Analysis
-
max time kernel
3s -
max time network
159s -
platform
android_x86 -
resource
android-x86-arm-20240611.1-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20240611.1-enlocale:en-usos:android-9-x86system -
submitted
15-06-2024 02:09
Static task
static1
Behavioral task
behavioral1
Sample
a6b0972b2d9167b1d355865e9c7624a4.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral2
Sample
APPayAssistEx.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral3
Sample
UPPayPluginEx.apk
Resource
android-x86-arm-20240611.1-en
Behavioral task
behavioral4
Sample
UPPayPluginEx.apk
Resource
android-33-x64-arm64-20240611.1-en
Behavioral task
behavioral5
Sample
alipay_plugin_20120428msp.apk
Resource
android-x86-arm-20240611.1-en
General
-
Target
alipay_plugin_20120428msp.apk
-
Size
353KB
-
MD5
4d8c1c40475a91b04cd97d6dee1dadb0
-
SHA1
2c9bd64e889a62d9fc7500e0fccadd2189f27288
-
SHA256
7950404b6976f44329d1cb021b73b182e2e9e84e2f90e86e54dabe3902784239
-
SHA512
025c43eb79c5138cc4c44c67328fdc98c51163c97511a9b421580c54d023b1c05c3588a8ea0d6c220f40d9f7d69e86240c8abf6d3fccfcd5782087252a0b14c9
-
SSDEEP
6144:OIhfOSywkDqx9kvdacnCVRJqPq3JurJ2f3Rp5tPVKt9m8rpvCpCBJpN:OIpywkex9kla7VvLQQhtduNrpvCAvv
Malware Config
Signatures
-
Requests cell location 2 TTPs 1 IoCs
Uses Android APIs to to get current cell location.
Processes:
com.alipay.android.appdescription ioc process Framework service call com.android.internal.telephony.ITelephony.getCellLocation com.alipay.android.app -
Queries information about active data network 1 TTPs 1 IoCs
Processes:
com.alipay.android.appdescription ioc process Framework service call android.net.IConnectivityManager.getActiveNetworkInfo com.alipay.android.app -
Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
Processes:
com.alipay.android.appdescription ioc process Framework service call android.net.wifi.IWifiManager.getConnectionInfo com.alipay.android.app