303a4298c92a5c32d6685d5f82a8a4fcabf89ef98785fd881ca00c4cfd509c29

Analysis

max time kernel
16s
max time network
158s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
02-08-2024 20:11

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

36bf1356f1944a3b834abe304aa2f614.apk
Size

67.5MB
MD5

c0185e3d91f1b800fd256b670e771659
SHA1

12702426eb6411949221e4771a12760354ef4aee
SHA256

303a4298c92a5c32d6685d5f82a8a4fcabf89ef98785fd881ca00c4cfd509c29
SHA512

c959e82a142a072f20636e69b8adc70baec6cfd26eac2552dde65f976f1aa30c8280ee9fe164e647d51646eac22bf9a09f19a4e049381ef2f85b3be52bf4a934
SSDEEP

1572864:q01LG6wnZUlHVzy1/eCFYX1Xqmo4L+Q5o1AR2P1CuJ:qKLG6wnQHVTC+X1Xqm2JAR2j

Score

4^/10

persistence

Malware Config

Signatures

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs
persistence

Broadcast Receivers
T1624.001

Processes:

com.Yiming.PC

description ioc process

Framework service call android.app.IActivityManager.registerReceiver com.Yiming.PC

description	ioc	process
Framework service call	android.app.IActivityManager.registerReceiver	com.Yiming.PC

com.Yiming.PC
1⤵
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4263

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.Yiming.PC/cache/image_manager_disk_cache/539791b63e0f5f2eaf3b32dbfb271920cd4416b8a4e11feff6bbe60dd4c7a55c.0.tmp

Filesize
56KB

MD5
406ea17dbed821facab656262caa588f

SHA1
7624e881ff6fd3ceaeca897fec9638fe3ac1a5d0

SHA256
ccbaefe162ab9c0661efaf42d7f615034234b1c2b37457a272c1f1683c385dc8

SHA512
ef7ee337afc709fc0f5a6369ed78faa07ddca8203204459b266c799d892de6901959fec2716f8c234d64fe2e41e2c2331e46f672f38375ac470c3bc6e58b661c

Download Submit
/data/data/com.Yiming.PC/cache/image_manager_disk_cache/b22b3cd815318d338af8e92f7ffba2c4784f417dc7f863948aa23f072edc5f18.0.tmp

Filesize
191KB

MD5
ce596b1ed6bde5dde8e48bfc1a3039cf

SHA1
e4165e213ba41013b3a371e270ec37c8087bb593

SHA256
ddf501ad9222781bebeaeab10d54b3a0e93bd1050af7fde686133150d4c91142

SHA512
8c483d10fe310988c5a111124e6c010a39163116fd57430cc6052b4eab351ea02944bac90f9ee4159b5d1adf49444f661ef43debb4e8df7220add5afb4686d4d

Download Submit
/data/data/com.Yiming.PC/cache/image_manager_disk_cache/journal

Filesize
538B

MD5
31f5f2814fe1ab5ec6687bc85fb1739d

SHA1
ba5440a021f3d7dabb78e18330431c15437ad16f

SHA256
adfb68fbbc29543c9b3781eeceedca0061fcebdb97a2fccce3effff5fd2d514f

SHA512
4cde8153b101460f991764705fedfabd636b8abef2164f497ab0a4c0efd2812e66b9d8879f7c8a1cb028668d35b24e9787814555b88767e1f7658e33d856874d

Download Submit
/data/data/com.Yiming.PC/cache/image_manager_disk_cache/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/data/com.Yiming.PC/files/local_ad_list.conf

Filesize
839B

MD5
0203dbb5f4c176eee1b3bbb95c923bf9

SHA1
4a0e08985a05265bd71b4504a2ae74e5f7571942

SHA256
76265ad88cd7ce5da7ca56e06d4e20ac6b5a4dda1c7062798f8565d9d608698a

SHA512
77c2e75fe6858d4e28ba27242616cf77f55d0ab15f523eacf55d33b2d11052fcb661267fc412588ae9767630c39c1dfc0762584f6733c4fcb7aa916dada5fd26

Download Submit
/data/data/com.Yiming.PC/files/local_ad_list.conf

Filesize
839B

MD5
ab0988c179dbe41b3fe2fc1ea972e852

SHA1
46ba8e121a452cb12390bac2b083cd747e5a1318

SHA256
8adc2dd65f3a86735ec8467b3c9a9b28eb059575abe2f1af808e43126621fc91

SHA512
b05e3bd44260d8aa034e8acfab91cd013af430b879bc745eb68d987913e1985faf4a9c67e8de9d7346fdf88c3d22801c8a0f5242499b042b31f5a0b121aa1453

Download Submit
/data/data/com.Yiming.PC/files/playmods_pkg_name_list.conf

Filesize
121B

MD5
961cd964d4720bf3f600ecb013d043b8

SHA1
4ab4ee738f803db048e0344fc12029b46345047a

SHA256
97b698a1ff30a7758174180e5779ed154027131ba53006d70b92e2e26d6250e0

SHA512
6f9a6493aad4cba59dfb8d5d412b91b5e744572e4a648262cdd9cc53b93d325bf2437d1841dcec60fea75b2baa21435c357dcafb15a68b1baab1f0b6f9e64bcf

Download Submit
/data/data/com.Yiming.PC/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.Yiming.PC/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
caecc43c7f7ad7607775e3583e838bf3

SHA1
c65a9e735a86b0421bac3c5d11e703c3bf06095b

SHA256
8ff37c247a6efa954120bbdef8fe7543eface9448b3899a4fd8d69d21670a342

SHA512
bf3d618d6e97633102392e5078c63b8186e5f71d4ae6be3a125a8fe095c11af9b17dfb67347dcfc4b29e4617f66fb6eae60cc837067c91126fe39a184502b05e

Download Submit
/data/data/com.Yiming.PC/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.Yiming.PC/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
15371a215d9f86d903e946855b46c1b2

SHA1
4bedf568af75f8db86922e385039b7062ea22d16

SHA256
f6ff745575fb8614e19429621b723aa52b5001fbd2dcc39a57f11b2c3f3957d6

SHA512
2d401cf9b19fb420bfb3db6d5951abf10d111c7534b53b0dc0adff68a66f827078d143daf5da74d92466c9eec975563b60d1766df410e00b3083554f337145fa

Download Submit
/data/data/com.Yiming.PC/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
f527bf24ca160a6aae615a0af573f40a

SHA1
dca8417775c1199e2845fc05ecf1e2d43157df47

SHA256
40d5cd384d5949db6b17a120e18409fb12eb779446e2aa67ce26a5db12d44660

SHA512
3f8ac4f9a688162302537dc7bfa8105ab1550ca3b5d980f0b2f9d3f97b932620ebfeeb3a9fa1620b69c1e02f9372956367b29418a5cdac27b83b1f407bb50550

Download Submit