Analysis

  • max time kernel
    179s
  • max time network
    133s
  • platform
    android_x64
  • resource
    android-33-x64-arm64-20240611.1-en
  • resource tags

    androidarch:arm64arch:x64image:android-33-x64-arm64-20240611.1-enlocale:en-usos:android-13-x64system
  • submitted
    15-06-2024 01:38

General

  • Target

    appzh.apk

  • Size

    2.2MB

  • MD5

    10a09b40e44a9133da2290cf96c441b6

  • SHA1

    7a92aec50d7c49f649247441aad628ba714855e8

  • SHA256

    a018cafd6a2fb9d4f0755475950ccfdb79927af61efc63e0a361d7b9a5899bca

  • SHA512

    054a4dde3898eceebaa839636fecd58d2851aa28c4f0b35454e74a2ed6e93d576654763972303e209520207eaac51ce1029addc00544e0120ddff9db1fd5a8d7

  • SSDEEP

    49152:TQrq2e43yH/Evmq159bUzCM37HIunO7engxGiLWiZSIxkgqDERO2:TQDe9/E+ATICOXnAekGiLW+dmDERZ

Malware Config

Signatures

  • Obtains sensitive information copied to the device clipboard 2 TTPs 1 IoCs

    Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.

  • Queries information about running processes on the device 1 TTPs 1 IoCs

    Application may abuse the framework's APIs to collect information about running processes on the device.

  • Checks CPU information 2 TTPs 1 IoCs
  • Checks memory information 2 TTPs 1 IoCs

Processes

  • com.erayt.android.cmb
    1⤵
    • Obtains sensitive information copied to the device clipboard
    • Queries information about running processes on the device
    • Checks CPU information
    • Checks memory information
    PID:4285

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.erayt.android.cmb/files/www/assets/base.min.js
    Filesize

    173KB

    MD5

    459bb4de777c03c978577bb4cca340ab

    SHA1

    f3610adc9b84d0a3d4c396e826fbe9c345868a98

    SHA256

    b5050a3e1c7190b6c3611c01ce0e5fd3f34216279ecde6a9d3da8621fff3b675

    SHA512

    5b65dcb01982523af35c215c67f75b138cb5db73145b62f78abb7a6291319713d8dd66aa955bbdc9bbf3f2e2315369fd05b5e48a633c24287f97608cd07ea357

  • /data/user/0/com.erayt.android.cmb/files/www/assets/dbf684af.app.min.css
    Filesize

    60KB

    MD5

    54e2869074c7d06e8510353330cba093

    SHA1

    620cd7328cbb516a8c4a84378b32bde56ac623dc

    SHA256

    facb233c3ddf389c45c12552fc84190ee3d2aa2612c97e98db56adfdb897c587

    SHA512

    8f55aff5551cb94de1f62fce9f47e484428adcfdf49abef64af06fadf1286fbd22bc0b591ca1267351aa109006ecb9c72165a37e2ff74bd09acf7c2579a382b6

  • /data/user/0/com.erayt.android.cmb/files/www/assets/dbf684af.app.min.js
    Filesize

    418KB

    MD5

    d0ba7cd052a7ea6169bc6a6f6b524960

    SHA1

    14112f8e9eef5cfce6610cc461e1b4d2f8f6cbb2

    SHA256

    33a52ebcbdc81140836ffeacb3755ef4c8096d9ae600a2bce6c258cff0e6c20d

    SHA512

    51b6af03e17c0f9a9af7c51d7118b158d632e99db962346a67bb33f5e6770757388bd9f302d7f3fd6515d18f359e51061a684b4e85aabbb0b5b196e83ec40e76

  • /data/user/0/com.erayt.android.cmb/files/www/assets/heatmap.js
    Filesize

    115KB

    MD5

    886938639e8b45fe8ce5217db26de506

    SHA1

    a994872636e60c7162cf733461272d6b987957d2

    SHA256

    e2b76ab22a9d8c14e1b624bce1d0632d2cac693e0f47030f10129937fda73fe7

    SHA512

    1a49da08515cf6913a34686f24eb902eba9715a984776a4d51ff263ba190851cb52c9b4f48b0c3ba24b0cc62406bb79bbe963b7a3c3669a7a68c804c7d0f6cc2

  • /data/user/0/com.erayt.android.cmb/files/www/assets/iconfont.eot
    Filesize

    7KB

    MD5

    b5e3703382dcc892160236e22dc3fb2d

    SHA1

    b5e3cc9f403c5ea79c59fdb0f4b8eec32ff03569

    SHA256

    e26c5ae8aa00b4a7b6b7384d91973afe936e69eceff277376942594e2940bd21

    SHA512

    3267d7b93f4b6b2748bc076187606d3e8c6e139e03f517ed748f507369bc439ebdb590a247c15cf00ef844b5831aa14f50898c887e0412ecf16ce6e1a593cc3f

  • /data/user/0/com.erayt.android.cmb/files/www/assets/iconfont.svg
    Filesize

    19KB

    MD5

    581f25c627a1fab9c3efc85d445e0935

    SHA1

    1dc243dc6feeacb12c241dc596d19328598d312b

    SHA256

    9116d5ba3fd58d0ab071ed20b149ac741ce190727cd80efb11ff458b41e0a89b

    SHA512

    ae4f1801961443cf824631b9ad322c0eb5af1bcbd8c3143d34d730ba224a2b3f1e383a7d0b6bfe073db47d538a30a0d3753980d0bb2e877fbf313f77dcfb0709

  • /data/user/0/com.erayt.android.cmb/files/www/assets/iconfont.ttf
    Filesize

    7KB

    MD5

    85238d721885dbeb41553daae1534606

    SHA1

    2e0e8f4af9848951e22d45ad17e41e96dc31e365

    SHA256

    695e3f28a7e2fffd2933e245206d8ef165ee2077cf915e3509ea08fe119a7844

    SHA512

    5d4e5bd18c3deedc06a0c2396242481a2627fda8f5d9eb78dce83223463eb29474b58c95af7968e168bb97731454319a1013185c42707a973afbbfb850af0e5a

  • /data/user/0/com.erayt.android.cmb/files/www/assets/sensorsdata.js
    Filesize

    57KB

    MD5

    d55bb8d470f95bf4fd0c0aeaf7fee1dd

    SHA1

    1c27265481df8ed80fc9756d111c12c3eb886f0e

    SHA256

    9be672ae664e58ac073d5d95cc35a6531a954d180852a11af3135130a6e8ad8e

    SHA512

    6e80ce6e078839f21897a60b244899b395feb2c3607a3fdba4e55cec654c8669490ecfb10d10d6759f8738e376304ea0a01c9fa43ff619df8397862cc68287a0

  • /data/user/0/com.erayt.android.cmb/files/www/index.html
    Filesize

    2KB

    MD5

    9cac08473eafb83a357996809971c2f6

    SHA1

    8acc929a5c458495fe74182b5afd2b6a1da83fb3

    SHA256

    4213d59b3ff7bcabb7457cb8efbe9a0c2c1ea44a80eeedae1e2fa132060a8eb1

    SHA512

    c5b9a672acf04449991ed90cd1eb667508cd6f680d6c13a67b3e296abbb36ba3bf6775d4c466b34614d83298753f14f4805f51a897b8faf68c154f0230ad17c7

  • /data/user/0/com.erayt.android.cmb/files/www/manifest.json
    Filesize

    1KB

    MD5

    ae398c6fa538aafa646881e772cbe24d

    SHA1

    4c1588299be31317f3dcfa3f7791f1e97d5f75ec

    SHA256

    18c738fb7c53df5c29f0b3885ea042ddbe07f54161276d846fd3d62b8f46bd38

    SHA512

    372a1163790c2d91da3ad61b7c7064a19a734114e446ca1701cf042d808e4aaf8067923cef663864d7ade8aaead29c7a9b89cb879bca63fd2ee81c7552564393

  • /data/user/0/com.erayt.android.cmb/files/www/zlist.txt
    Filesize

    701B

    MD5

    0ea3620418338de2d9a93ee4b59d97b2

    SHA1

    6621f513c009b4ae2ea9bca20da645f1c263b706

    SHA256

    b94b339b7c8c161d628cefe629c0e25f553eaf67e5263e0f9eead21360207215

    SHA512

    692cfa16d3ecdb4ca33e071c4d564c9dedac314450efa82413c19201fc9fc208b62e9488f2bf748ff9c3fe666603dca1629807deb03b78f4561a2b0a139cd97a