxring_popu/databases/ua.db

Filesize
16KB

MD5
bed253cd9a034599317650fc8656471f

SHA1
1b4df78df6e5bf7b77d413b64d3ce11f0e353a28

SHA256
b5cb1b0d8faa84134c8ef1bf4a24a5516e4c4efa86d6fded0a495b6a8a2898a5

SHA512
bf276a3962e2005b3bd63cd73b9ad3f757df65a342a1649bf833f660e5907fc4c2020560f9498078c83746779fc29f9c04a38458894c3f6f47c746b51322244b

Download Submit
/data/data/com.boxring_popu/databases/ua.db

Filesize
32KB

MD5
f9eca9244aaa2cafc630d98bc1b6af0e

SHA1
a9d528d549df4250640d7d51213ff99eef2d5ed1

SHA256
21e4cdbb0530e4e8f8ee25af192e86cce6e917605050c3fcd8811768f6e87f56

SHA512
b64c02b27133da411cafde16bdd6fc2cd13b039ac9b095bab0dd6bd3fc7982fc604ebb99997251b80b1e196b6db54f6bd22e2d89a8541772107463f7fdd96987

Download Submit
/data/data/com.boxring_popu/databases/ua.db-journal

Filesize
512B

MD5
920685320d0088229b69b8862636f0ad

SHA1
b0917635c7dac87bf49bd410cd662c696d182137

SHA256
93361f75ce5e292f979ecf633d4f774dc05b000b65d6413afbc0c160a4268e9a

SHA512
680cbeb0010d4ff50b81c48865e6ce219db22678d44211e645625a19a7da478e220f7cf7df53da4b53ceb6c69f9de0a36bdc19e6e86be677c0a6fa0c3548aa91

Download Submit
/data/data/com.boxring_popu/databases/ua.db-journal

Filesize
8KB

MD5
f0ef5c9eff79758553cf1abe46e1104c

SHA1
a093c7945d257d8cfd8fc55b581a6b213d492698

SHA256
4f4b32f37d2ac8d1da7aa15579140f6936f31adf76ba203257ce0ae76a7943f2

SHA512
b69211a6146e04145664f6361bab8b34964ce490039ba25a5fae75b3c507e78c531ecd1db34b6ea3f8a6efc46579add64219b6b447afe81d9d67cdb66dca79f5

Download Submit
/data/data/com.boxring_popu/databases/ua.db-journal

Filesize
8KB

MD5
066715ed3f4e841f525379b2ddf3fdda

SHA1
c29e6ba96ae6d309eeb35aa1c8e18321ea5e2689

SHA256
e34e10a60d4f77a3574b809b8ff68fc0985f29e197a688d386f624efeb8d09c8

SHA512
1305a994025bba273a563ac899a5410218d33541406637763a8e4b28897b06968b35a3c4e79f2ef9a5373849b35f8e35b5eebcf6b1bc0a958432f59d9e701ad6

Download Submit
/data/data/com.boxring_popu/databases/ua.db-journal

Filesize
16KB

MD5
3cf5642714cd0c9d2b9cc429806f63d6

SHA1
04f787b20c7312cff5bd5b78814a119a56021a85

SHA256
14d621895ff5e11402989fee8e9ee45e6f96b81b8b10191a5ce5f9df72bf4735

SHA512
733f5e05a3400d90371e9201df2bc1358a125bed17b105b52b5326125f88426b03b97bf2003f507f3fb247712b1b5541b08df54cf5aca99afbc13a30bdb83762

Download Submit
/data/data/com.boxring_popu/databases/ua.db-journal

Filesize
8KB

MD5
82c8bb46860a1bb4264e69f56844d3ef

SHA1
f040ae39d1999ccad269ebbfb01fc1366bdba89d

SHA256
29acc5a667769419644e5d714f88354823dabe8d2d699aecf1dbe566d013bbbc

SHA512
1201210d819478aed0d5d9f6dc5dd375a8f057fb6ea68e2c488425f18b24cab6e605ced672f27b3bf2b0bfb54dedfdccd207205ab6de0edf16e3de631d79a4da

Download Submit
/data/data/com.boxring_popu/databases/ua.db-journal

Filesize
12KB

MD5
e4ffda117c3c36a641a450d91f68adb9

SHA1
45bf32927babb1bcae7203d475246fcc35b50c72

SHA256
6f882b4349ab5df1e431800282d31e755444a9f18273f3c2f6d01c9107f53b29

SHA512
7eb6d57ba24119222af5b1204270db7fb908a31e675ecb21ec3f5ef1af37951a9539272a724b5e0021c15844cda3b0f4407aceba76b1710ebb7fcee3e811bc37

Download Submit
/data/user/0/com.boxring_popu/.jiagu/classes.dex

Filesize
5.5MB

MD5
41faa81b98078a41c61fdadb89a0f9ac

SHA1
6dcf13fc8ade7ff58e1e508c64933c4ccd61604c

SHA256
d461f79454b8d1c6a3a5a516b3f8a0fc0666d58e4a3c0c749bb876c2dfe5b1fd

SHA512
6e72fa7307e6dc341cb7363901b7d0bd6888039e43f83cac5a22ae2388f244c32e46d6ebcaa1d814e66de150a6028cbe10bd0cf57c0ecd9d1840e3288d3a21c0

Download Submit
/data/user/0/com.boxring_popu/.jiagu/classes.dex!classes2.dex

Filesize
1.8MB

MD5
bc3e02b9ef316b169afc2dd9a4ccf432

SHA1
732627c2bace35ce93923625dfbae3c7c90287c1

SHA256
186bf72540a997b7e66df2a72c9bf3f66afcdb9ea415a06c86f268f8046bec2f

SHA512
bfaa5b77c1daaa90d90e8c01edc020f2dc90f95918465c7b87180e5c14fef1b34746c034a866efc360a55db9b8ea424d7fe694e94c9d8365fc661b00b093ff1c

Download Submit
/data/user/0/com.boxring_popu/.jiagu/libjiagu.so

Filesize
475KB

MD5
5aea02f4e4c77fbf2e7a27f7ca9cc06b

SHA1
522db1748608e9173547b29b7aa82ddc3542c534

SHA256
5a1c513b347e2a929769e2be67552c1d591704f08f7b5590282b66cc2c7d7bd2

SHA512
5c979a11f5e896829db906f533756efc1cf3c5a7e35ecc9e376a0aae818f2dada013441649feac2e188bd51affbbf35156e32fdc6552e185bddbc547f3850316

Download Submit
/data/user/0/com.boxring_popu/.jiagu/libjiagu_64.so

Filesize
509KB

MD5
289fb443987b114ee4237b4dd97672bc

SHA1
9b898410845dfaeae3af212b5df41177ba9b8f34

SHA256
a55e9ee18285b41a4ea1bf375930a5bdb603dbfc530a3dcb224bbded14e68210

SHA512
debbf2720c9b132b5923eaa9fcb372a72a97d574bce59789d06b645925fa2d6a27473aae4c9f1e4968614d44fd98a8b0fb1eec217a595fb5c80bcfc056705508

Download Submit
/data/user/0/com.boxring_popu/databases/RingSetting.db3

Filesize
36KB

MD5
448090d0b6d6b9b5f7e06942159d1728

SHA1
aba1463d6e2ad4a36ace780158bb6854715d2920

SHA256
dfd8b133a63338e38ae0250dd80c357cdec22596e5fa39f4cadc2347de84836c

SHA512
e6cd7a5b137d22be93602d20b119c415e1dcbe83c69104ca3fee9404c6025685f640fac1c29ca9755a7927e41e7c90aa0b505bb14104c8d39ef8f5c1afc34bb2

Download Submit
/data/user/0/com.boxring_popu/databases/RingSetting.db3-journal

Filesize
512B

MD5
870f55719b270e07581b76b973dc7731

SHA1
5bdc6686bc0c4bba818ace500c0923f508551bce

SHA256
79a5462e42b6d77ea229ab00920dc3ded8fb60d21830e4e959af666f8bf1d810

SHA512
c979b781ddb2ece0dd7b766bb3b83899d705056ac65faa56000ff18f90f4cea815a7fab35e97b80227411a473c431f59af1a4a343fdad19ade4bf1107ab13eae

Download Submit
/data/user/0/com.boxring_popu/databases/RingSetting.db3-journal

Filesize
8KB

MD5
afe7c0a69a6894ab913f745ec89c8583

SHA1
0283a3ca8d6f0b4e293d1f3c9fec262dd671473b

SHA256
ade385c3c09742991027c73f1e663f4d92c43cd353f714e6ba9ebaa490fb105e

SHA512
64ecba58e5ce4087fd4ca0a234314a49610789a59c916d3de4dc5e9b41ee92bf995d59004191479014e9099a199783b890f272dffda2e92d1c93ebb3cef71924

Download Submit
/data/user/0/com.boxring_popu/databases/RingSetting.db3-journal

Filesize
8KB

MD5
6d4730a7ca67b633e5f05d049921a5b0

SHA1
904158d82e8ccb13aa19c1a691a2fb5ecdfca645

SHA256
756f30f2c67ccb3d31c322a44807654b3986436cea7d3f1776c919110bd50478

SHA512
2716ae1be5d81b2002a380dd2085e7a8340924e401a699c4c7540cd62ced7ffd08478b9234e2fef5a385e5f3d1e819a8b219147903928e83f72eaf066c86670b

Download Submit
/data/user/0/com.boxring_popu/files/.jglogs/.jg.ac

Filesize
40B

MD5
5c3f8f4d93e4096c259d062b94d89227

SHA1
3bfc11fb3ced46cc5c500923d414d42b27b03ee5

SHA256
f540d921db2cd698d3d6ead9569047b663a75923e0a234fa98068eaf49009a8f

SHA512
60eb8b043e8dc1bdf1f17752de93fbcb2f4053ae88107aeccd0ef9a03f587fffdedead3fc6bf4c678176ac649b72efbe196d9ebef5f89d32466ceb5499350416

Download Submit
/data/user/0/com.boxring_popu/files/.jglogs/.jg.ac

Filesize
32B

MD5
33aec852db0022e4ec4b2842cc25b3de

SHA1
47ba4a0bd7a2f57806ad137cd584bad7b91a83b5

SHA256
87876e6ea8ec48d1224dc372f9895de4f9629f2d8ce09822445eb6c1e875c84c

SHA512
66cb1270d80175a7624ed0cb8fd17bfdd99da62f997c3cf0b39865a189a5781bbcbd8b356bb9bf9ae96d8b00c0836020bee52222579b1a07d05ddcc739ab2688

Download Submit
/data/user/0/com.boxring_popu/files/.jglogs/.jg.ic

Filesize
32B

MD5
619047705bbfab2f988528870938f098

SHA1
20acb46e35a648771cae06594389a5d5d8e77514

SHA256
420941b1bc4ac9edce75ffa804c7a5119b39773bf713e3e8c4f9655b74fdea76

SHA512
e1016fa1a99de6a836defc18a335e178a64c91c46ff1169f7f26de0b6acdad2263771220acf7c89271d2529c4f41e9d9dcf133c7c38ab470cdb55dc4fe0caf7e

Download Submit
/data/user/0/com.boxring_popu/files/.jglogs/.jg.rd

Filesize
32B

MD5
f10b62ea4469d1945d3a1846c2aa3f67

SHA1
4f438c54096f69dca02b77dc5dd3a0d566133fe6

SHA256
0d8305f39e5a8a8b48a766f3e21cbb0b8de13a15e41f89f1783c1d584cb60a28

SHA512
70a514b9c07c26a03c3ce2e8efb39bfefcf9338e5a3518b1ba70737469252eeab0b21611caab528a9666e8204dccac928b183e876f10404ae19c69b691d5a284

Download Submit
/data/user/0/com.boxring_popu/files/.jglogs/.jg.ri

Filesize
307B

MD5
63433e96f3c5586fe1b75e657ed255a0

SHA1
97afb1f4112cd792afa05e55a285bdf8b2f46ae2

SHA256
2505ae6892030e5ac1df7553512d70fc13a00fb429c5b9ca5506532226e6ed6a

SHA512
4e6d3ba38d0266b62c51a7cd5a5dce0d0dc3841f29de5c2a557b40c626cafcafc862740e4a9c5747cef9e688fd1a604b2fc509074b29456e42f67cca7e4d5400

Download Submit
/data/user/0/com.boxring_popu/files/.jglogs/.jg.ri

Filesize
314B

MD5
2f19a3f59157bb4578c84e15cb16cdf9

SHA1
d16b523a159bfa0f6eaf7cab497177a0e68df4ef

SHA256
ad3d515d996a43ab37208a55a70455cfa934f4e34f9a964e982335dc351a5718

SHA512
0e9f49a707fbb733176640b64c84cc30b41806d1e33fbae40241e7d3c2f9c6d3ed83b5457472763b28b1423aa7bc8e243644dd94679cecc33d277535269b927f

Download Submit
/data/user/0/com.boxring_popu/files/.jglogs/.jg.store.report_pid

Filesize
32B

MD5
a744a364d4f5865c5f07f723a872a3ed

SHA1
34edf595f555e95571b8224b7d23d0be1f12a5f9

SHA256
4417b367125d47f1b7f7aafc99d9362e89d165797e9bf624f09e31ddc4440cbd

SHA512
4ca870bb0ef35e8824daa4b59c40000a923362cb2cb3df021666eec9b71f95922dbced9d796f48c5e9ca27ce48a5206b8c1ec5cea9ab36771bb37a4f8c405529

Download Submit
/data/user/0/com.boxring_popu/files/.jiagu.lock

Filesize
27B

MD5
95535ae0c000c5d3b47360f86d22adc9

SHA1
cba8c784a6dfb66bb7e21669c8b3a67928389890

SHA256
bbdcaad6c137be32cc83e5a41685f215ea8b8bb1ab6ce3f1e4ce0f1e51d3d686

SHA512
3fcf3120dc43198374ac1e603a05067f387dd58ac78fd13b313bff7a9e9285a3d502ead2bf50c152591e11e77eaae23dfd09558c1a7ba7fcef6c58be4822cc79

Download Submit
/data/user/0/com.boxring_popu/files/.um/um_cache_1717542495821.env

Filesize
1KB

MD5
221c37f733edd7c6c5602dd156a52633

SHA1
c871f009ca21684b0efbdecd03572f6933f00875

SHA256
08c3d75ecd68c05bc44cbb921752d2c3b02aea1c7a17007e8ccd4837dfd6d12f

SHA512
9cf519b416d75cf091abe324319158d77a52474441ce9cd172de8d049039a60dcf5752ba79e8412b1ae72dff130b2ab85e2ae2a2acb2f9ab7a81f80f08252c47

Download Submit
/data/user/0/com.boxring_popu/files/.umeng/exchangeIdentity.json

Filesize
162B

MD5
dd7357f504a53f240e98502afb17212c

SHA1
fc3c5dbd96a6941800aaa865284715b346e70a52

SHA256
2aeee3dff0dce2a1483e2b60b1158cc2d5ad5377dc2a7f181dbc5e5c66e460b6

SHA512
f70f993d7d067f4c9398314aaf001480aecfc3b2f8e380ae146841d2cb3736619d46d5d3116df88863317d64c53446c7ac8bddac4d5ab0bbc3da9f4def55aaf0

Download Submit
/data/user/0/com.boxring_popu/files/exid.dat

Filesize
61B

MD5
45631057c54230adc84d72a482d65dc8

SHA1
5cabf2c9a4acacd8ba546860ffde14e2d6cde6a4

SHA256
880e2d86ea9c41c07ffa18a38d18b86595061bcbe511e3a80a545ef94217ede8

SHA512
47598ae62cedd69b2845f709c15a7013c7a7a6e9c8766cf42eb244a39b7251f214deacc740d03bb193ce99a4d0e581d396eafa750e121d68bd1dc63c602426ba

Download Submit
/data/user/0/com.boxring_popu/files/umeng_it.cache

Filesize
350B

MD5
c38be2d14aa947f1917d521aa7bcda4d

SHA1
89406055f038cc65e453160a9259eed0334e1a86

SHA256
8013e473deb5478a876eb1076d464dc6a93465f17d65fd25b095c64a32916bd6

SHA512
371c3946e79762a79d48035bbff45ac6d5c8028bd8f6d4d2b580a77b5d85d4e96dc8b85ed8519f0507eec71cd353c98640e0c7688f815ca2ce8c5403c4009544

Download Submit
/storage/emulated/0/BoxRing/cache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads