Malware Analysis Report

2024-09-09 17:42

Sample ID 240613-3xl7kswenh
Target a731983bfde59cefbff7357ecde1ae9b_JaffaCakes118
SHA256 656f8fe17922ebc69731273f9671580a500c8c51f78b3b95d9db214fa6bcf5fa
Tags
discovery evasion impact persistence
score
7/10

Table of Contents

Analysis Overview

MITRE ATT&CK Matrix

Analysis: static1

Detonation Overview

Signatures

Analysis: behavioral1

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral2

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral3

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis: behavioral4

Detonation Overview

Command Line

Signatures

Processes

Network

Files

Analysis Overview

score
7/10

SHA256

656f8fe17922ebc69731273f9671580a500c8c51f78b3b95d9db214fa6bcf5fa

Threat Level: Shows suspicious behavior

The file a731983bfde59cefbff7357ecde1ae9b_JaffaCakes118 was found to be: Shows suspicious behavior.

Malicious Activity Summary

discovery evasion impact persistence

Loads dropped Dex/Jar

Queries information about running processes on the device

Queries the unique device ID (IMEI, MEID, IMSI)

Requests dangerous framework permissions

Acquires the wake lock

Queries information about active data network

Queries information about the current Wi-Fi connection

Registers a broadcast receiver at runtime (usually for listening for system events)

Uses Crypto APIs (Might try to encrypt user data)

MITRE ATT&CK Matrix

N/A

Analysis: static1

Detonation Overview

Reported

2024-06-13 23:53

Signatures

Requests dangerous framework permissions

Description Indicator Process Target
Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE N/A N/A
Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE N/A N/A
Allows an application to read or write the system settings. android.permission.WRITE_SETTINGS N/A N/A
Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION N/A N/A
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE N/A N/A
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. android.permission.SYSTEM_ALERT_WINDOW N/A N/A
Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION N/A N/A

Analysis: behavioral1

Detonation Overview

Submitted

2024-06-13 23:53

Reported

2024-06-13 23:56

Platform

android-x86-arm-20240611.1-en

Max time kernel

25s

Max time network

137s

Command Line

com.xinxiu.pintu

Signatures

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.xinxiu.pintu/app_mimo/mimo_download.apk N/A N/A
N/A /data/user/0/com.xinxiu.pintu/app_mimo/mimo_download.apk N/A N/A
N/A /data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk N/A N/A
N/A /data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk N/A N/A
N/A /data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries the unique device ID (IMEI, MEID, IMSI)

discovery

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

com.xinxiu.pintu

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.xinxiu.pintu/app_mimo/mimo_download.apk --output-vdex-fd=103 --oat-fd=104 --oat-location=/data/user/0/com.xinxiu.pintu/app_mimo/oat/x86/mimo_download.odex --compiler-filter=quicken --class-loader-context=&

/system/bin/dex2oat --instruction-set=x86 --instruction-set-features=ssse3,-sse4.1,-sse4.2,-avx,-avx2,-popcnt --runtime-arg -Xhidden-api-checks --runtime-arg -Xrelocate --boot-image=/system/framework/boot.art --runtime-arg -Xms64m --runtime-arg -Xmx512m --instruction-set-variant=x86 --instruction-set-features=default --inline-max-code-units=0 --compact-dex-level=none --dex-file=/data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk --output-vdex-fd=104 --oat-fd=106 --oat-location=/data/user/0/com.xinxiu.pintu/app_analytics/oat/x86/analytics.odex --compiler-filter=quicken --class-loader-context=&

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 www.baidu.com udp
HK 103.235.47.103:80 www.baidu.com tcp
US 1.1.1.1:53 zeus.ad.xiaomi.com udp
US 1.1.1.1:53 api.github.com udp
US 1.1.1.1:53 share.weiyun.com udp
GB 20.26.156.210:443 api.github.com tcp
NL 20.47.97.231:443 zeus.ad.xiaomi.com tcp
HK 43.159.233.95:443 share.weiyun.com tcp
US 1.1.1.1:53 file.market.xiaomi.com udp
GB 2.19.117.85:80 file.market.xiaomi.com tcp
GB 142.250.187.206:443 tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.179.238:443 android.apis.google.com tcp
GB 2.19.117.85:443 file.market.xiaomi.com tcp
US 1.1.1.1:53 sdkconfig.ad.xiaomi.com udp
NL 20.33.39.105:443 sdkconfig.ad.xiaomi.com tcp
US 1.1.1.1:53 f5.market.xiaomi.com udp
US 152.199.21.175:443 f5.market.xiaomi.com tcp
US 1.1.1.1:53 f4.market.xiaomi.com udp
US 152.199.21.175:443 f4.market.xiaomi.com tcp
US 1.1.1.1:53 sdkconfig.ad.intl.xiaomi.com udp
NL 20.33.39.105:443 sdkconfig.ad.intl.xiaomi.com tcp
NL 20.33.39.105:443 sdkconfig.ad.intl.xiaomi.com tcp
NL 20.33.39.105:443 sdkconfig.ad.intl.xiaomi.com tcp
US 1.1.1.1:53 diagnosis.ad.intl.xiaomi.com udp
GB 216.58.212.202:443 tcp

Files

/data/data/com.xinxiu.pintu/files/libcuid.so

MD5 e6c076c756478c9f0391d953317322a5
SHA1 e388b69fa20820a0ff9bc44cafbe5164ca0f145f
SHA256 1e42e9631d9eabd248528c7d71e032450f77e474427a1c0ed2c53f2e6d42ce5b
SHA512 adff599c015cba89c012c4fd8d1577b9d3e0549fabe808371a3cc32f9b6fc18cfcee38d65faeb0b2ae18df7a3440e99c4488535fc79f7880c97161254756f24e

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/journal.tmp

MD5 8c92de9ce46d41a22f3b20f77404cc1d
SHA1 8671a6dca00edb72be47363a7071be65cf270373
SHA256 68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274
SHA512 30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/journal

MD5 82b7faec8655507ac74895b3d063b277
SHA1 96ffaf7a7fb34cba05beebe476d644b65aee8e4f
SHA256 42dbb3f98e8f51d3e26e4484deca4466cea676fce195ba9772661292c6d9b498
SHA512 0b3ceda4cceccae5bc875c03429ad058f0aab124b74f27023f29e9935f5f07db530d00b92a1d10cc1562ff8fe73490beb462406bbd1d406a41f4cb03bdaa50e2

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/d954831f74540359cda8057b10d581ed0603edd3d9b159830b0e483971467ea2.0.tmp

MD5 ceb5471e95a10e23145582ebd8d7e699
SHA1 0782e26e388b2668948494c928d71fb5384a3fc5
SHA256 205dac331496b5dca1012591ccbada9e33165dbfd2c0f0ae3112a1fc7809a79f
SHA512 df16e118a7027a56ab7a5c4c9a39c51d2f71189c02978619446450d20c86eced62bb41c031bc86538d02dc367bf37977c4e13feebd6326d773147922288f9b2e

/data/data/com.xinxiu.pintu/no_backup/com.google.InstanceId.properties

MD5 7e34aa8a2f0bed152576c6915b7ec86b
SHA1 e73a5ceda1a44bcefbc8b60d767d7db96542d916
SHA256 b1265aa4fdeeeb40fb00d3569240cc52c4c3eef7b97caaf4a0421a823b73833a
SHA512 710ae88da5bd26a89f036b4b22f407812a69c1ce21f1422d3bfcaddfc34aaa6a016c9c258acb940a88bc0c9904c228431019732d7f47dfcd9e9d9f21dd067145

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/1e6ac2b06a3a3103f1ed39ce62de7a07014a72fb34aff2993380d2c10ccbba1b.0.tmp

MD5 a102164baca577b22c5ff2e4ca38b272
SHA1 cbe05b0fb354824332a32f20377ed2d02f883589
SHA256 e86741f411e3b980c62e0000b7af39078c0ce7a75879ab40b5113718a75c83c1
SHA512 b00f58057a721e96437bf5512426a5490eca03110924f2c063e999c9f969704ba8bd6200efa74b7b8bef1f8f8b2b235d05f8b6a0b48dee91390bbd91d7bae45e

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/81c6ec67331ebc58c34620fc28052c33484cc896591772c4eecd53961e6b217f.0.tmp

MD5 628099248aeba8aafd9dea3d7aa4cccd
SHA1 26dad76a5a35adb35bb632a27c95770089d3cbd9
SHA256 4e4e90d02b82e9a75e257bc4d9775e1ae8dd57e080ac5400b0e826b27ffa4063
SHA512 1ddf53cb28fcd6026b221bb5228d4c550b24ccd419570589966fd8ade8bbbb7cc07437b509e83719bd560d6f775c97720440be564842344fc5239f190d82f266

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/1090206adb69ea1a09691f1deb8d42da75d98d50fa46f853c88f51419f1ba8a4.0.tmp

MD5 1fe97d54964afdc7dd362c6ce3857c3f
SHA1 4bf7408cb64ec5428bd3ec60b9c6ac88c363757c
SHA256 c788d6a70685a448c0b7fd943adf16ee35c82e3227e6dc117dacdc35efccfdfa
SHA512 1220cee30987bbc7e15e221a1e7133f9286c0634e21fdfe0f9d646ddf425e1ed4f871969c334097f1100a3aab7f12aeed72036908cefb5141859e714408b2e4c

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 3ae052c03bf92008ae97712225418c92
SHA1 eb5c230bceee2a3ae751cd2d6c1d1d9fd6d3565e
SHA256 4e08d0db5d6a9683effd743369bbc3058218b3e204d4bccdb11864b16b87e775
SHA512 29e949015e890ad5165780ac8cd1563b6be7bd616c817df4d57b47557ef2ab56731e83e749e6ee1bed1c437abd6154bdbf152d6677dc8b47f149c3ca8faf1710

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 49efd569659f9bf1d2565bfee8afdaa6
SHA1 4b444edf9c98ccdd67cbfa7f594a5a93bf88fc04
SHA256 058aee492ff6060386e7f042d6ba081b01d11fc32003e800203127dee7756278
SHA512 cc25279b20bcd2453497f232f4a8cb25e0d1bd97f1fa553b4d803f74131b4c660a4903e214807b7c89def736debec6550f9f6173c19188b900c45d3225906863

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-shm

MD5 bb7df04e1b0a2570657527a7e108ae23
SHA1 5188431849b4613152fd7bdba6a3ff0a4fd6424b
SHA256 c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479
SHA512 768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-wal

MD5 33da8ad63847192e39c05ce77f60698c
SHA1 2f174544c663146010d3c28db327792bb43f53d4
SHA256 85d08e6b0ae95c2683b0bb3e0f1cf9c9b68cff5e54f867b965dfc084da47d531
SHA512 8dfbb48571f7ea317512ef94d867cc90bfa31d6031c0bf9d085c3031c750478cbfd231b26dbfbc5bfa491efa983ec9b017fe0cde047b8da7123f93a1811d3f03

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-wal

MD5 81545cc33d420e5465d0b05815d94576
SHA1 6d8fa06f7dfb91657fcad2351fd0586d6e11e298
SHA256 f7fee841bfa9089e8e43766a126054ae31c6a7c28bbffe6210cc19458ca2f4f4
SHA512 bfe46678c4c257f5227ba9214cc4ffecbf3e3206286329474cde704cbe47f25def8eb8da5174d58250a70590df8a88074d6570b001c9f14f8ec81e1a445b1d1f

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 6b63b92f6d4ec960961ab1deba76d015
SHA1 bf6ffccf76f70b897c1a6cb46d129418190f509d
SHA256 a16377ad9b4b59218937f24a93699b9a7cc2409814ad71504ffb45c59fc699c9
SHA512 43e6e2290c76065c77021b625e5f31d41df9f98b2efec0db7e363c7b34bbbeccff92699465c899a34400ddd1195d67f580e4f0eb92479defdaebe4ea24fd9e21

/data/data/com.xinxiu.pintu/app_mimo/mimo_download.apk.tmp

MD5 3e86b24cfe8ea3644e3a6bb2f3bc75a1
SHA1 7881136fb412166d04ad5b6c4fdb9550a66fd99f
SHA256 1b01837a2b9004309bff95248adc60d39ffdadc90e52ebf645b2c5ce76f28bc7
SHA512 40ec714867b4a3e0aaa920abb648f331ce43e8bef442e782eff5ebaacb1052785e681c23b85f6ec50bc4e57e5b9924e61ca4fd72589f810ce8c670b5094b612b

/data/user/0/com.xinxiu.pintu/app_mimo/mimo_download.apk

MD5 c526c06b92f76ffbf2bd3232f1053284
SHA1 0e9d0fbef236f8807f20d9a14c50ddfcc1736b52
SHA256 fae59c9be4e17b082d213c4ff1c7873cc7175b28f7c6664f8e8aa8280489017a
SHA512 8a4da38bce8ae67d3e8de8ce44d63b0ae96f9f12321bc8f84b623a0fbc5ba4f7bb87b18141dd8a64227debef3be72f58b0b76636c5d71a217891f78f3397831f

/data/user/0/com.xinxiu.pintu/app_mimo/mimo_download.apk

MD5 fc6389d763c2d610ee49ff148e8290c9
SHA1 54560ed793b9423e1dee58ae5b055ba0ae90c9d2
SHA256 3cac6e067f690571034609d891d695310c3d3801298395cc83e09b0b4ef63073
SHA512 e2246764cbcce410d38d59758c72f40aaadfe2493609a2d72f73851f33852910d19adc22fc9ce4bed6fc7c3091b4af3a81e0a0dd0cc9ff5cfbc939b24867d38b

/data/data/com.xinxiu.pintu/app_analytics/analytics.apk.tmp

MD5 771fec16708ba01a54092a540fb0c2e5
SHA1 0692bedf423d86056187fbd9a399111d7988265a
SHA256 0d3a196df1b7c5d0a7c0e522fb72527a4463872d68e58d339f0e90606336a745
SHA512 f2f799a838c4fa869ce350361172ed5f925b8b94b25019913c899feb4ecd671fffd8cb5a9eebd63722a28d537223622bbb83c65675ba425bad2cb0b8c3823445

/data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk

MD5 0ac8e0f35a5c78b20da7e3b50fadaf93
SHA1 1be28eadb0fbd40483b22947b85b4be2156c735a
SHA256 79a2d70e007be422b7f23db1bf2e3e4414155e37f316e5d4c8ea113368b9b17d
SHA512 53dac74b8fcfe64ba781509348e5a3443a718e25a9b3935e3e34f2ca720b4afc411dc09e40bd3bf94e21512cf23cfa2b0fd7e9b0dca871669ebcae8d8ca6c914

/data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk

MD5 3ac23b671c6948f0858db95d76aa5276
SHA1 2f2b7cee67444c8fc695e5f41940cb06c88a4f39
SHA256 dd639e20d99f6a722c1d863d42f29396ceb67956987fb9d8c8570ba790e32f19
SHA512 d8993fb902f953f452a08cb6b60c51a58b90fb14e4cb21cc60635d371d2e709c37bcf2dc09d0dbe4e10b8db2a81b214a73136ad1ac655fd17b87441092866830

/data/data/com.xinxiu.pintu/databases/analytics.db-journal

MD5 b91227aff24563ec98282cb9f5585cd2
SHA1 b2d7f0f4342bd5d062e9939961e85757ff1f2c1f
SHA256 46cf746c5156e1a11fd798c6c1a0da0dcd983a753ddfad83b4e22977b62c17a7
SHA512 75f207fefebb8257bf2166a878c535a8cac4b880307483bd2504fad25f8d83e31fb3de494b21b0d60135052a934b8345cb55608aeb43ce9506c56c67a81e4101

/data/data/com.xinxiu.pintu/databases/analytics.db

MD5 f2b4b0190b9f384ca885f0c8c9b14700
SHA1 934ff2646757b5b6e7f20f6a0aa76c7f995d9361
SHA256 0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514
SHA512 ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

/data/data/com.xinxiu.pintu/databases/analytics.db-wal

MD5 912d43debdee09b69540e47498d4fce6
SHA1 98a145fbcde8f57f014edd863112fdaef1cdd4b0
SHA256 449895cdcbdb05ef847786746b5a4b93fb085f662dd3c3ed7f226ebea524fc66
SHA512 8edd1af0cd53fe584e62d19cfd5faf83c980c2baec70e1113a33e94d16eb7afe05841cd7eb3cc7317e24b64b0873c012496d7ed357dd8f90a04f456bbd1f5db1

/data/data/com.xinxiu.pintu/files/54db829f09424caad69f7fb9350fa48d/policy.cache

MD5 f0326dac3bd2b30f8d216ca46622eb2e
SHA1 e34cdf9529a96288d206b07c5078afb012be5b7e
SHA256 c59de2f2197323aae35f444e18f7f5d7ae2967cc486b0297bceaf329ef8dfcb7
SHA512 b91250a4e5cc4c2464657d7d625a3d19144b321fbc091041bae340dd8f7a27712dbc0c5961d50bc039471014c568fb06df9b8305f20e4ad08c65894e56b4c49b

/data/data/com.xinxiu.pintu/databases/analyticsv2.db-journal

MD5 7f879e7c0a4aa0329289d25b3b5049de
SHA1 9f00bdb0d52145764b56e330c12a3b8d599238f7
SHA256 f861c2affc75293afe28347e3d07888950c8034859db1329856f86ba39b89951
SHA512 73e0d26fcc2b41865eff9c1ea5791fc9c3faa687774d8849028a17fb2b5153b0dde945eda087475af1490dc10ca1a3cdcc295d1bd53535de11076b4717f0788b

/data/data/com.xinxiu.pintu/files/54db829f09424caad69f7fb9350fa48d/policy.cache

MD5 4daff4a2f426bf1569077a75ae7ff9d4
SHA1 8294f782f0cdbfb234d430c0c2f63f1aa394fce6
SHA256 dd0b918bbdb0e9bf8b9e9b249d710c4de3b2ddd98fc87784763f117e8a5ae53f
SHA512 37a210b4c1ad6a6c87a358e6c41ea45777c62e8250437d7ae1f1ff01f351b12f2b01cc79fc5afa4a1b9eeeff3baf27402eae3a505dab3e56a4f25c8df4de3051

/data/data/com.xinxiu.pintu/databases/analyticsv2.db-wal

MD5 e54d9a96bbb522669b719c65fae2eaf4
SHA1 34dd8965eb47ab09aa6207a61ac9a2c31be83fa1
SHA256 806df8e6fba7ee15ac8f95114421b14aac751d6332d03f9a25fd5130a8df4999
SHA512 9000f1eac5a1d765a8086c0f204dcafa0155f34c4f767879e837ec678a092bf940f4577936c412fa700cd80e4fa6b57953ca24891fef7b90258c6f3cf499d2ae

/data/data/com.xinxiu.pintu/databases/requests.db-journal

MD5 e918f8ec64f055c9fd51fbcfa68a8cd0
SHA1 04578c2448c1b738ec6071561d63297a7747d9cf
SHA256 27235c85e89642a79df1a43e9c5a8fb97086be50f40c93b607b9e99006151201
SHA512 d4f9553e4877d9b1d800488706a88e1b5c87215f45e2cbd5c89c24ca283e9cbf0c0213c86ad9243aff4713432b7a2c71deee39dbf06b9938807a67da88d1085a

/data/data/com.xinxiu.pintu/databases/requests.db-wal

MD5 85950b6728680534eb60a33d32c63860
SHA1 6e9495b28ef570f62bedd0a666a237ae59dcbfaa
SHA256 c7a7c3c02160e45cde88ebef9cd130808677a8fbb4b9771db498ece75c930fe3
SHA512 9f6b8405a66afe6afeeaaf6c8453c1859325c010c6e0e4c67e6089719cad6a77a677d03e7adb87c0fe9d46405a422fc82ea3f0080ff4ff80c96b22c556b754bb

/data/data/com.xinxiu.pintu/files/a194a0a7214f6cbda0672045c51505d1/policy.cache

MD5 04ecedd182ec514d1a60d8d2ac199148
SHA1 3cc41071881e11ef4a5e8500ba83eb91e0502aed
SHA256 690fff1587a5f29c71dd12bb95f7c8d0d25518679ef90c9a9adf8c69ff5f18bf
SHA512 27a2e1ea979a0c3568064028558da583b72cdb5133442cbd5434c497ba0d2ba7a0a0445dee5657c4ec277af119b820371e03ac4c799eee93731b12379c491837

/data/data/com.xinxiu.pintu/databases/reportServiceDB.db-journal

MD5 5dc5b20f6f9e80cab41910aa2377b95f
SHA1 d1b7892b81c1f6af02c780afb1fb77ffc5f63995
SHA256 f833e6e2dbf0a7ccab7752b0a21be0e7d76683cee003bbe480091ae5b0cca036
SHA512 ad49c1d23930f46374a1a8f61d59ea9b7b80af961ea9acf544bdfce4bf9c33a53b85eea0db0ad557b41657e23c01a4efa41589fec7e1890a303caa8d1690b1b0

/data/data/com.xinxiu.pintu/databases/reportServiceDB.db-wal

MD5 a3b2387f6e0715f6c4dde0ae8bb5796e
SHA1 9d958828526f0317cf52617983cc9618bcade0da
SHA256 4710afd354f4d0c5fc29db4632b60f9348a2528c449e9dd203266f414bc33397
SHA512 2376503c59e7b182721390794785bf99ed109c7466347ba73fa83aea426dba40584fff81260c87485cf49389b9ae28eeb7a1a24f513a40bab26ec469e1f0716a

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-wal

MD5 6656e61627f910c0042be0a76760fe69
SHA1 a5a7d6af9b2ea3edb85f9954fc2958e275214c43
SHA256 728c561100e4bc383f5cbe1cd4ab93564023f9f1cf9fcc0dabfe02905b2bc5a8
SHA512 f1cae64cf56462c4dadebf4b755128ec61718cf07c3cf05c69464cff49bbd00e920124d94a8abc7b65657f378e725669a720af5dde8e1d5197f142d1f96b1109

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 f6bc461e67f439ba0b2614775c113e58
SHA1 828a241c0dc315e9f8b4d2f53764d28eb5f92c80
SHA256 2dfd22ba7a3d1d7199598b8f6fddc81be52fd365566070b6f80e7273ae2b8f29
SHA512 9d75402e163acc0a6916c1fb41c95cef9892e50570bbe6e9c7a02b7adea9ed460952ea43589cb39b1639af659600f11a1fae36b546e6b7a4372b5a6b141f1a23

/data/data/com.xinxiu.pintu/databases/analytics.db-wal

MD5 5d6ade556de16ddb18eecd8ef413421d
SHA1 e2681d53d9e278e88f6bb6ea7fc9d872f720649b
SHA256 c2dc7df87244936d551466960c2ff5e0f0b0cd2a72403babaa25805e5b4f1ca8
SHA512 cc033232d56405e09802b75601ec21c7c66b63967c1eea0981cd7daa95ade1164b72a94e40f0dda71e1b1e68de56c4e2f0385ff4bbf58529b7a2085ee0a217af

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-wal

MD5 ea32f2cda0b5ea0a820ad0fc33da642c
SHA1 372e88b3d45d7cdbc6b1c2ec4b975d2b3850866d
SHA256 42b4871fe04228ebf14a513fd179a32771a9f11d0095ac17c7365c4c6cfeb73b
SHA512 734581e3b34bcf0ffa3477df7ad51cff5600682f0b1d24e35e3c6df97497e252db9b69a52ed2a60588f259cb4492af4619f03e5447560828b59bc36bd6afda2b

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 6ffb3c32b179ba4d5f505ab83eba49c7
SHA1 434235e53bc8ee9ee1b35c9b38c6f702b166f0c0
SHA256 94d80096285033b20534b6a60a0d01d82d627b1b09cc7a1c510b13166475bb2a
SHA512 c4af417f72031b8637fb37f8fe50c00c7d9e500839e4b2ac94893b70f9b87ed92367847d62d7811c1c92b2dcb84c8790c2c6fce7a28551a6c06edf26d7879188

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-wal

MD5 77f73e266a19bb5a01e902bcb2fc4ce2
SHA1 2ebb183b131d4f4b007a2d5c7b63f3865302bc25
SHA256 1a0650a9bd86cd689a6a9ab06e82e9ce6135a5b9a1c8e0748b3e593796947516
SHA512 80986dc88e1a499efce0e0798592fc3d38ffc7c0d6217ac066baac1eb40ef66bb70e72198af858af3ed9eaaa2969cab6f605ce5e9aca8ed8506d4ba393079ea7

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 546ff8bd70c913ca9e14613667fc6602
SHA1 689e747ef5e7b1223cfd2f622961b0eba6e4a8c6
SHA256 f6f03172a557ec54a64955da327a38e6cfc4904ea22d954607624e035046526f
SHA512 96f18a3d309f4e407d007ee86a506f6548fcfef5b2a5c424c2f46e114ee517bf51142e388df64bfb1ed80e56959dfd6ed207227ec407d0a59501291963e2a3d0

Analysis: behavioral2

Detonation Overview

Submitted

2024-06-13 23:53

Reported

2024-06-13 23:57

Platform

android-x64-20240611.1-en

Max time kernel

27s

Max time network

151s

Command Line

com.xinxiu.pintu

Signatures

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.xinxiu.pintu/app_mimo/mimo_download.apk N/A N/A
N/A /data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk N/A N/A
N/A /data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries the unique device ID (IMEI, MEID, IMSI)

discovery

Registers a broadcast receiver at runtime (usually for listening for system events)

persistence
Description Indicator Process Target
Framework service call android.app.IActivityManager.registerReceiver N/A N/A

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

com.xinxiu.pintu

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 142.250.179.232:443 ssl.google-analytics.com tcp
GB 142.250.200.10:443 tcp
US 1.1.1.1:53 www.baidu.com udp
HK 103.235.46.40:80 www.baidu.com tcp
US 1.1.1.1:53 zeus.ad.xiaomi.com udp
US 1.1.1.1:53 share.weiyun.com udp
NL 20.47.97.231:443 zeus.ad.xiaomi.com tcp
US 1.1.1.1:53 api.github.com udp
GB 20.26.156.210:443 api.github.com tcp
US 1.1.1.1:53 android.apis.google.com udp
GB 142.250.187.238:443 android.apis.google.com tcp
US 1.1.1.1:53 file.market.xiaomi.com udp
HK 43.159.233.95:443 share.weiyun.com tcp
US 2.18.190.80:80 file.market.xiaomi.com tcp
US 2.18.190.80:443 file.market.xiaomi.com tcp
US 1.1.1.1:53 sdkconfig.ad.xiaomi.com udp
NL 20.33.39.104:443 sdkconfig.ad.xiaomi.com tcp
NL 20.33.39.104:443 sdkconfig.ad.xiaomi.com tcp
US 1.1.1.1:53 f2.market.xiaomi.com udp
GB 99.86.114.105:443 f2.market.xiaomi.com tcp
US 1.1.1.1:53 f4.market.mi-img.com udp
US 163.181.154.233:443 f4.market.mi-img.com tcp
US 1.1.1.1:53 sdkconfig.ad.intl.xiaomi.com udp
NL 20.33.39.105:443 sdkconfig.ad.intl.xiaomi.com tcp
NL 20.33.39.105:443 sdkconfig.ad.intl.xiaomi.com tcp
GB 142.250.200.46:443 tcp
US 1.1.1.1:53 diagnosis.ad.intl.xiaomi.com udp
GB 172.217.169.68:443 tcp
GB 172.217.169.68:443 tcp
GB 216.58.212.238:443 tcp
GB 142.250.200.2:443 tcp

Files

/data/data/com.xinxiu.pintu/files/libcuid.so

MD5 d4f9a49a06489532f93d2d455f98c887
SHA1 c14844025d50fac0d8a2a494e6a8078a54ee8de6
SHA256 473e4c8a0f2f8f3ee91368c8f8b7b10c23831d241e265b06e5b957ba5c987e1b
SHA512 1d2cf5d9944d4b92b2c1dfb465f003a48db46bb0918a7f2bd3eba637250924d58be274497ff24a033ece55dc9a630ed22212cb89fe3b3492975ee01fd904fcdf

/data/data/com.xinxiu.pintu/no_backup/com.google.InstanceId.properties

MD5 86ac74d35a62a18ba228063de36a734f
SHA1 94a45056fe1c20f2769db78054ae65408861a645
SHA256 9aaff111d970d24198cac9cd3d05ef1680a75839539bb2834397158c542ba69e
SHA512 effb0e34c53de24fc76abcee65bedce813e6eca2959cacc8350dc451f5c4c5aecb097369381bc3c05140e1ab7c31a4dfbc39a49f7a1b2ca0e2b4e1c6eeefbfbb

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/journal.tmp

MD5 8c92de9ce46d41a22f3b20f77404cc1d
SHA1 8671a6dca00edb72be47363a7071be65cf270373
SHA256 68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274
SHA512 30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 f5fcec42678d5a6bea36ed18549b4c2e
SHA1 837007ed02cbffdc1cab63d89c30229ccbaa2379
SHA256 07874c789a8b6e798cc0cbddb18d7ac589333f3fd3de2eb4fa1309a4aabf5733
SHA512 0efc91708f5305eb8b76a40eea93d5246bdecf14a90d26386c47d802c13f03aff028a7bb982b2a1a4ca15299dd3dd56b956e6110f2687cfc841889b06c9af5a2

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 cab9d5d3f20d6aa9ee241982f1e72e79
SHA1 7dff495736a7be4b7b971ea1d12abe77252ecb12
SHA256 3db88ba0f5dcb1d5daf5649e2e066c91af3256658993b8b1567dab0f2ba39cad
SHA512 441bf5fff71d5c8e74d15d856f1d568d55358a0769f7b23b6b1b74c2a8a4f25e10b160103f58d11ec443572bf12ef930bf6d244350a093af963da77b4e284355

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 b745ab4fdab69f5f1e5d68d7e98b388d
SHA1 b1a876eb81c8110a6e4f90639a79ec701cd57ba4
SHA256 b7c88e09ec9abf2145194c5307c2b3e6a65c4e536d99f5a87cc51e7ff100bdc8
SHA512 8c91ba22f9b1565d12f1805d17f40d387bd3b0cbe6dbdf1a6655894a56e57089ae10198422b02910b9cd7cf822bf2654e12c995046e6cae54910b938764fe954

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/journal

MD5 192856e922f54e57d9a4e1e180d40d4e
SHA1 16fb75f703271a380b94cb1139b38173d14744d3
SHA256 15b4d0086e49405ed723e1d67e807268589889512aa1ab96fbf6b886fd3d39b8
SHA512 72f24fa4dd1a28d21dd05b2a469c52cb5941ad930eb3e865d18216c18afff56a503b0ba5d9e59d25159a1ebeeae17756778e0a21b233db3cf337eb150cddd5ca

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/d954831f74540359cda8057b10d581ed0603edd3d9b159830b0e483971467ea2.0.tmp

MD5 ec862bbab7802625d3622e2c679223af
SHA1 2b5ed3cde986999110748f49f352afa138a8dd96
SHA256 f380f696961e2d1caae334374f127f39329a80247f1f1488c666abba553e9292
SHA512 106e68faa122f5742a3b8b5ba2764c76cd314340cc4d4ea4deaa4b4744d6daeefae3b95c10bdccc30f72fe8d09322f0a8b716d3f5ace44620a71ee2460dacd33

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 184690c609db7e5b1b7a8b832cceca95
SHA1 8b2c0f74a13a0a41a06f9880215e46e58f253888
SHA256 c240353faf6557d7d7780017deda7e2c30308c3f968f46085350a8c43c396729
SHA512 5ec4461e80cdda9b48fb1b20c9fd696e30b68c6d90184af0892ca78722bf9e5d7dd4a4b73af359bcfc4ec5a4c5079e77bc90d3f39ab029aa429c6d8d7cfbe9b2

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 ea80fb779e7152ff0a459bef5b650a1e
SHA1 cc364fbd205a6e547abd4faeb18c951ed9e4427a
SHA256 fb4c4d65b1672e85c070439960abf9b393cf3e991ae6f1d20442deadf0116244
SHA512 d5ca31d8707c93d198de7aadf12465ad2746dcecebfb4fd808256d85f4d6b61dc758a83cb90ce55136e9d017c12d88c54de633d661cb57491103a6f2f4d74268

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/1e6ac2b06a3a3103f1ed39ce62de7a07014a72fb34aff2993380d2c10ccbba1b.0.tmp

MD5 151dbc8a615047876b70fe8924c864ea
SHA1 238de2574d2505a665b428f30af2730639e82c5d
SHA256 23c39509c202bbe6cd0f6b8f5da9ca64d749aee9efcd59c47cbd0ce2b04b3900
SHA512 5a64499f8ab617245e80374c97c83f0b8bfa150efc58a3a24d9446d4eb6db27b2ba967ed687f104cd77cdcb7abb1f9c08c667a84d8770b74debf10acf73b9dce

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/81c6ec67331ebc58c34620fc28052c33484cc896591772c4eecd53961e6b217f.0.tmp

MD5 1bdb4273e05e3c03e2fd33520b58e315
SHA1 0dd18a291a9d9a41d2f1fc59d21e996fc4be7e3a
SHA256 0b3bf91eecd6b1878a6ed931a80144aed8432e03717b57d73dacc3f735b15738
SHA512 12cbe0c901fcc5477c5719d7a44766da599cc5ec989558f381dfc9820cb7bfe8a627524f4efa1cf71537c9cb3ba20c43052ea68a34599014914e0fd0cef4e460

/data/data/com.xinxiu.pintu/cache/image_manager_disk_cache/1090206adb69ea1a09691f1deb8d42da75d98d50fa46f853c88f51419f1ba8a4.0.tmp

MD5 8bb5e289314efc10d26018fd9591fa8c
SHA1 e39a4352ecad15f6bd8aad0b595367a1bd554fbe
SHA256 671c02ac550c8856feb66e8f5888b8c54cb24b2b48e51fcfa3cda32a8664dc53
SHA512 a9cea6869ad510a2ac54ecc129b35ae0f55c6e3517dbbe472b0fa729de849b3665903444cf3ac586d11c7ba943bc110bd7f8a71abad816a833cae9d2875de9d8

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 c7bc9b0a55e98a48ee358dc5fa6e9e37
SHA1 ac3a8d8267d49196e23ee261585f5a48b9f20f75
SHA256 642dfa5f726cb85fa2efcbf1f13625fdf87f7de77797769b6cf843148774f3d8
SHA512 442461ef4b5426211aaeca6e83326654f02a1d6273060edf15c3f66e2c51fe650d3b7ecf14af65f958c8d2086ba574ad3bd0a8bfd7ace1455709eebb110e00ae

/data/data/com.xinxiu.pintu/app_mimo/mimo_download.apk.tmp

MD5 3e86b24cfe8ea3644e3a6bb2f3bc75a1
SHA1 7881136fb412166d04ad5b6c4fdb9550a66fd99f
SHA256 1b01837a2b9004309bff95248adc60d39ffdadc90e52ebf645b2c5ce76f28bc7
SHA512 40ec714867b4a3e0aaa920abb648f331ce43e8bef442e782eff5ebaacb1052785e681c23b85f6ec50bc4e57e5b9924e61ca4fd72589f810ce8c670b5094b612b

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 55ab2f00f71cfc4bc67da78c4042e653
SHA1 8d80c70f94045bd074744330b66a980e9cbf156a
SHA256 40e79ed71d6e233d32d40477eeaf62975b17eafeb6a51e215fb326c18e4c72b3
SHA512 874bfdb7a983fa0200676a357f80baf61879901eba4ba164b6fe7ad4c99d08e72d8db08cbe86ac1cac02b7f85ff32ba2601c63b25a32e96f822439f41a95ca2c

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 b7602f458617049b0a61b479a501afa3
SHA1 85ac94c5f8f5d7c20f07443314d1fb589aaee311
SHA256 334647613f2ca6d9ac0fcc5faa1fabfe7b28b2df377bbef9aaa988dad2b4713e
SHA512 078c306bca16529951ebbc4bc2e86e3b24bc915d5cab63733c08459f11024799d9787bee173e83bb3372a609221a469b82ce557087da753f589f2bc7cc2b8ef8

/data/user/0/com.xinxiu.pintu/app_mimo/mimo_download.apk

MD5 c526c06b92f76ffbf2bd3232f1053284
SHA1 0e9d0fbef236f8807f20d9a14c50ddfcc1736b52
SHA256 fae59c9be4e17b082d213c4ff1c7873cc7175b28f7c6664f8e8aa8280489017a
SHA512 8a4da38bce8ae67d3e8de8ce44d63b0ae96f9f12321bc8f84b623a0fbc5ba4f7bb87b18141dd8a64227debef3be72f58b0b76636c5d71a217891f78f3397831f

/data/data/com.xinxiu.pintu/app_analytics/analytics.apk.tmp

MD5 771fec16708ba01a54092a540fb0c2e5
SHA1 0692bedf423d86056187fbd9a399111d7988265a
SHA256 0d3a196df1b7c5d0a7c0e522fb72527a4463872d68e58d339f0e90606336a745
SHA512 f2f799a838c4fa869ce350361172ed5f925b8b94b25019913c899feb4ecd671fffd8cb5a9eebd63722a28d537223622bbb83c65675ba425bad2cb0b8c3823445

/data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk

MD5 0ac8e0f35a5c78b20da7e3b50fadaf93
SHA1 1be28eadb0fbd40483b22947b85b4be2156c735a
SHA256 79a2d70e007be422b7f23db1bf2e3e4414155e37f316e5d4c8ea113368b9b17d
SHA512 53dac74b8fcfe64ba781509348e5a3443a718e25a9b3935e3e34f2ca720b4afc411dc09e40bd3bf94e21512cf23cfa2b0fd7e9b0dca871669ebcae8d8ca6c914

/data/data/com.xinxiu.pintu/databases/analytics.db-journal

MD5 6db2433579477e8c5a6a6d316745383d
SHA1 970257404b276048f7bf8abb53928d1795bab128
SHA256 0dd704195fae67460e0fe01127ba08d057f0b1cf1ab814f8006971b73334a55a
SHA512 3b076daa778960f099d2cf6db42d60eb8e9979c7468ba7daea831ad04b79f886d8eef1ef8821eeb9ecb431cda7f3e676f27d53111b7b0c2ce6b7ecaa740e5fb4

/data/data/com.xinxiu.pintu/databases/analytics.db

MD5 3805bb26b91c12ecf3f5745366a0f207
SHA1 6fb9b37e61cf4f63be0397b0ec480041b51e55b9
SHA256 157b81d999fa5e79e292c7adcfaa0058dff7cf90b3771e5c21bd842f7c6cbb57
SHA512 723dfbe34d8927ea2c144e4edba69f9277d845d083fb3cf48e7dbedcefc19760a9526f34a8dcf1358bb3fab895748e18639c69836e8072413ddde2887a8ebffb

/data/data/com.xinxiu.pintu/databases/analytics.db-journal

MD5 673a901935f40c792f41c9eaf5ac1e72
SHA1 3c98aff7f3fc56d036b733546765bf8be61ba6a5
SHA256 eb497db94c20c640cf54bb9c228b8a17d403da3c0bb710e85b5b8fa25e635e35
SHA512 acdf105ede76139a5213ffc7b5718cc7aedfac6abe1efe713f79568972b92812f2a4a28e8372fb8488d1010ff344c7b4d24a08f57c46c5257409a8f446c59434

/data/data/com.xinxiu.pintu/databases/analytics.db-journal

MD5 2b69c218b717c2746cb54064202319cf
SHA1 469ebf805d5c6633af433e22d945c2477ecf5395
SHA256 ac634b3d68aded825c02af80061183293f97b67d8b9cccf8ed2b396119666a0b
SHA512 a8c635bdc766d18402514d3c213d86093f0b4eec6614fb6a6d99fde067818cf17be30ae7c80bbe07cd01c6b7c9bb582e63b98f31395ab0c615a42d42e015d922

/data/data/com.xinxiu.pintu/databases/analytics.db-journal

MD5 5aa6edda8517041dc2af3f105ac7cf04
SHA1 c4b270d671069ecf8c852a150ba5096aba226f1f
SHA256 196d1f88973ba1caa232319f87668e1baa960754462f49ca323998c4738408ab
SHA512 ac2053261e7b777cdbd19603102a332cf406e481144bae3119dd78b682a7874a797b2f12e3c1fedc1cb2222cceb2585b62fd78e366a91269c7e711a17bdb02ae

/data/data/com.xinxiu.pintu/databases/analyticsv2.db-journal

MD5 c9228066ca569ad362168122c3776727
SHA1 e1fe34e58037a2ae20fb72e98135dc4a14c4d120
SHA256 e9ea51c4800a0751f428093cfa0baa66ba9dfa27a61fbf7311af4602eeccf81c
SHA512 b159db0497483002bdb4453359e6035adf42587f8e0e5ba6fd956a2277bbc65ba04f1e161c2d6794fb6986eff253ef26d5a97c03321e4641e28f601bff282898

/data/data/com.xinxiu.pintu/databases/analyticsv2.db

MD5 862df7baa0a1975f19d407cf7d36fa60
SHA1 299cd93a8b824739eeb51bff8446cd5aeff43bb0
SHA256 aec3e4bb8875c61a90acb28e2ad2c3f5b84209dcfde58af71957d5f0fbff22b9
SHA512 04ef03e0625662ca9cb4c499c0827b977a650de8f29720a52ed34dda073890e83e5b5d4f9f971080e9322c21884def017fb0c586d7d877a22f0c9deb16afbf23

/data/data/com.xinxiu.pintu/databases/analyticsv2.db-journal

MD5 fc26966a9d239b3a1e25c6b97f8cd2fd
SHA1 ae0e3d1622cda57f05a35133c2148d56d06dd5be
SHA256 f4629258faf81506fafe900071b45ee1158c385ce68bdd95d34e3a0a50c15c97
SHA512 5c1e33ced0b18ceb804c013980941f8e65471834ab11225f44a4e81b5f9cb524dbf609e2ba4bc402dea0f2048e1205a1c208a13ca21fed47ea03b781c3257ba1

/data/data/com.xinxiu.pintu/databases/analyticsv2.db-journal

MD5 0d70af9a4e1d9bc570b8daae35d58034
SHA1 3715fe24f7375693e0a8bd164d7a4b949d1a8e67
SHA256 6067d9f3df00036820a604847423980801fefd5136f0623914f8c006ea520d70
SHA512 c8f788afcafff00b16a4119c0bb5eb3ade416153e1cb8294421fb105b10298004efc6d53bc3271ddb5e83d4e4b9723d4e158188174635d645cc6013caf0b8a5e

/data/data/com.xinxiu.pintu/files/54db829f09424caad69f7fb9350fa48d/policy.cache

MD5 f0326dac3bd2b30f8d216ca46622eb2e
SHA1 e34cdf9529a96288d206b07c5078afb012be5b7e
SHA256 c59de2f2197323aae35f444e18f7f5d7ae2967cc486b0297bceaf329ef8dfcb7
SHA512 b91250a4e5cc4c2464657d7d625a3d19144b321fbc091041bae340dd8f7a27712dbc0c5961d50bc039471014c568fb06df9b8305f20e4ad08c65894e56b4c49b

/data/data/com.xinxiu.pintu/databases/requests.db-journal

MD5 95831befda073c21d4a19110f656ab05
SHA1 0624f70da26a632095d53849e26f38329a712475
SHA256 f7b59ef92ed2f1df3e0a348cdee4232e0fdd3a5679ae281e36b68c431fd223b0
SHA512 231bc04d828a1c9289a2a154a7f12df3e04c6ae4d254aee82679ec8cb9ff3dd85b2f23235c1a1152ec7dc11c8a90af70533558406aa78aef5cba6a603c7e2f41

/data/data/com.xinxiu.pintu/databases/requests.db

MD5 46e6d260aad4939e6578fa547c8128a2
SHA1 389dfa55d720f3f8255a87e019855ecdd4a31590
SHA256 ef19573174dd62a5a63a6aa2db6bdd508173cbd8ead7b34d338d91a7ae9308c6
SHA512 107e4dfe13bab1e70011db5f56415a886f06664336dfa8ef2884556ad1c0e18fed156be320bbc12282642de4b1125756757ec22e225ac3b47c1a7e17b823a581

/data/data/com.xinxiu.pintu/databases/analyticsv2.db-journal

MD5 270aa679b6b7e5d4ae9ad5bff3526311
SHA1 0185bfe966f7767694f781d0a2efefef9f520a57
SHA256 2a4a27813f1ff1acb2b2f95fe91411f3767f3527a7fed45569efdf73def91365
SHA512 efe3b3675430b6a049fb29956b396150fd1ce43befd503811fb2fe62353f6df4574e94b015c9cb7fc3ec34e55defa63e68a26e2ada43b2e9b324f7d31e49868a

/data/data/com.xinxiu.pintu/databases/requests.db-journal

MD5 9d06af079a431ecd646ed32e635765df
SHA1 214825f29be5bd2978719c67d9f7db654c806c20
SHA256 46e36fe06bc7fc8ca65df3895d51a94cf9a15758898121e8916d41c6a441cf91
SHA512 58c3d5cd8ef643f7bcb42f76175ab4d2884eac159cde0b6f5cc9fca050660a8c8bb02634ff1a2ce65988f6ad5bb27b58777bf74db078a1495d7ead59c42db86f

/data/data/com.xinxiu.pintu/databases/requests.db-journal

MD5 1a5142126bb893e4c08447cee09167c6
SHA1 6a1f015966638d46ac6b9f54d0cd2251146ddd3e
SHA256 70e3679fa2bc827cf184dfaef9fdffce4c199da48799feea007bb261fc022830
SHA512 93e2b7e92de4633a6f01241cb0960dcb25f31595847d669d6af133e2e35b267f85812ecfadc604c953ffee36a27f31005b1697cc2c2efbbb2a23cf66e9992978

/data/data/com.xinxiu.pintu/files/a194a0a7214f6cbda0672045c51505d1/policy.cache

MD5 04ecedd182ec514d1a60d8d2ac199148
SHA1 3cc41071881e11ef4a5e8500ba83eb91e0502aed
SHA256 690fff1587a5f29c71dd12bb95f7c8d0d25518679ef90c9a9adf8c69ff5f18bf
SHA512 27a2e1ea979a0c3568064028558da583b72cdb5133442cbd5434c497ba0d2ba7a0a0445dee5657c4ec277af119b820371e03ac4c799eee93731b12379c491837

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 45ff4dc75e0ba597cf5d264d25483bae
SHA1 4ba783e54f174e20870c509ee797f33ea28b0f3c
SHA256 7868a56a45a1e3f032be52c2f9bca4ee8f999142dcf41d9e661318617a0d90ac
SHA512 f35183b7690a58717c1a50ad6532e0da57cbc089245402ce4ab72523fddbb3da999ed40ecec5c3ae639fccf79e05c5182b9b1f52a9fecef80409c0c7affe2ce8

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 e8c94f0f22406c702049107dc3a6bb96
SHA1 203b99218765bb2207bec446bfe888bf08653611
SHA256 76c913983f471a54744b7d6a16f883956099789cca803c17a1256b8086e215e0
SHA512 c889ef65c87ea4a716efee27753642187cf287a0dc33496646272e5d68f9ab9723787390188fd367e2f6293aa6f5bde51f5f851f8143003b970d4526ef675ac5

/data/data/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 a84e530ac745f0c3d4b31b884bbc32e3
SHA1 a6d3a39e02426328d256bfb959111ecb89cee9ab
SHA256 3ff05dde2188817d34052d25df4b6dc51eb564dfb9b1285c0519a90549f47278
SHA512 d916d0d093b580e98355f0c45f054e3f787f5092f3172a8057cf43e8fd2bf45594a6c9c3990eb28a273d469793c2e84a3b0003660ea81c66a0feeb4a03eabf41

/data/data/com.xinxiu.pintu/databases/reportServiceDB.db-journal

MD5 bd523915f60ee90ae971b646ee323c7d
SHA1 2bf89cd660a23dddc812f14db0be2ef1dbf83b6b
SHA256 b9d98a6b7651e339aed2f34a56801225caa49b6f1b48860dd267bceeeaab93f5
SHA512 bf195e3770b86b1e7176e9dd73dad157a17cc8a8eadacef4b172b680d07a3890388b71a3c8a685e91cb586730b76baaa588c0529392994c6b3e485b48335f128

/data/data/com.xinxiu.pintu/databases/reportServiceDB.db

MD5 d2f793e6d1cef2c60816c2c57e05ccb1
SHA1 3b61ae447d1bbd98e1415e088d21e97c6b74c7ca
SHA256 9530618298f73e3937c0143d3e114cc472239ac6c785973b399e7cfcd7ba5e53
SHA512 34ce1e8ad1421b1585e7f9dbb8be9876eaccb8c4e6bd34bc85225ff14ecd539742d36d25a6fadf934ae42c96fe735a337c5b6ea0e373f351dad457c5b747dec6

/data/data/com.xinxiu.pintu/databases/reportServiceDB.db-journal

MD5 972d5a605e548be049c688ab51368cca
SHA1 bae3e9fa33b9fa5b54e526e945276555e5faf21a
SHA256 eafcedf74f91387dd193cfbe25e0fc923e3076354a49e4dc556b90a651a2f025
SHA512 328e836e2493e33bd01989758b4498bf03074fec8d2114d4350089f63b308dcc4ee9928ceaafeb9e0248c92ddff62799456f540c2bf88645dc1226902049f250

/data/data/com.xinxiu.pintu/databases/reportServiceDB.db-journal

MD5 7e2a64304eb14b4d5f3dea69aa29fa79
SHA1 cf641b827733c7d9bfd1dfcf2dee33274b6aabea
SHA256 7f638a8fa412a332ba02081a9d52f78d295e7ec899c1eb0fe2405447f9ce082a
SHA512 518d1dcadf44fa9a90c716166549598310c780b0756be593f4236d295c1542f9a278e6a8411f763ba66f806004d2a755f01151ca9658e46e4b976f360657c6d1

/data/data/com.xinxiu.pintu/databases/reportServiceDB.db-journal

MD5 700aef45ed35f9048b71c3770800296f
SHA1 99eb345798c175813ce69b682e6beb8503aa5c99
SHA256 6c28f841673f64fd5b39612d3c15107280e74b1028a617f694e5d7e454aa9e8e
SHA512 7b5ebd25c0c6c08b515b4b2a7aaa7abe46abfd6660c7e802d6584b4894a9d16048e51c3681ed94acc9ee78633844ce9685011af45e66fe3c241bc4c471c76e7e

/data/data/com.xinxiu.pintu/databases/reportServiceDB.db-journal

MD5 476e1453e98b7dad352993446a4f8a7a
SHA1 542fb972b913d9cff8abc72280bb73ec8a378d41
SHA256 9de27373966d3b528602a295c0736f3e9d43871645c1132d205951470e9a65ea
SHA512 d006ca3b61c3dffb9ed99e406b4703b1874d9306af4f6711cbdbce51f727120db4caa15f1a76f05e11c7d1bb8039161b58bfb19dac9170d316d70ac3f80d09e7

/data/data/com.xinxiu.pintu/databases/analytics.db-journal

MD5 407518b8cc531b8ebd4cd5029dc32779
SHA1 88360df866716f9612fcf3b237523d7bd446e169
SHA256 20ef94fed3955e86a0bf208e4f9b7e6a6a9b56c9958a63e5b81e30330b9c116f
SHA512 f7c42cb684cb337347cbc42137449be26bc15d71e56a1b0ae54b8c2de3dad111c6e05b28f925b81f292c47382559c18c5537ab00a2bde2ff9626d154f7958f7e

Analysis: behavioral3

Detonation Overview

Submitted

2024-06-13 23:53

Reported

2024-06-13 23:57

Platform

android-x64-arm64-20240611.1-en

Max time kernel

47s

Max time network

163s

Command Line

com.xinxiu.pintu

Signatures

Loads dropped Dex/Jar

evasion
Description Indicator Process Target
N/A /data/user/0/com.xinxiu.pintu/app_mimo/mimo_download.apk N/A N/A
N/A /data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk N/A N/A
N/A /data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk N/A N/A

Queries information about running processes on the device

discovery
Description Indicator Process Target
Framework service call android.app.IActivityManager.getRunningAppProcesses N/A N/A

Acquires the wake lock

Description Indicator Process Target
Framework service call android.os.IPowerManager.acquireWakeLock N/A N/A

Queries information about active data network

discovery
Description Indicator Process Target
Framework service call android.net.IConnectivityManager.getActiveNetworkInfo N/A N/A

Queries information about the current Wi-Fi connection

discovery
Description Indicator Process Target
Framework service call android.net.wifi.IWifiManager.getConnectionInfo N/A N/A

Queries the unique device ID (IMEI, MEID, IMSI)

discovery

Uses Crypto APIs (Might try to encrypt user data)

impact
Description Indicator Process Target
Framework API call javax.crypto.Cipher.doFinal N/A N/A

Processes

com.xinxiu.pintu

Network

Country Destination Domain Proto
GB 172.217.16.238:443 tcp
N/A 224.0.0.251:5353 udp
GB 172.217.16.238:443 tcp
US 1.1.1.1:53 www.baidu.com udp
HK 103.235.47.103:80 www.baidu.com tcp
US 1.1.1.1:53 zeus.ad.xiaomi.com udp
US 1.1.1.1:53 api.github.com udp
US 1.1.1.1:53 share.weiyun.com udp
GB 20.26.156.210:443 api.github.com tcp
NL 20.47.97.231:443 zeus.ad.xiaomi.com tcp
US 1.1.1.1:53 ssl.google-analytics.com udp
GB 216.58.213.8:443 ssl.google-analytics.com tcp
HK 43.159.233.95:443 share.weiyun.com tcp
US 1.1.1.1:53 file.market.xiaomi.com udp
GB 2.19.117.68:80 file.market.xiaomi.com tcp
GB 2.19.117.68:443 file.market.xiaomi.com tcp
US 1.1.1.1:53 sdkconfig.ad.xiaomi.com udp
NL 20.33.39.99:443 sdkconfig.ad.xiaomi.com tcp
NL 20.33.39.99:443 sdkconfig.ad.xiaomi.com tcp
US 1.1.1.1:53 f2.market.xiaomi.com udp
US 1.1.1.1:53 f5.market.xiaomi.com udp
GB 99.86.114.105:443 f2.market.xiaomi.com tcp
US 152.199.21.175:443 f5.market.xiaomi.com tcp
US 1.1.1.1:53 sdkconfig.ad.intl.xiaomi.com udp
NL 20.33.39.104:443 sdkconfig.ad.intl.xiaomi.com tcp
NL 20.33.39.104:443 sdkconfig.ad.intl.xiaomi.com tcp
US 1.1.1.1:53 diagnosis.ad.intl.xiaomi.com udp
GB 172.217.169.68:443 tcp
GB 172.217.169.68:443 tcp
GB 142.250.187.206:443 tcp
GB 142.250.180.2:443 tcp

Files

/data/user/0/com.xinxiu.pintu/files/libcuid.so

MD5 9110b1bff0308eea24d008b2a3f8a3fb
SHA1 843cf3c3d99e51dd01b06e4c8dc95c3daf195701
SHA256 ec8ccae7ae853c48bd2e7bc1bf9c2c48b20d3b24ef3874b915a4151c58725a42
SHA512 97494e1c52c9b10e142744ca20e693dc190333fdfbbb0e6201c27284c73809a935f0056eaefc6922a560155034e32a32c4f15ab1a5888c3e0e7b3687a7f4d307

/data/user/0/com.xinxiu.pintu/no_backup/com.google.InstanceId.properties

MD5 bab1c93fdd0163ef3ec300b70d3f4918
SHA1 408d6b5db440224a07712dccf6c4b35cec2965e9
SHA256 cf5dd835e254c9d98e7b11aa3b64526c6178f4eb701ae4ab88a4db0b059e5b00
SHA512 9b52110a18ffeccf9bf465d0dc0497ad55a960dd0ec0702873b1f609e83bb31cafc382415feaf8f0c8c952cd1ef019cd33e8a9c707680a582028fb6a94d71e28

/data/user/0/com.xinxiu.pintu/cache/image_manager_disk_cache/journal.tmp

MD5 8c92de9ce46d41a22f3b20f77404cc1d
SHA1 8671a6dca00edb72be47363a7071be65cf270373
SHA256 68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274
SHA512 30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

/data/user/0/com.xinxiu.pintu/cache/image_manager_disk_cache/journal

MD5 6edd45613af10b41d84cfc8f15108fdb
SHA1 ed07872b09061737d30db8346bd1f482ed0c6600
SHA256 bc0e82dbcd96fc01fa8db8c6e52ae509bf9632eeea1a8478bc317470ccdec56f
SHA512 d091f13279768f85153691677c561ebad1a64573ac7895dd1e9eb4ca98374f656b422f7099ed20f8b8e288c3c18acae8cfa99ec3b249b0428abb87796d3e8b1c

/data/user/0/com.xinxiu.pintu/cache/image_manager_disk_cache/d954831f74540359cda8057b10d581ed0603edd3d9b159830b0e483971467ea2.0.tmp

MD5 ec862bbab7802625d3622e2c679223af
SHA1 2b5ed3cde986999110748f49f352afa138a8dd96
SHA256 f380f696961e2d1caae334374f127f39329a80247f1f1488c666abba553e9292
SHA512 106e68faa122f5742a3b8b5ba2764c76cd314340cc4d4ea4deaa4b4744d6daeefae3b95c10bdccc30f72fe8d09322f0a8b716d3f5ace44620a71ee2460dacd33

/data/user/0/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 d90cfd824cfbbbc4533c8357533a2676
SHA1 52ffebad97b70978c82a5e106b4dae0be3fba8e1
SHA256 5cc80b5bcbb73420d54fb8fe04254b58e961854833e9bfaed05a9dd9e8943efb
SHA512 46fc833cbfb6d1031a3e3a68aa91e7fa8a16c74184f785ae41900125d33f77b108765040268346ad29923c1bec98456b898c42a7695eb229e8a9508051662e04

/data/user/0/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 c9703423717dd228c5f7dd8ec6b21dc9
SHA1 41b8ccd3d2517802926b6030062f50796761b274
SHA256 43052d6ad4d4514100e8c0cd66dc48c5e6c4bec7e20fbe4ddeb42d6c81ab8fa0
SHA512 a4f95afe7c681939c17c44850d7f10f75a108086926ad0628ef023b1d70f029a2b5a78e1e5bcbe17a32fcff6fd8e916d20c52f061b0701cd4457c201ead37e57

/data/user/0/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 95cfeb39d3f30196e0a8466b301c3680
SHA1 86f0bbf4a8b7bb231e5ef486f719b9a9f6e23f45
SHA256 b5837dff9906c7a3284593e0124e009822b9c6fb1b8cb11b1f564e08a75cd6b0
SHA512 8c57b714566b52c64853ac2247692f39cfa3cda7c9143d6590f068c52a43a67812fb5ae1d86d72613b533773584878e38b99f4a9cf1ebdc59eca2ff803e878c0

/data/user/0/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 b4cfc1ea28570e23c95a5a5e208e79f4
SHA1 d03cebcf9e340f66112953318b56c95cf28183df
SHA256 e4e4354f4eaeb021f8b69bd0da2b5cdc82dd7d258be46387f1c9a192547af1d8
SHA512 cb4f7281912db511a827b11f5f8c8bcfa77c886c3cbbbddc16cd36e64fe328a116ef722e3324a5faa7f95135ac51d0269b25416a37d024642296b38f700929d5

/data/user/0/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 0486ad99a5c0becc01e9634a07ad97b7
SHA1 0adf55ede5c20f8cb94542d155ee845b540ee1ef
SHA256 bf8c697c4aa6096e65196a48080fd1c3e8d2de34b095fd624822a0f18f86ec99
SHA512 1789e122dffa889a42a994d000592ed9f267a9d1ae2055f66892babbc38f7524a48c289a6ba2e87ec2913d73ff4f9551a988eb213a2e650424a72fbbf92a5435

/data/user/0/com.xinxiu.pintu/cache/image_manager_disk_cache/1e6ac2b06a3a3103f1ed39ce62de7a07014a72fb34aff2993380d2c10ccbba1b.0.tmp

MD5 151dbc8a615047876b70fe8924c864ea
SHA1 238de2574d2505a665b428f30af2730639e82c5d
SHA256 23c39509c202bbe6cd0f6b8f5da9ca64d749aee9efcd59c47cbd0ce2b04b3900
SHA512 5a64499f8ab617245e80374c97c83f0b8bfa150efc58a3a24d9446d4eb6db27b2ba967ed687f104cd77cdcb7abb1f9c08c667a84d8770b74debf10acf73b9dce

/data/user/0/com.xinxiu.pintu/cache/image_manager_disk_cache/81c6ec67331ebc58c34620fc28052c33484cc896591772c4eecd53961e6b217f.0.tmp

MD5 3f56459d0f294c4c9deaf289d3a06afc
SHA1 d7c694a9d799a62385fc87aab03762d43aa620ec
SHA256 0d83ba26153674ecee931cac0e7e6f46b9efe17357f43f3c25af19ebd09a5d53
SHA512 2fe6be2e329d4553690525e754488a2611e14ffbfc71472da3ee479d647ca967fca70846e07c853004dad33d187e287a5fdf61e85c3d53cb9869b8adae9f18e8

/data/user/0/com.xinxiu.pintu/cache/image_manager_disk_cache/1090206adb69ea1a09691f1deb8d42da75d98d50fa46f853c88f51419f1ba8a4.0.tmp

MD5 8bb5e289314efc10d26018fd9591fa8c
SHA1 e39a4352ecad15f6bd8aad0b595367a1bd554fbe
SHA256 671c02ac550c8856feb66e8f5888b8c54cb24b2b48e51fcfa3cda32a8664dc53
SHA512 a9cea6869ad510a2ac54ecc129b35ae0f55c6e3517dbbe472b0fa729de849b3665903444cf3ac586d11c7ba943bc110bd7f8a71abad816a833cae9d2875de9d8

/data/user/0/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 a1265e5877dcbb6be6364a18fc46a279
SHA1 41e1de9f90bbf0b95e3f8c73c34216c5bc64af9b
SHA256 513e861770d54157a01a4fa367c51b8263d0b941c13cb2901b04b64f83c26442
SHA512 5bbc7351de3fd63c63bcf287905bc6b7e3e81045b33d546ff0092a3ece5f783f643dbf50bd27711ffe7a5c527c42131608610f5430a1ebc813101b62e0c1eb1a

/data/user/0/com.xinxiu.pintu/databases/google_app_measurement_local.db-journal

MD5 ba8c3a0c004f943eb76bc9c9c035894a
SHA1 947a728fd0b5b04bb3138cacb280a058d8906016
SHA256 73ad6d8b0612cab29c81e27f4c950fc108c136906c3eedf23b4a44fb33d2db1b
SHA512 b68b8ef588c2c23f240ef4cf2f8810d1622ace7c822a9ed05725b808b440ba4aeea0ab126d880c9e758b76e5d4d173b86e98c4e43022832bd8de47006a49838f

/data/user/0/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 1e95abeaffe32a6f0c9800a033e2f0e5
SHA1 6d7110a999cfe0cf8cd7b27372668d620e7c012f
SHA256 36db564020fb3bd2346d078ff2eaee051ba27d0df44c5405f2d17cb8558d7f10
SHA512 1b2ec87ce5a67d140aa70fb13605f859b5282390c34a3df62104e72b77316168f7dede303496ae188c66b5cfa7449c60650584408b6b1e51570384639f35fcd3

/data/user/0/com.xinxiu.pintu/app_mimo/mimo_download.apk.tmp

MD5 3e86b24cfe8ea3644e3a6bb2f3bc75a1
SHA1 7881136fb412166d04ad5b6c4fdb9550a66fd99f
SHA256 1b01837a2b9004309bff95248adc60d39ffdadc90e52ebf645b2c5ce76f28bc7
SHA512 40ec714867b4a3e0aaa920abb648f331ce43e8bef442e782eff5ebaacb1052785e681c23b85f6ec50bc4e57e5b9924e61ca4fd72589f810ce8c670b5094b612b

/data/user/0/com.xinxiu.pintu/app_mimo/mimo_download.apk

MD5 c526c06b92f76ffbf2bd3232f1053284
SHA1 0e9d0fbef236f8807f20d9a14c50ddfcc1736b52
SHA256 fae59c9be4e17b082d213c4ff1c7873cc7175b28f7c6664f8e8aa8280489017a
SHA512 8a4da38bce8ae67d3e8de8ce44d63b0ae96f9f12321bc8f84b623a0fbc5ba4f7bb87b18141dd8a64227debef3be72f58b0b76636c5d71a217891f78f3397831f

/data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk.tmp

MD5 771fec16708ba01a54092a540fb0c2e5
SHA1 0692bedf423d86056187fbd9a399111d7988265a
SHA256 0d3a196df1b7c5d0a7c0e522fb72527a4463872d68e58d339f0e90606336a745
SHA512 f2f799a838c4fa869ce350361172ed5f925b8b94b25019913c899feb4ecd671fffd8cb5a9eebd63722a28d537223622bbb83c65675ba425bad2cb0b8c3823445

/data/user/0/com.xinxiu.pintu/app_analytics/analytics.apk

MD5 0ac8e0f35a5c78b20da7e3b50fadaf93
SHA1 1be28eadb0fbd40483b22947b85b4be2156c735a
SHA256 79a2d70e007be422b7f23db1bf2e3e4414155e37f316e5d4c8ea113368b9b17d
SHA512 53dac74b8fcfe64ba781509348e5a3443a718e25a9b3935e3e34f2ca720b4afc411dc09e40bd3bf94e21512cf23cfa2b0fd7e9b0dca871669ebcae8d8ca6c914

/data/user/0/com.xinxiu.pintu/databases/analytics.db-journal

MD5 b5bf02037bd683743c46e87c0520c75b
SHA1 a765e3f0a01b47bce07fd48e00f011e0532f4655
SHA256 7ec3a58e98b61d26975a98103b32f59db9ea2bf8a3a50c4e656f1e1346b75000
SHA512 7a54408754ee6f475a5b419d3129d12ebe02d73ff81d7dfb9965de41910f26a9e32f3050881a41c6155c4e6b97dec36981664d52e0284633164b049aa542c36c

/data/user/0/com.xinxiu.pintu/databases/analytics.db

MD5 280450e4ac6790a421b92ee28405117f
SHA1 32ca338658deb700074af2606f36b8c97c249875
SHA256 ed9aee2cfe41f590da293ab2f0f77adf28e2c96aedd9e04f6b02cb10120efc0c
SHA512 0348f70807a66043b203602806bae2e556b002afc5cf31355105c31dec1428ae1bb1e942b806f2f308d87fef60a6f33031538736b9045f3a2b5c8d3128d53c57

/data/user/0/com.xinxiu.pintu/databases/analytics.db-journal

MD5 d9845965ef5b23fc7fd05a0ec8cfd479
SHA1 c9b7719e8a8a228dde4a091edcb00419919575c0
SHA256 f1b89d7f769abf1b3a249d809b60a5962cb3886dba78b2199c76f8e8a661cc2d
SHA512 cf5fb6c1fb4b2eb3666d7aefe90606d2675cd31b6b635cf7263eae459707d59f069e02b517bc5f0330200f1c0c301e76eee8c600b6863d76174b433666532bf9

/data/user/0/com.xinxiu.pintu/databases/analytics.db-journal

MD5 091fbc92b1cb3a52c507b0e7f33afdde
SHA1 666f9198280bdfd35838a2dff80d7d937fda5e34
SHA256 8e6fcf056d69f92dc48e6fd1ea0b9da5d348b4ae732959b455d03a8a2e7a713f
SHA512 5bad402a5b78b27520e8b614e71f50e934476cfd8322eafb8fff9c7a045e0b94f49d5863e84aa39432cb48867054d17dc7489dc56f2d9e55d9c5983c21bfa0e1

/data/user/0/com.xinxiu.pintu/files/54db829f09424caad69f7fb9350fa48d/policy.cache

MD5 f0326dac3bd2b30f8d216ca46622eb2e
SHA1 e34cdf9529a96288d206b07c5078afb012be5b7e
SHA256 c59de2f2197323aae35f444e18f7f5d7ae2967cc486b0297bceaf329ef8dfcb7
SHA512 b91250a4e5cc4c2464657d7d625a3d19144b321fbc091041bae340dd8f7a27712dbc0c5961d50bc039471014c568fb06df9b8305f20e4ad08c65894e56b4c49b

/data/user/0/com.xinxiu.pintu/databases/analyticsv2.db-journal

MD5 a930f92adaf80d326a128fe53d3230aa
SHA1 63679999957d77b46586b37f528018ea076311a6
SHA256 36a0706650477aebe594086a690219884a4c433a73427d16e569e0ef52f22a52
SHA512 29eb30269fb75c06477bf83c4d6d7cf9aeb5b3e731de06d05827c7e6b58270a6505712805f9a4967d417917190639313f7019daf8c4ed09f189113c4c5605665

/data/user/0/com.xinxiu.pintu/databases/analyticsv2.db

MD5 332f4666ac6ab883431f54aa6a8fdb88
SHA1 a8864dc7f9c5a40cc466a1a70d87be90ebed93db
SHA256 5b0a421ab65ee299ede67c57aad92cbdd97c125ff8a66618550907451fdde28b
SHA512 c33d754886772550c87e78687664fd98a2b474d35b555605ee05337042f96f00824d150922872cb46a0e583da68b46f18511e994af2b6193de7148933954d9fb

/data/user/0/com.xinxiu.pintu/databases/requests.db-journal

MD5 493b038ad6c81585efb37e5cf83c91b8
SHA1 ff4bfc0174fc7128262318cc9ebfa86b5c5e78fc
SHA256 821419c1486a12ad69ece50a585763df299653001e6b56fef87dc7339cabafbd
SHA512 2deddb9589adcb26541036259873ed57d5145d09592bb0e32a38e889c8aee4f3b125861e8ad38fbc1f6d5c280ca90c4d3f7bd0cde20cc8c4c6f5551d1ddabcf3

/data/user/0/com.xinxiu.pintu/databases/analyticsv2.db-journal

MD5 027f29a6339beab928667491d2347288
SHA1 096e796f96007364b019d7c691d8d3fc83f8ef9c
SHA256 b5c2fe13b61d81d10557e1e50260cdbb4faa5cbf4920bb96d2196b4665d9554c
SHA512 e95d6f85b442a71ac737cf598c7d8efcef29c1c59233237eccbedbdeb466967d86745db6704d32e0e7d99dfb83ff8c210b8a6acb85e3d8f25d2497562dfdef20

/data/user/0/com.xinxiu.pintu/databases/requests.db

MD5 102fb2adeb52b4db7c082608864c5a97
SHA1 5f9e3d27721e2c9b1baf031cf3ce222cbb5c3965
SHA256 c301bd234cff21ab968a1f857d1707ac6635ebc5a68e567c612fb224a890305d
SHA512 3c875d10ea5874c9e15298948c27a104ad7846cc8b29347ba7033eca0259f72ccb1be5b79b4c6c49d2bc0b9b322a5194e235a6dcaacbf751d92700826c40b466

/data/user/0/com.xinxiu.pintu/databases/requests.db-journal

MD5 d67b84a8b4ddfe0f01d0c8a61776e601
SHA1 5e3277bae1f576d3c82c7834fb6da0bf4e370ac9
SHA256 6071397afe32e6fbe712a7c373e04fb31fcda6df39ebb8f5a87af02bbd762d26
SHA512 1c08b9bdf40a20d19ba5ee3c31e0005ef519beb846fe55c32ee85b76bffadffd7a80ebfc6853251e44e3db5e3e4ed1dcb2aaa070dffb12244eca60eae29320df

/data/user/0/com.xinxiu.pintu/databases/analyticsv2.db-journal

MD5 5e8c5a5e8e09c7257379f3bd520fc1c5
SHA1 5147db660ca587df92cb6f5bec37938123e42d39
SHA256 892879b19955d058fcc977d7b534c80e556199b824408978b658f864dd1722c1
SHA512 fde48254a506f6fb2c06f3126c0357d717b93ed93ad7c0e0229060ff3635743dfad028ed6bf130d744d93cbf1576e29af8c608d8a12d38e1a0a16ff01012512d

/data/user/0/com.xinxiu.pintu/databases/analyticsv2.db-journal

MD5 b2f3a3b7fff435f96804795c53b42e3d
SHA1 64a5b8864639e8e2ca94ead0f36a0f9963ff678b
SHA256 d7e72eaa1a4fcebc22bcfbf761a55f381df6ae3f42a7b1ee14aa4af7fda23237
SHA512 246ef9d75fbac4daa343ee9cbe58bf2e940b4862c25624ce473469e489affb0a58166f7df13191576412b4c6fb7b535feb87790c297a63e47f962e1f20d463e7

/data/user/0/com.xinxiu.pintu/databases/requests.db-journal

MD5 3fe108b9ace0024f2112bdfc43a1e182
SHA1 704c1a95d190aaf916c02cd0513c1d69c275bef8
SHA256 0df4033da0d01fac6130e201003e3cb8f2b2ca6f50b613f966595991bf05279d
SHA512 cdbe7be2e08dc0da737bb95143625ec76ecae01179b539045efabee327c75532d67699e8e035323cbd1bf76a7edc908d85b54cf27386dd22bf9dc173a2eb8235

/data/user/0/com.xinxiu.pintu/files/a194a0a7214f6cbda0672045c51505d1/policy.cache

MD5 04ecedd182ec514d1a60d8d2ac199148
SHA1 3cc41071881e11ef4a5e8500ba83eb91e0502aed
SHA256 690fff1587a5f29c71dd12bb95f7c8d0d25518679ef90c9a9adf8c69ff5f18bf
SHA512 27a2e1ea979a0c3568064028558da583b72cdb5133442cbd5434c497ba0d2ba7a0a0445dee5657c4ec277af119b820371e03ac4c799eee93731b12379c491837

/data/user/0/com.xinxiu.pintu/databases/reportServiceDB.db-journal

MD5 55de53a26d4116f11f7c6ec5c57b00c2
SHA1 9d1160ada60af6c777e1faab56e1617ae97f277e
SHA256 0b8f7f7a72fc5b586e682167ea7c00f5341c84e07a8424f005ca5731a00a528a
SHA512 fe6bb05df75a3a19dd862d7ad606c20ecca0805340c092ef8f3ed06fbef6a01142046ab505ffdcb774826eae56d92830f31cd6916b27d580b911a11f27c938a6

/data/user/0/com.xinxiu.pintu/databases/reportServiceDB.db

MD5 1da58588dc6b4112e4e48d2ac8308f89
SHA1 acc116d1261b050e39fb86ef5b5b0b751a9c8273
SHA256 b1a77836fa43c15a03728886ab604ed5f333eb3b86614169dafa1c419657a39a
SHA512 5623997688231eea861e7e769298a951a5ea6ed3e46ba05ed2b39fbbdabc8d604e0b423398821051cd9b502e46de14cfc36b1b65696926852f8cfdabd07cc3fb

/data/user/0/com.xinxiu.pintu/databases/reportServiceDB.db-journal

MD5 8244cc88945fab152da93bac04b4c43f
SHA1 6e59695dc5b16befbf9ae834411a25e1b9fa625d
SHA256 b1dcf2bb9c5f9e09459f1d7017a72a97bea65a8c1b32b81fecf2c0de8bd4099e
SHA512 bab8cba0dd2d12f916df888cb34604a7fe15f68bc0bdf17986fa807cec41d6cff73bd6d0d988e61f5a2a44f28be0126a1c69318baaaeb5bc02e2cca017228808

/data/user/0/com.xinxiu.pintu/databases/reportServiceDB.db-journal

MD5 c1c2aeceb7cfe55970c2d16b7ef051db
SHA1 bdb1dea73a58567d09eef628bcc265ef6d857597
SHA256 fafe4017737df73ea0ec699f5d54f04bec0d472393deda91949e7472917c3c4f
SHA512 ca580c6183825b548f3bb4fdefc91d7f41e59199d6decee904821c563ebe7759ed024ee4c3521546361fe80252f154b406c6a4eabe92e2a28e99e029fb28e63b

/data/user/0/com.xinxiu.pintu/databases/reportServiceDB.db-journal

MD5 5930918550b04ff6693537db9b47a132
SHA1 d32e478730a18781d880808d0954da40e1ef1d24
SHA256 0444a828458baf5372c36df195e8600b117b27453e4f69051120e7940921504c
SHA512 0f46cdcfc2ef94e6f190c8a954338301168ab3a53789453ef4c56394dbb5f8ffd8b33e00d07d9f85bec7871b629c588829fc582b21079af0019df4760782e9d4

/data/user/0/com.xinxiu.pintu/databases/reportServiceDB.db-journal

MD5 c7d02be4cbca59713e3e4e7a7417e87f
SHA1 59abccfab369353907ab5795bfa0c14ca277bb27
SHA256 63a207e5fe5b24b77a5c48d0e3596c8645ef72314f2dcf06186cb0bf2213d46c
SHA512 bc7e3170e3d90d3c48a0b2a4e2f5909378cdb961ddc9049987a82f38b76bec7e50bc03b4e716dbae521024a8413341dbc92e9c8c1bd822ed16fcd74334cf8fa6

/data/user/0/com.xinxiu.pintu/databases/analytics.db-journal

MD5 e623ca475edcc1d508da0cb0c7c837da
SHA1 bfeedd207945e66917fe9553ae5b7964bf163e18
SHA256 4228296132ddf02f03d44ddfc68150dd06f6ee5feec7ca0ade7e615ee0abc5b5
SHA512 91852511b77209b6c5da778d31d5929e59541d4b162e6b24fde5ad1dfe6ed0d2a68971a6b9aa481993effb3eb4fe3496132db83848f35c5c07550ff7bc9117d1

/data/user/0/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 30e2ac713e455974a3d831c7f0aeb75e
SHA1 4daf6430a178243e141658aa7cb60c9841e5654e
SHA256 5d3319ce51121bb26c881d33b11baea483f8c19d42b07fc114172560de23e02e
SHA512 2e729c381aba704a10510e508bd2821abb19d094023ada7b8e45c678e803fcd87355820bed3b34dad5b98785974c08fee26633c7ef1ce725a506b5075ee7734f

/data/user/0/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 5a0b06b150e991615e8f6573083079aa
SHA1 d778dd9e49b38a8660305fe72592791168d31f26
SHA256 15c51e91816b544a7d73f5c88e3eaeba4b1399973ec4134e8c4fa53b8c35efa1
SHA512 340d0feab8e87e7b03bc52554470f5e0895421d2274983f21057c66f855cf9bccfbcdcb729c5725f5ec7ce9d250125f54b96b3cb239b94bc4c792b5268c3adca

/data/user/0/com.xinxiu.pintu/databases/google_app_measurement_local.db

MD5 ee9816cc9fc4fa2dc212501085e5e41f
SHA1 c50a7aaaace76d3e8df6f6501337dd43ff273fdf
SHA256 d63c2546c25db9d9046e3992ba58288f65e55271fa568c3a49f9cbfc9b484335
SHA512 a9339367eb6a73552270a658a0866107fdfae941875980b4dd7b29212b19d7c07a19fccd36a093f42248e26936c32fa713bad6c32daa1656964e5c7ba16ecbff

/data/user/0/com.xinxiu.pintu/app_analytics/oat/analytics.apk.cur.prof

MD5 1805f6bc5a2aac24b098b39b8a5b7baa
SHA1 79fc7c3b19855ea541fe97f19a43d70775b2a3ce
SHA256 a019eabb412c287b4399b6d2989a745b0579531ea13458f9a7876e168b9f09b6
SHA512 f9bc1c7a1ad97d9893f14f591869f0e422e833ed2360d432a67a1d5f28ad30b9de0bf0c38bf5be7633edfd5bfdbf62f59078e226105ff30e0831384afd41aec2

/data/user/0/com.xinxiu.pintu/app_mimo/oat/mimo_download.apk.cur.prof

MD5 01fc9eed3520f4cee01423cc5e2f400f
SHA1 0a2234ca0fe0a8064eafa8946d920e4673e38dc3
SHA256 f2238595fbc9de529af1d8b5f6507605485f463f8974b290d6c26e1efb034b61
SHA512 af2c59f04a3aa2e14ab45c00b56d3791048c8faa6375a7a928b4d718cbc5a1400ffdab3ec8d89b0a88906bf7b174f43b4c154ba6c395a021611fa7bfb384cc08

Analysis: behavioral4

Detonation Overview

Submitted

2024-06-13 23:53

Reported

2024-06-13 23:53

Platform

android-x86-arm-20240611.1-en

Max time network

4s

Command Line

N/A

Signatures

N/A

Processes

N/A

Network

Country Destination Domain Proto
N/A 224.0.0.251:5353 udp

Files

N/A