Analysis

  • max time kernel
    10s
  • max time network
    140s
  • platform
    android_x64
  • resource
    android-x64-arm64-20240611-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240611-enlocale:en-usos:android-11-x64system
  • submitted
    11-06-2024 17:09

General

  • Target

    9eee67e5bb96837a5a3a2025e49e5715_JaffaCakes118.apk

  • Size

    14.2MB

  • MD5

    9eee67e5bb96837a5a3a2025e49e5715

  • SHA1

    77508361161dfae236a72407b060eb7d4a94dcd9

  • SHA256

    e77c710c9228793bba49a7788968c404d711a1b21997fe4f46393e9c0304667c

  • SHA512

    9d7f1db2febd5f11f94b7cd4ffed7b6efacd2adf900c9fb71820d6dd8cc795fe0f4bc8d239dff29335d0574b4d5c240246764bd1d6c35f412ef455582b8f8db1

  • SSDEEP

    393216:zPbo/8FuuPposOWp8OkNaGHGOTYi92YDKEM/FQZ6eZ:zPbrr+shHvGmOj2PJO6eZ

Score
8/10

Malware Config

Signatures

Processes

  • im.xinda.youdu
    1⤵
    • Checks if the Android device is rooted.
    • Checks memory information
    PID:4402

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/im.xinda.youdu/app_bugly/rqd_record.eup

    Filesize

    908B

    MD5

    b3500d86fa4d3f2bb1a4ebc5f29d07c2

    SHA1

    5eef64d259b5818e8ed1a93cee3520ed2e9bd976

    SHA256

    166cc7709eab1e085b9e879e89968e4823244601b4176cce0dd6c657ae39a9af

    SHA512

    3ea8a5a8fe36807ac37ec47eea722eea070a9ebdfc6de60882cc9793cbb4b16e5dfc986f311d96b92be0a5a7aa7cc326885e4528eb26cc3235c30a62a8ac797d

  • /data/user/0/im.xinda.youdu/app_bugly/rqd_record.eup

    Filesize

    1KB

    MD5

    abb75604ff62f1afe91601af5b501466

    SHA1

    ebfded699c9a230177953ceb9a1cb7cb4117bfe1

    SHA256

    d8eeeba3c883ba45481f3aa6beca9d6d3d311ccb38d18526db434e2eccfc9f6c

    SHA512

    2da5b483ac587ec10752fd50a735674f78b3c0c2d02210c9ab7c8871573137c197c10132422c30414fdbd04cabbd9c409116849d798826c00e02ad0ff4891ebc

  • /data/user/0/im.xinda.youdu/app_bugly/tomb_1718125809509.txt

    Filesize

    25KB

    MD5

    7f76c7869448c20433688e0ef3762390

    SHA1

    4164302f73af89a0fb73e1c73e3b5d92eb0182cd

    SHA256

    d7a0148ac73e6fc56ff1a75096a144c25b9a5cce46d7a665542b812d13e9d97f

    SHA512

    8f92f9630d7611c9e2f9fe6c4130f107227903c87bc56ca250770d2ad0e20e87e6da6ffd325a3a2b3fa3d47364ac27801f81645a57a3895eb9aa8212a4743e61

  • /data/user/0/im.xinda.youdu/cache/tomb.zip

    Filesize

    5KB

    MD5

    0f867b02e6edc3cd0672274b4b6b227c

    SHA1

    05b8d0b4923ecd1f34c96f2b9837053bfe452879

    SHA256

    11cffa4d4fbaab3b0e155d68762dce6f0e43ed6a7d12eda9cc3fde29f2c4fe94

    SHA512

    3a44a472eb968b27396db6e4b4896643f0cf5ebef45942186dcdc9ca876dd1e1463f4046738ac8b9bcd54eadc9c888ed21d24db5ff1c028d60d8733150609a9a

  • /data/user/0/im.xinda.youdu/databases/bugly_db_legu

    Filesize

    168KB

    MD5

    c2cdb6146e4e7de762f63ad7897ee209

    SHA1

    e2d768918e68cec73169feff7dcb92d8d2d61c00

    SHA256

    88759bc50db37fcbc2bea7fcb70f70adbe7478d97c4570ec7ca0e1e0910cb79f

    SHA512

    64dea56b3d9c7b598e0a25071ab3ae13f55a1a141e033b26f4e4b49a4adf6000fb96735cd76da4c3fc2163399f73ae67dbd96cfbe2a7d9bb5f4bc1120f17e398

  • /data/user/0/im.xinda.youdu/databases/bugly_db_legu-journal

    Filesize

    12KB

    MD5

    3de56f305b1d2129728afc083b93ba49

    SHA1

    300cb883cab266527f86152cf24903bd8a05ef66

    SHA256

    e613cfdff5486a5a02d95729736da3eab52276ce78e14212cf132c588351364e

    SHA512

    5e01e45b41508a632c84b73c9118e3440e7c01d837119f3ca763f17c2b8e6e79a1458488763e1b2d8f3fbc0c82cc1db9d4469235333477906ca217ca3558dd3f

  • /data/user/0/im.xinda.youdu/databases/bugly_db_legu-journal

    Filesize

    512B

    MD5

    8480708c6a9ff35c1e5bd48ba3139211

    SHA1

    29f8e1731ba7cac5507e7403a8cec068ec4acf0f

    SHA256

    e2618545ad8baf99df8608ee5d998b1e9c7a71cb11eb860cb01e12c4ac41856d

    SHA512

    c526ff3137b61edda5b9e642c483182eb280c505d60ff15a223f66615ae94e54660d1b9af41f8bd9ec75901ad3894be850dfb8f7d6d4938834d40c152469c605

  • /data/user/0/im.xinda.youdu/databases/bugly_db_legu-journal

    Filesize

    8KB

    MD5

    1468de241f12994a50fa115d6c9c4ff2

    SHA1

    a58d9be088c3f6a1c084b2dacba03a8d69e8e357

    SHA256

    daac821a6f167c1a9600a2ecf9eb12bf644920ccefb6bae8ee75fddff7dbc487

    SHA512

    be11979ebe5911fa3ae7374a806ba6944af506d9b2f573d58dc0e8651235da71b5527d59637c685ccce5ed60cd97465b6f0eca5f830ef40f2713927e25c1ab7c

  • /data/user/0/im.xinda.youdu/databases/bugly_db_legu-journal

    Filesize

    8KB

    MD5

    5d6663443802a815c427c2736b0d3e30

    SHA1

    a207e0985e7e3b7b2e8c28aad6d684d53cce72fd

    SHA256

    b3daed0deeb00ce82e9070f41771c3bc69239b054671aaaf42aee3cf4d3a8de2

    SHA512

    47474a7a8ebeac9c01f4ede166a8e22a942382a250724830985ce3ed388423c8bebea3ab77d910fd37d15fa90740b6ecad1a4e1a983d79a3d266c0d40f342219

  • /data/user/0/im.xinda.youdu/databases/bugly_db_legu-journal

    Filesize

    8KB

    MD5

    d770658f328cde75efc63d3cd37d9b2c

    SHA1

    6cb2b7213f4802651eea4b8be95b326249653e92

    SHA256

    706778a35a900ef2aa801267af0a4621ff40ea93bd291cffff58438848e39e20

    SHA512

    9031d13a334efa6d5f9d1aa1477a2b9f15f136f0496085b12e165de0a2cfb82926f680a3f00bc837d357f8ab5e68a735210fb885a1ff81e20a83460e2d9b3786

  • /data/user/0/im.xinda.youdu/databases/bugly_db_legu-journal

    Filesize

    12KB

    MD5

    324c48dd73d1a7307083fe81449e638b

    SHA1

    b585fc64e6d49cf7841e8904333bf7147a45f72f

    SHA256

    4f595add3d25f0925baf3cccb8b4b72294f9a587e83bbcbaf944bf2355e8a7db

    SHA512

    d8a352bcbab8f4ab157288151cb36e43ac1ec97e89d1b78027d386d1938ab4639787954616d53e5d5c637088587f1d76e54af49a19a666fae7a4f80d9517401e