Analysis Overview
SHA256
23a56aa446b91dfaeb64b9f4469bafecc0884f10a3cd383f470e9758a0e84dea
Threat Level: Shows suspicious behavior
The file 99f87ea6a53a01bd8e6a302f43396bda_JaffaCakes118 was found to be: Shows suspicious behavior.
Malicious Activity Summary
Loads dropped Dex/Jar
Requests dangerous framework permissions
Queries information about active data network
Uses Crypto APIs (Might try to encrypt user data)
MITRE ATT&CK
Mobile Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-06 04:38
Signatures
Requests dangerous framework permissions
| Description | Indicator | Process | Target |
| Allows an application to read from external storage. | android.permission.READ_EXTERNAL_STORAGE | N/A | N/A |
| Allows an application to write to external storage. | android.permission.WRITE_EXTERNAL_STORAGE | N/A | N/A |
| Allows an application to record audio. | android.permission.RECORD_AUDIO | N/A | N/A |
| Allows an application to request installing packages. | android.permission.REQUEST_INSTALL_PACKAGES | N/A | N/A |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows an application to write to external storage. | android.permission.WRITE_EXTERNAL_STORAGE | N/A | N/A |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows an app to access approximate location. | android.permission.ACCESS_COARSE_LOCATION | N/A | N/A |
| Allows an app to access precise location. | android.permission.ACCESS_FINE_LOCATION | N/A | N/A |
| Allows an application to write to external storage. | android.permission.WRITE_EXTERNAL_STORAGE | N/A | N/A |
| Allows an application to request installing packages. | android.permission.REQUEST_INSTALL_PACKAGES | N/A | N/A |
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-06 04:38
Reported
2024-06-06 04:47
Platform
android-x86-arm-20240603-en
Max time network
162s
Command Line
Signatures
Processes
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 142.250.200.36:443 | tcp | |
| GB | 142.250.179.227:80 | tcp | |
| GB | 142.250.187.206:443 | tcp | |
| BE | 64.233.167.188:5228 | tcp | |
| GB | 216.58.201.110:443 | tcp | |
| GB | 142.250.187.206:443 | tcp | |
| GB | 142.250.187.206:443 | tcp | |
| US | 1.1.1.1:53 | www.google.com | udp |
| GB | 142.250.187.228:443 | www.google.com | tcp |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | www.youtube.com | udp |
| GB | 216.58.212.238:443 | www.youtube.com | udp |
| GB | 216.58.212.238:443 | www.youtube.com | tcp |
| US | 1.1.1.1:53 | mdh-pa.googleapis.com | udp |
| GB | 142.250.178.10:443 | mdh-pa.googleapis.com | tcp |
Files
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-06 04:38
Reported
2024-06-06 04:47
Platform
android-x64-arm64-20240603-en
Max time kernel
14s
Max time network
133s
Command Line
Signatures
Loads dropped Dex/Jar
| Description | Indicator | Process | Target |
| N/A | /data/user/0/cn.ikanys.xxys.classic/.jiagu/classes.dex | N/A | N/A |
| N/A | /data/user/0/cn.ikanys.xxys.classic/.jiagu/classes.dex!classes2.dex | N/A | N/A |
| N/A | /data/user/0/cn.ikanys.xxys.classic/cache/hook/classes.dex | N/A | N/A |
| N/A | /data/user/0/cn.ikanys.xxys.classic/cache/hook/classes.dex | N/A | N/A |
Queries information about active data network
| Description | Indicator | Process | Target |
| Framework service call | android.net.IConnectivityManager.getActiveNetworkInfo | N/A | N/A |
Requests dangerous framework permissions
| Description | Indicator | Process | Target |
| Allows an application to read from external storage. | android.permission.READ_EXTERNAL_STORAGE | N/A | N/A |
| Allows an application to write to external storage. | android.permission.WRITE_EXTERNAL_STORAGE | N/A | N/A |
| Allows an application to record audio. | android.permission.RECORD_AUDIO | N/A | N/A |
| Allows an application to request installing packages. | android.permission.REQUEST_INSTALL_PACKAGES | N/A | N/A |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows an application to write to external storage. | android.permission.WRITE_EXTERNAL_STORAGE | N/A | N/A |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. | android.permission.READ_PHONE_STATE | N/A | N/A |
| Allows an app to access approximate location. | android.permission.ACCESS_COARSE_LOCATION | N/A | N/A |
| Allows an app to access precise location. | android.permission.ACCESS_FINE_LOCATION | N/A | N/A |
| Allows an application to write to external storage. | android.permission.WRITE_EXTERNAL_STORAGE | N/A | N/A |
| Allows an application to request installing packages. | android.permission.REQUEST_INSTALL_PACKAGES | N/A | N/A |
Uses Crypto APIs (Might try to encrypt user data)
| Description | Indicator | Process | Target |
| Framework API call | javax.crypto.Cipher.doFinal | N/A | N/A |
Processes
cn.ikanys.xxys.classic
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp | |
| GB | 142.250.187.238:443 | tcp | |
| US | 1.1.1.1:53 | android.apis.google.com | udp |
| GB | 142.250.187.206:443 | android.apis.google.com | tcp |
| US | 1.1.1.1:53 | ssl.google-analytics.com | udp |
| GB | 142.250.200.8:443 | ssl.google-analytics.com | tcp |
| US | 1.1.1.1:53 | yssc.zhihu66.com | udp |
| US | 1.1.1.1:53 | sdk.linfutong.com | udp |
| HK | 119.28.94.183:443 | sdk.linfutong.com | tcp |
| GB | 172.217.169.68:443 | tcp | |
| GB | 172.217.169.68:443 | tcp |
Files
/data/user/0/cn.ikanys.xxys.classic/.jiagu/libjiagu.so
| MD5 | 610a895c4a71bbeeaea16eddb1422bbf |
| SHA1 | 9f919de42ed1e80bfadfef48f8202b202166f869 |
| SHA256 | baa349e9b5a47be21b6ea00ef2e0c0c5dc203c0e4c391dac46df07ca9d333217 |
| SHA512 | ef4173ba32309ef1257b75bcff28fd44ab14398577b4fb3b6b95323035c964201ed39546cda3b7115ba5025781f3b9c018443e7932edd50a25b1be60359f80f2 |
/data/user/0/cn.ikanys.xxys.classic/.jiagu/classes.dex
| MD5 | 511d637dfb0cf1b8faf811ebd2b2e946 |
| SHA1 | c0cacae292e5d40265441ecdefa0188f00371da1 |
| SHA256 | 56208fb4e6278706d60108a9b31678aa5a452fb4211aef910339de0e01464bd8 |
| SHA512 | 78ad56d4c353aee2f8249986dd89f09094e1b3a664c877312f52b49a9335fc50bee6e60a6c214e298e641e29f70e91ece2a887267119eb738d86ced2627528d6 |
/data/user/0/cn.ikanys.xxys.classic/.jiagu/classes.dex!classes2.dex
| MD5 | 81def0b46e11c761e55b9a12fbd08fe4 |
| SHA1 | fa2d50302b5422e2f6750906cf08d999687ca566 |
| SHA256 | 1bf827a9de78c2481dae56ebe442b5bcc3f4d1191142a9d65c1c28fb71301139 |
| SHA512 | 20f71d40076830f83679846370913b9b2abee5689c6ad9f0de9dcc33b55891af1805b69c392fcc61c89a99ea0f59b14e4f0082874be470c0e90ba8e29d09bbb2 |
/data/data/cn.ikanys.xxys.classic/files/.jglogs/.jg.ri
| MD5 | 28569a0475ade05560f675f589a6bbea |
| SHA1 | 0e8f6cea831b905b76e2559d0929e3c64948acfc |
| SHA256 | abed566e789b8dbe30904a8a662df5463f9bc975cf22af354c35d391a3e8287b |
| SHA512 | d665fae640c83d7c14a7550fc3a927fb7fdf3922d24f493fd1e7b021f22199dfe6770509f575b7a568c036afdcbb393d9192e3680fe18055bdab00e85fbd497b |
/data/data/cn.ikanys.xxys.classic/files/.jglogs/.jg.store.report_cf
| MD5 | c7b4ccd24607cbd20f4cdeba92b03674 |
| SHA1 | 07109ada50264ef6ea0dc53cc652727c0a5fbd32 |
| SHA256 | b3cc0b62d0e50264909a08b85876a862bd6e38edc487d1f60c5fad1a378ef111 |
| SHA512 | 454818ff6bf840926b20179b982dc2e7ab46f434571ecfa4d50958f7d39a6fa53879d9e84f2cabb690df77544d0a5cd0385f38057046b39f84cf4f93b4b76f31 |
/data/data/cn.ikanys.xxys.classic/files/.jglogs/.jg.store.report_pid
| MD5 | dfc09b22fdb29d96b7b37440972e4b8e |
| SHA1 | e42cbd7ab5010dda1f5232e1ff19bc07babcdd0f |
| SHA256 | 31161c33997b7c256fab1c3c0eddc6731ca5171a5ee727b23f1d3aa4056502ae |
| SHA512 | 0e5a374704caac5706cf587bb05a3cfe2deeb333573925f664962497f3517b38f1a2528db96538d960e3fc4be1515d33f0531b500875bf8f1da5b0067bf4be04 |
/data/user/0/cn.ikanys.xxys.classic/cache/hook/classes.dex
| MD5 | 44f765aefc9d6c152f8f888c24518c3f |
| SHA1 | 73a9cc8d2cb377304ce04798cf35eb0a8c419b14 |
| SHA256 | 9784af86964225257822406d941668333e22b107521c685becee2bc998cff0e0 |
| SHA512 | 39211a118c9ad604b522eb8b2681eea34f79366cb8e2181d2a4ec1dd8fb30088b448b8b2ce2a44ecd1dda46bd5acc62984911aa0001ff513d29c13bece4ef446 |
/data/user/0/cn.ikanys.xxys.classic/files/2f924818/3435298154.apk
| MD5 | 4ac75a602439303349886ce5e54c0814 |
| SHA1 | 54ab1163bd17e18a0db4923a2b5b1f3e86ce7956 |
| SHA256 | 744219a634d540b19f061f369f05ebcb43a8051e7de38187596b2c5f2c85ecd6 |
| SHA512 | c851506e70a0ee04533381bcc2c58b7216e634bb6ce5ed580171b5e42eed2299e07f2252e759186e712c14e0c8e8567f0b9a789ff1485174eb312d563734e365 |
/data/user/0/cn.ikanys.xxys.classic/databases/okgo.db-journal
| MD5 | 35449582e452b7002ebcf8d93745c24a |
| SHA1 | 7fc9156a979db16b9f01242feee68cca73e2be67 |
| SHA256 | bf4bf1a2e87de4466a8d5bbe30c45e341ba6267872db04196c6105aae94a07b2 |
| SHA512 | 8c111338360721c2e824cbba332a6e9a3d27483bfae52dc86fb1103ae18f8e585b6d1c46b7446478a753304f252d5fd63f664b494463644c8347a2bc41c8c310 |
/data/user/0/cn.ikanys.xxys.classic/databases/okgo.db
| MD5 | 3bc8cc97ac8782c9a6c5803a913e2601 |
| SHA1 | d204ddd1ed918ec12c742f451461f1e28911dcda |
| SHA256 | 403bbc202c5ce2b61366582e4f665ff1cee445d4833098b6f7cdf6a8b9bd7b58 |
| SHA512 | 863bec58c28b8e353fbc6aaa6d0e680738e8080b5ab7b3a962759e4e53373d0f8a8f314e9148cd6cccdb3efdf14223c97848d349bbf31a529c3171f3d6cdf527 |
/data/user/0/cn.ikanys.xxys.classic/databases/okgo.db-journal
| MD5 | 36dad8a256ec54a067577d820a1487aa |
| SHA1 | f39a597980dc3a5dfe6d3c5f09a63ced859bdf51 |
| SHA256 | 393863b99bc4a5d4d51fb23deea56458e0e48a9665207bf35ba4db770aa21c7c |
| SHA512 | 85a41e06949a20aa94081131faf166e4f3f032fabad91bc53e5deeb1877cbdbe0106099a7fbaa82aac70259c4839d9faec5c9bc51aa1ae727038da6fa0d089f2 |
/data/user/0/cn.ikanys.xxys.classic/databases/okgo.db-journal
| MD5 | 1c28e925e7caecb27d0e44361d23b9c4 |
| SHA1 | 0b336d53a66b107395c69177330b1a41fad5f4df |
| SHA256 | 58b64a44878ba010d94e4466b5617e479a02663368f059ca9504a92130f16437 |
| SHA512 | f28c58d5d066abe461c5ccf5530f6c1ac3f6aa9915651788628c84ca0ab79e2d6fbb3e21f34b65c673ab8e4a79ee600eb57e5bb4ed7e1d553e40e005401ff35d |
/data/user/0/cn.ikanys.xxys.classic/app_crashrecord/1004
| MD5 | dce3605467e1c8f01c0fbf0f2247c657 |
| SHA1 | 52c8412e2a1f6ab74bc4ffa3e4325e6750a8f4ba |
| SHA256 | f886961ad90f37eee56b0b9cf640233bed49090ffaca621bccf4c8a563cbda69 |
| SHA512 | 8b9c05bc5f54d804643e9f2d2d7bf66ec0599c51db1c4a6833f0e442dd57656434b7ca39a8f282395b9082ab8d123065b6a660f1dfbe5bb8d6339c4652de51e9 |
/data/user/0/cn.ikanys.xxys.classic/databases/bugly_db_-journal
| MD5 | dfc679a995c6f5a0af84d6fe705dc53f |
| SHA1 | a133ccf4e94fa77f012871c82c5591d655c3ce3c |
| SHA256 | 17266abd70ede9573bf1252da95bab90acbb10c5f99efaefa26f27803e56fd15 |
| SHA512 | a86e6793d21b47b96861e62438fc1480a4389e769da6b6759112b7212b99b6f24cd596d3b2e195ff55ca317a624a6e6af60196808d7f35b4ddff91ab1bec0571 |
/data/user/0/cn.ikanys.xxys.classic/databases/bugly_db_
| MD5 | ec78a9547030062f0f41a2f5168beda1 |
| SHA1 | ca02a6cadac96f1fa0442fb406b02520c0bcc32f |
| SHA256 | 7ae3b9a5f3ef9dc5e31a0130024b61d5c0dfad4f3443e7c80d586361a2ec9f3f |
| SHA512 | abef1f90ea6ca7587d4117e706e98b6c79b9cd02bf064f4f7b221ee5ae976e445ce8334713a30544600ebef601f6c836d7dcd4883dc7652ade6e036b4194065d |
/data/user/0/cn.ikanys.xxys.classic/databases/bugly_db_-journal
| MD5 | d1dc19fa5d95277440a72e91d5021144 |
| SHA1 | ae39ecc248c1677f213edcab6440e834e939305b |
| SHA256 | 5003b9c3b644d44f571bcdd82455ba4f7803d01de71a6d52c932bc96e6ec164f |
| SHA512 | 77f67c03b07fecdc9e047eab2661fb34b2a58f357ff837f7a9653f8bbc46eec44244476b207d4e0f65fb07f0bc85b67ae67a6e215acd4d04b07fc48743156257 |
/data/user/0/cn.ikanys.xxys.classic/app_crashrecord/1004
| MD5 | 0d210bfb2a0e1f1b4c082a6a0f79de07 |
| SHA1 | bb8ed9e364db79d1d9f2fcde3f15091893222faa |
| SHA256 | 988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d |
| SHA512 | 536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1 |
/data/user/0/cn.ikanys.xxys.classic/databases/bugly_db_-journal
| MD5 | cc9fcd697f450ad19311c9276e80a846 |
| SHA1 | 6485baebcee07839e408db378c132664ef88c66e |
| SHA256 | ee8e8eb9124ec7e3eba6a81aa5a675e22da394533c5ffc766218483883e28ec5 |
| SHA512 | 7ba36ad5501d7abcb0d6534804c9dade711a0c19531be2f1a37c31d707365bfddff040303acdcff7ebecee663b2c8e69f3a532aab2fd8fe00ab932c2a3bc8bd1 |
/data/data/cn.ikanys.xxys.classic/files/.jglogs/.jg.ac
| MD5 | 704f980c2423ce9ae6dad2d8a0c2cc67 |
| SHA1 | 993c0e51078fdbbcf746d765d3ed76e0b7be5fe6 |
| SHA256 | 8e9b34623cc3679b1d447cf7d8da56fc1ad04840a49bedce10af5f8e480ffcc4 |
| SHA512 | 75527002f41cf3d336b94f891651229336e21da82eb71596ba73cdcaf3418fd1520343d2ac5853c5dae8b8486bf7f94af8be5cb33c2cb4f623ed6c43b9c74671 |
/data/user/0/cn.ikanys.xxys.classic/databases/bugly_db_-journal
| MD5 | 1d8fd5e9d60013e1fc5c9fa5e24fc8aa |
| SHA1 | 92dedb8640a1b496b4e9438560e1baa3146fedbc |
| SHA256 | 894924de55bc33a0935b16fb5b07df347e912094715cdf1b38b31a1c99939ae5 |
| SHA512 | 13a6b889e50283a5bbc47cef8eb30ce1f2358c5f57a29c653a523c2e37cfbbb8a7f09769224d243c3cba6d0d17c04b241b3d17d02713b00c854e141991f4f3ce |
/storage/emulated/0/Android/data/cn.ikanys.xxys.classic/files/tbslog/tbslog.txt (deleted)
| MD5 | 2e93132ea2d232c68bea1a814d28aeeb |
| SHA1 | 035734ed6b51541541f60855a1d53176e181390d |
| SHA256 | b542c3bf3b0dc14794619114324aa2f01b2793bf637de2cf0915790ac56c88da |
| SHA512 | 12e6ae9cbb4228d36c90c172791e1112a86ea8b8976d3a3ebca94a7fb8d57aaf92f263fb748b052c4cf15ff250f8da20ca180d81996b14b2bd76afcdedb718d9 |
/data/user/0/cn.ikanys.xxys.classic/databases/B_VIDEO_PLAYER.db-journal
| MD5 | acacfb587c037f52593ced6b1f22ac16 |
| SHA1 | 9c01217a9e4cbb439b9fcdf43572c0c2db55f2df |
| SHA256 | 48ad7226e173481aa79ffef836deceb75b38c50dc066ea0f3a93f346e943a14f |
| SHA512 | d82a5d4f71f039aa54ea8e7af64f2effeed23a2f73139f3ac1f242f98ddbe7f86681a10d77f25e93bb86a09decb613178b1975a0bef65b440b64da1d3cd8bedd |
/data/user/0/cn.ikanys.xxys.classic/databases/B_VIDEO_PLAYER.db
| MD5 | 6145360e04265400ed800d742a895927 |
| SHA1 | 7a1cb53cd28c22fcebf2b66aeb482471b3953f4e |
| SHA256 | 983d0b65853ea0ccee4691b8d022a2c393e5528e35c3af093e98dc42d6f331ec |
| SHA512 | 376be433a28c838e8bbc96eec6e7e200cb822b33078d18591cd03f87e6ce4e3943d72b272abf37bd33d924dfe3de1f5bd1cdb0ad11b9db62261655d3c50228cd |
/data/user/0/cn.ikanys.xxys.classic/databases/B_VIDEO_PLAYER.db-journal
| MD5 | ce6442bbf1d20129677548c8150de1d0 |
| SHA1 | 39a015ea7c3b9c5f7b5f3fb1aafdda8cb59bd7f9 |
| SHA256 | 7af66b6b3e253e2c159a6029515f10ca7bfd84ccf3253552e7d7a57ca7a75aa8 |
| SHA512 | 5c24858f61433ee301cf08d765850f1dc4bb3b99da77714ecbb514242b2756aedb05a075e8a7a875f979666cca7511d46efa57cd42b0bef7168e97ef371a5d81 |
/data/user/0/cn.ikanys.xxys.classic/databases/B_VIDEO_PLAYER.db-journal
| MD5 | 4a8c647d58d54ce601403ff8e90e0b8c |
| SHA1 | 339b5d01c30ef7997cd6f8e3daaf58e40d96ba6c |
| SHA256 | e04c00ac490df2b448e8f637a79649e4a013c767517d650e48d6374d0a8f67d0 |
| SHA512 | 3d703eaea9869a09f553ea80d79293847c0ea6b1b7cdcf7333750e8bc4c1088eb69fc2b5ce00c7d74cdccf51c6dcf656db58df235d92f9e423d37c350200cd0c |
/data/user/0/cn.ikanys.xxys.classic/databases/bugly_db_-journal
| MD5 | 4ff1dbcea71ca42b77e28633b6e9bc1a |
| SHA1 | bf007c4737d1be3563d08f1bda89c371d61e304f |
| SHA256 | f0ebd111ce267f6aa3cc1265162192c13ea1d6c432819c41d0a393c28b21d4c0 |
| SHA512 | 251479792c52d8b79247a8c790e78bddc1adf11cd338c0bf1bc9444201ce8a0b2a8123a2dea0e700005574a0bdbe6da1197cc287f31392c3593782c058efca1d |
/data/data/cn.ikanys.xxys.classic/databases/ua.db-journal
| MD5 | c3f6cc97187255a5c8a6fee19ba27113 |
| SHA1 | b67675ce3ddb76f587f73f465da499c042828765 |
| SHA256 | 1aaa8be8e761e3cdcdcaba26d357e600d78b9bb141e507961e00f5d7d43cafc0 |
| SHA512 | f2424e00aa49435c68bac387d2ceb0f726a6f7927106c071b39e31c83c059e3236982e1110c12ef34e8046337c23ee800bc7527dccc6a71faf4444fd6d3b6276 |
/data/data/cn.ikanys.xxys.classic/databases/ua.db
| MD5 | 171aedf968e17a2744d2585715606cb9 |
| SHA1 | bbeddeb3b89fcf809619c35b4a318a80e7d5b029 |
| SHA256 | d2ab452d9360848f46af866b870b5c6fc98230b09c72b89cb1a4b2778586678e |
| SHA512 | 78a0f517ee3d21c153dda6dbfec4187ebaee9d520d7b1b63f358bcb125d08aea53f26943907a56fdeba40161d9fc7e4fd63f9ae3154dd2ad887ba0162738285b |
/data/data/cn.ikanys.xxys.classic/databases/ua.db-journal
| MD5 | 715355a2f0b21b020c2d272850822568 |
| SHA1 | 5672d03b71d2abeca7c2126d87542fe9cd746e7f |
| SHA256 | 0a89746598d151a29942b355ccf2c245054497b7929aea8761c32b024138335b |
| SHA512 | 279cc1b210fcfcc0151f204cd1a18a805724303a39a786520152ec8204560ffdc32dc21a7c6b2fcd06824bf2c1763ca5793a14868e227915a5a3c82cbd2d5ff5 |
/data/data/cn.ikanys.xxys.classic/databases/ua.db-journal
| MD5 | 579e81c768be0c8d1884c438e93b5571 |
| SHA1 | 2967e04561980ed05416907758e88f57d7bc2ce2 |
| SHA256 | 9ff61feffa3a31e5dd445bd3c3a6ceb2a2ef6432f1eabd1863ec3039ed5792f4 |
| SHA512 | 28ad6f93b00f1be0b75de2c816b54eb5fd9cc59f89ca18544b61fb37abcbceb0ed8a580a00c992789e22e2c0ed31029c820ac42adf16bebaf1999d3156186664 |
Analysis: behavioral3
Detonation Overview
Submitted
2024-06-06 04:38
Reported
2024-06-06 04:44
Platform
android-x86-arm-20240603-en
Max time network
7s
Command Line
Signatures
Processes
Network
| Country | Destination | Domain | Proto |
| N/A | 224.0.0.251:5353 | udp |