16b520dac5a65ddcc6ef62f6a2b26f99b3e87c056199b554ad64fef6aff88755

Analysis

max time kernel
33s
max time network
151s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
12/09/2024, 12:35

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

360sdk_1_2106.apk
Size

5.6MB
MD5

55ef179758e5171ea2a92dd4d11a4c9c
SHA1

d83bacb584057f2c7df1cc542e32f8378c138e66
SHA256

faed89c45158027242f03883a3780a908d2fe85ab8f6eeb965555dd5bd162962
SHA512

62712b9057f2e7cb126be44ebc6add954146c40d285fbecee05cdd15657713f3c02038856b29f7765d0cd6b442286ab79d8c24dd6765f61c81c75a176b0e403d
SSDEEP

98304:o/evivzzq2Xh2fcZYKl3BlizLVevgc93KiJX0k3FzUYv87gliVMmTbjZ71qts+eh:Gevivzz12fKBOogoVJX0Gvv87xJMheE6

Score

6^/10

discovery persistence

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.qihoo.gamecenter.pluginapk

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 1 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.qihoo.gamecenter.pluginapk

com.qihoo.gamecenter.pluginapk
1⤵
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4242

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/storage/emulated/0/Android/data/com.qihoo.gamecenter.pluginapk/cache/httpCache/journal.tmp

Filesize
36B

MD5
37e8e716e0e2f4a0b05cd9571d95b84d

SHA1
f8d068f6931707bddb8cd69f706f2224ad1fea3c

SHA256
7080cb592d5149c858b206d3fd0d5e3e7d601f120af00b2616bee928ee1291ca

SHA512
e62b850901835fdb73fa6224618422f721dd765861d42f6bc2dd013413e96bd910ac5313afd9b4f63da74beb12a15fac81b5157456c9caa3031862dab84423f6

Download Submit