16b520dac5a65ddcc6ef62f6a2b26f99b3e87c056199b554ad64fef6aff88755 | Triage

Analysis

max time kernel
24s
max time network
134s
platform
android_x64
resource
android-x64-arm64-20240624-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20240624-enlocale:en-usos:android-11-x64system
submitted
12/09/2024, 12:35

Sharing

Report Analysis Logs

General

Target

360sdk_3_1000.apk
Size

1.7MB
MD5

1e9aa09b41624c4ab3dfa530fd1078e9
SHA1

32896aa59fd6f1509f4f46ec4eebb496658f91aa
SHA256

fdd2ac00ca6342d0ad1a684ab5ff6e683b2b56891ae08e6a16578892977e50b7
SHA512

9ec9ffacd3db5ab686eed1f68ea8f466030301cebb510ec3a9f3ffb6dc94277d4afba85a92bf7c3679c3fd6ecedad486fdc07adb152a77ec4ddce9dd943d40f5
SSDEEP

49152:ktqW6lW3LwyQmpkUTtjB0osrxHwD7lKHN:6qW6CLwQp/TT8rx6KHN

Score

6^/10

discovery impact

Malware Config

Signatures

Queries information about active data network 1 TTPs 1 IoCs

System Network Connections Discovery

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.qihoo.gamecenter.pluginapk.gift

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

Data Encrypted for Impact

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.qihoo.gamecenter.pluginapk.gift

com.qihoo.gamecenter.pluginapk.gift
1⤵
- Queries information about active data network
- Uses Crypto APIs (Might try to encrypt user data)
PID:4479

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Network Connections Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.qihoo.gamecenter.pluginapk.gift/cache/uil-images/journal.tmp

Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db

Filesize
48KB

MD5
b9cda44b742a6afcd3bd76ca7ffd0ddb

SHA1
5e2c46616222ed7fbe966f0977089c675c2881a4

SHA256
787fc5a8b1b0454f1e8357b2fcb110b750be9c0e3abb1a3a68a477523a64aed6

SHA512
6fcf7db6e131cbb626121f6db13925b65332fca564fb3e430bf98840a9f640d63bd53ccd0e517265114b009306e45546f69549f16547acfec5d51edeca234a6d

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
512B

MD5
57380801cb2b0331b83a218eafbf231c

SHA1
9d7c6fe4e867d228334292ec5373dea116d2fc90

SHA256
779993c62c92431452def7b7e6971955764d65893ad44de39f741f14c8c41420

SHA512
b0dfdc12b546799bab8cd9c457a04fb655c5aa97668c6e32b85cdc0a6a9eb633726137754a69f6aa332c549a64aa2ff10e2b49f8293f9703cac6c372d7805d7e

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
8KB

MD5
679bce7ba74a91ec93d24d0b44f4895e

SHA1
31eb111baf94c50a377eb28993a3322e7862e44f

SHA256
c31727668f2de9aa460264453289ba34598e580b82c6e07807d12aa893abbea5

SHA512
a82b5fb7d1d348125daca299ef6841c8ebe0a4f91a9f7f45c163a5e320535680a91d99ee17051b6a97b8f1da8e242d86ab3932b7af379613ced974bd68f7442c

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
8KB

MD5
d516d61e5787200ccaa35a5154b4a0f8

SHA1
7e3bf60c4b72151ea5108a87fbf5881057182a61

SHA256
7320606ea14d0f2d17cf9e307cdad77ea4c9cd11cad540a0991dc03ac1dcfea3

SHA512
348bc2a354283f6814a6a5c518c48aaae01e9e77905a91db71bf74dc8579123843e88659bae194d9d75dcdee7cf884d196c2509e7bb814c079c9c5e32c822fa4

Download Submit
/data/user/0/com.qihoo.gamecenter.pluginapk.gift/databases/gameunion.db-journal

Filesize
8KB

MD5
d4e19767e768c305fb239d6c48f784c4

SHA1
dd9c52b4ef2a995c85a5e9308302043d0e3f56e9

SHA256
12c34a8b18aaebe28730a2efc0b759822bec80e16d95c19409685d89a3ad8835

SHA512
bd0c9dbb8e3da99484bac250380d2cf845e8571d04538366e4855d5088ebaa0300d79d5f4f6881eab44b12c5115843f8039af4e993afb3c2225250377b7c1022

Download Submit