d2510f1e716c596dc74c9916f7054ed185fffea956b40faac0ba3ccb960f7afe

Analysis

max time kernel
148s
max time network
156s
platform
android_x64
resource
android-x64-20240624-en
resource tags

androidarch:x64arch:x86image:android-x64-20240624-enlocale:en-usos:android-10-x64system
submitted
21/09/2024, 12:03

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

efc04ade17b84a4bc1f48e548ca58e3c_JaffaCakes118.apk
Size

31.8MB
MD5

efc04ade17b84a4bc1f48e548ca58e3c
SHA1

aaee98274a1b62e345d12d383f5a82d795f3725f
SHA256

d2510f1e716c596dc74c9916f7054ed185fffea956b40faac0ba3ccb960f7afe
SHA512

729d256fa9dd76753009c5f066317a73dece23a905ad9bd184291de9faabd03a8fd541f4ec3b98709e8b3b6cc1994b54afd1029bb2eb5b8deeafcde141a5ceb2
SSDEEP

786432:Ui/yvZ3ERQTw9mYMDqf1UXDKeWPQye0x8muybkTP:Ui/yvZnw9mYgTKNP3qP

Score

7^/10

discovery impact persistence

Malware Config

Signatures

Queries information about running processes on the device 1 TTPs 5 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.xingjiabi.shengsheng
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.xingjiabi.shengsheng:ipc
Framework service call	android.app.IActivityManager.getRunningAppProcesses	io.rong.push
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.xingjiabi.shengsheng:pushservice
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.xingjiabi.shengsheng:ipc

Domain associated with commercial stalkerware software, includes indicators from echap.eu.org 1 IoCs

flow	ioc
25	alog.umeng.com

Queries information about active data network 1 TTPs 3 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.xingjiabi.shengsheng
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	io.rong.push
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.xingjiabi.shengsheng:pushservice

Queries information about the current Wi-Fi connection 1 TTPs 5 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.xingjiabi.shengsheng:ipc
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	io.rong.push
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.xingjiabi.shengsheng:pushservice
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.xingjiabi.shengsheng:ipc
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.xingjiabi.shengsheng

Queries the unique device ID (IMEI, MEID, IMSI) 1 TTPs
discovery

System Network Configuration Discovery
T1422
Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 5 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.xingjiabi.shengsheng:pushservice
Framework service call	android.app.IActivityManager.registerReceiver	com.xingjiabi.shengsheng:ipc
Framework service call	android.app.IActivityManager.registerReceiver	com.xingjiabi.shengsheng
Framework service call	android.app.IActivityManager.registerReceiver	com.xingjiabi.shengsheng:ipc
Framework service call	android.app.IActivityManager.registerReceiver	io.rong.push

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 1 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.xingjiabi.shengsheng:pushservice

Checks CPU information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/cpuinfo	com.xingjiabi.shengsheng

com.xingjiabi.shengsheng
1⤵
- Queries information about running processes on the device
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Checks CPU information
PID:4930

com.xingjiabi.shengsheng:ipc
1⤵
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:4973

io.rong.push
1⤵
- Queries information about running processes on the device
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5004

com.xingjiabi.shengsheng:pushservice
1⤵
- Queries information about running processes on the device
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
PID:5033

com.xingjiabi.shengsheng:ipc
1⤵
- Queries information about running processes on the device
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
PID:5300

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.xingjiabi.shengsheng/databases/cc/cc.db

Filesize
36KB

MD5
0908e924aa236931dc7166fef6e00862

SHA1
7782648d6d8f6e835bd47058d4852932c096a467

SHA256
38f8548795ca7470b449dd1de9598c07a247ba59883c0764c9c96ff0b7d31d7f

SHA512
3c16fbc5172aed04cd206e776c46d26e911732c6e3631536410a71f1d217449475727ac9b3175e827c5ce645a1da9e05900258ee6ca27c936a9060f241361dee

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/cc/cc.db

Filesize
36KB

MD5
67c12933d1e0e63d9801a6aa43092ce7

SHA1
b6936908554e4a1986b8eb08289e2d3545e8ff74

SHA256
abda5dd4cc2e7dbb951637c4b49d6990f9f34411fab4dee1a387dbcc8e7eed40

SHA512
db8b818daa3ff4ec7678645f84bf8b45c809bcbb758ea78b28982d071572655bba2d20e6f1ca4f0d057ab34fa655c5bc40457dc65050180351a2fc04a47175dd

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/cc/cc.db-journal

Filesize
512B

MD5
774ac3c597091c73695d5783b8bb4587

SHA1
7e68a84fc60a57ba12310f21db9dc0239737687b

SHA256
2867bdfb797e2737b0331d9b1aec842c4c4db78713747e61a432149d1885d908

SHA512
55c7ccb5206d07ead7fa98c10909c5d33dd4c2da9d41ace2ca4d552d3312913060abae99284d03fa460d1cbf7604175fb0ff1792356b8d6654ddd3526509bd1c

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/cc/cc.db-journal

Filesize
8KB

MD5
75a97e531ca5762ba9bac755604c2246

SHA1
18cd0f7a2e05a63a7c7a44dbf9b6d630798c12be

SHA256
f47a444333a8fa7d80fc752f51533799c22b77314ce0e2f63c63a51db4ef3278

SHA512
6d0823b614adb4d66d870acbf3bc964665bc75fdc74d4adce12bf2feef74e3a0f0df7ba61e81912ec08cc2a7c564c64504e4af555da754a5cc854bfaed6331ec

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/cc/cc.db-journal

Filesize
8KB

MD5
e05b499945a5e587747329c02dbbadaf

SHA1
b2fb7b5ad528b12ee12aa33822c5edc48273c537

SHA256
83379ae22d5ee6134c4103afc10ed47f42dd74ea2a53be97bc78730d2d10c98f

SHA512
354a000dfc473c49398d1754efed79cbb08e04c582a3bd6580e52712669eed9af487f137daa350d370bd05ccebc478da085461572437d93aef342e857c3f9951

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/cc/cc.db-journal

Filesize
8KB

MD5
47d152c94af03edc25c2f3d6b4d65664

SHA1
5427d7434bd1dead7ddbe7b170bf20eb2dfc42d7

SHA256
6b2f9f0c47c1ff85317f048a470c384c6f4914463ecec10cb8fb383e6483d181

SHA512
a8ff592bfc849ceec6c497b090110c8107f2f81f0ca3d94540f600ed163f09eb237bc561fca76e99bc3be56682bf90489e3dba6a025fbd48bd0ca8199ff69f68

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/cc/cc.db-journal

Filesize
8KB

MD5
d341b5926c4fbb80dcc4d2bec096fafa

SHA1
73452e3ef7423586a5914b266c8549b022b083aa

SHA256
fa86f220a41d0263bfbe0393a236a746626d5391c1984e6f436052d8353822be

SHA512
2638fd5eed07598a72bb7930dd795e44431becbf260264f4bbae9fed06031394b8cee1d17d1be58b56f9905f4f59c89cf3617b67decd1288c2e8d55456c1cc00

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/cc/cc.db-journal

Filesize
12KB

MD5
501307e0a3e20c1d487594d1e9ad5946

SHA1
15773a5cca544f62989ec480102ea4ffdc80fe86

SHA256
40e119461a72f7106c60bd5220288ff49f268e9ade784a9b1517e3aff4f70e93

SHA512
9f8a61c2baef011f0cacdd9f3668e18d2980e732d56f9e060cb4e2365daf2b18c6f3461b1319e7a99a22b8925f3989c666fa898f33ee3a63fc163bf2490a3239

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/touchActive.db

Filesize
20KB

MD5
a75b5f57c3fbba792bd7ac1054fc647a

SHA1
9deefb3a03ca015afd5eb60a57fea16758f2d4bf

SHA256
be0ca78f3b5aa9b04609ed3b0bedd6400a6de9e72289476909d584a49ead8eeb

SHA512
38224d757eb18e22440e0426f48a2063e049126bcf3ba60e36539c7650ce6ee320b56709d4de7fd662825c058462e4cee83cc12861f8cf428d759b0834909eeb

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/touchActive.db-journal

Filesize
1KB

MD5
8cb7c89792fbe75589aff62ef4d4e603

SHA1
1a70dc9943101f79d7d2c5cb68fbb28658077b93

SHA256
b588389d2bcd384a1dcda97ce2a9edd2e932d549f1eb4b614357c2b27702ff90

SHA512
cda5b4ddd5ab013d32c7f0efe089725559c8ee8ddc08cbc6ec3e20e5425cbd3325facd3a2b20b5e88bd3f6f4137b59fddc261eefcbb5c7a08654fde097777e1e

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/touchActive.db-journal

Filesize
8KB

MD5
d6ee2f84e569a85d9a7799cb2b34a272

SHA1
92b526ad03f88fb1a87d1b8371f09d4cd7e47de8

SHA256
354ce5b4b24486d33bda5cdb1d51d041e0c0e2fc779ac42d3ad9aa071a7db838

SHA512
b316313dead0cfde79dc37e5df8873a88066300f2c45ce332a27626e0b65dea733b539f7b73c62652af2394f5ff6456bc5de914fa7657287e369e1b70ba4b73d

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/touchActive.db-journal

Filesize
8KB

MD5
0030c2dcaf08bebff1b8eee6d4f0204b

SHA1
605e488794bb9835f350ef44f7cfaa44adf52753

SHA256
185fa04a472c0a8e97074ef91d1f0e9ccba78c56bb2c766ff36922e6b49ff62c

SHA512
f16f39971c570507c068c9101e243b46fa6ea524b33e592fd4884ae06a8b8ccef5b273b109074e4f240b28f4d53d54ded42805544ccafe5b0e01aab09871c925

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbregion.db

Filesize
144KB

MD5
c5c8b4fc8d1ea85b7d45cfac09018a76

SHA1
34b1cdf0c55fbf994c6e1584fdf1f54bc057cbeb

SHA256
f39a1e2358576aa4acbba15786ba206dd234dba2269f4daa1d26f5983403f427

SHA512
0c749064409fc4846e3b939bb61207d82a7d06ffe298c7d175ebeee79c9d10d333884bdafe55fdf7a7d047f06e061c7fb1494f09795f2ccc3a345719ad7f8cdc

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbregion.db

Filesize
8KB

MD5
0b967ee43e61d967532f03c360a5fe03

SHA1
9d4f3fe280d9b5d3691c4b3b0ef0dc38b6e401ea

SHA256
033c38e19503a44340324c36415cef5981eba979ae2968b7a7da5e7a729c1db6

SHA512
8a4afd52c3f163001da06f9a91e4068e23504cad4785ae1db56cd713c34eabb4a9f7a91ce8040143b3f66eb858beeee454275f7b43072d80284de063ec5df8aa

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbregion.db-journal

Filesize
8KB

MD5
c7af43f49a108246e5c032fc93c10f3b

SHA1
50fb6a94d1ed013bfd13cf6a6bccd197a2593b75

SHA256
4a71c458e1c0df33b6e8eabbb8572edb6f20b14da267bf2670721bb5d1c720bc

SHA512
39cb03b430632e22bcf173642fb809c23cc62db7a36f6b2749568cb40b59b5578faf3a875d8554b49ac07444f3f457592f064c99a73a448cfeb0bf9fc03abd64

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbregion.db-journal

Filesize
2KB

MD5
2c3283c34130085f374721d009177016

SHA1
82471756c1fc64835f3de15f0e18a226f3067f81

SHA256
339d35b057db30259633d1dab99538f88f2f1f9e815787f6a7eeba043aef6799

SHA512
0b6f7d3fc0e5f2ab3542e3ebba42312ab9e1d03e51c15895e900b38d9299292bea92f0e29c629ae51cfc1befec78ab25e29532a710626bac248fa11de0c8ca3e

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbstartad.db

Filesize
20KB

MD5
e119647f45e2092656b1443239153bb1

SHA1
f64babccfe05b594cf2495b898c4f4b26ec2c971

SHA256
17caa76656b80579cfe5b286f71147d5398282d8335c9516f237104c49264754

SHA512
bee588ed46815ebc088a0ed7cc148d798061e8c4fa59ec19c12f52642e71f9f0e6889eea49fd200138ff1d052b67b1b75cee629db5b83472fd07001f6b1f9497

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbstartad.db-journal

Filesize
512B

MD5
ebef4b32b36280763fd09a2b73737d10

SHA1
a2e1d751414d348d5516053c4cd027f588f5ab26

SHA256
e49fe922f5817903b449ccaa446852efc2172fd128fb0c99cafc71bdc405eec9

SHA512
3e1e354c0dce62cf24e62df8a9494e1a1c3037f1d9c68cccfe66d2c72a217f3ce221cc2f2882c69654a779866c8407b7edc59a296da4e171f4fe4684ae23c84b

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbstartad.db-journal

Filesize
8KB

MD5
4248b8bf6c0b64ffb2e706c97b1a1928

SHA1
b0611a2fc504de62c2fbe4cf16d5ddddf8cec4e5

SHA256
f177864ad5e7d312acfd5152be786120b63130196842939785ae509dd7d81304

SHA512
09a7ae67feb9897dc68a90987092eb8d81135f05baa4099f0b677882fbdd79e5dd5369b8f59914aafe395f9fca746c1b2c1f61859bcc2a850f3a1641893dec80

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbstartad.db-journal

Filesize
8KB

MD5
637a78d0f598aea6be6278e7b7fc3659

SHA1
d72d317b6baccfd65a5cc00813a12e4575804fb1

SHA256
4033c11ebd48c5353394c04487d62033032e81051d1fa54ca6d8784a5258c0fc

SHA512
f873bdbaa42df24ab04e5d046412b0cc2fdb2b241b2cc3cca732c492d2cee306bcb75337c13803813b2b54594cb0c6ddb885fc5a3eeaa31fd3eab3c87ac5e5b8

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbstatcube.db

Filesize
20KB

MD5
283ff4cedddd6f13543278a2086f711b

SHA1
606ffb7ae032be051ad3fb442fc8aa0f76d1110c

SHA256
84b8b6affb1a9ede5d755c9a3e07ecfee751fa013e2ec905b8bc89fbc5a56905

SHA512
2c0d5027b339c3220460925560ea2090390a291f4aee9e61d9a5b1289c32f8e596a018e7ead56fa4d7df9e9fc9829d0611a309f39740e36c3dd7849480d87899

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbstatcube.db-journal

Filesize
512B

MD5
cfa34368d7802d9a4cfe85ae6edc0d1f

SHA1
383ff8005dc20ef93a61a638acd4948deb6cac0e

SHA256
8ba92db59daeb4d2effbbbbb094c48c99c52d68b099c3240f6639421010102ec

SHA512
cf30a2b208e114811db6eb23c43c399e0c43017e308fb989b9369890eaf8f4b57a585cc7c4ccaea3fd6008c4c382d1c20c52da1212d3e26b5d4ab2787e433e49

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbstatcube.db-journal

Filesize
48KB

MD5
fc8e4bb69ee7393e22e79a20f4c9aae4

SHA1
6fee113ed206e64fa6319e581a95e5bd59b12f21

SHA256
59e9f0a3a7c0011d8dfa2941ab80b515698ceddea952902e8981856effa58ffc

SHA512
c182072aade4861ad2083d104b755c2eeb4dd6e31dda136414dc0aa7782ce7c5bb9e612b803692d2d664b7bfd3012da9fe57b2e704cbdd7dd28f23a492767615

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbstatcube.db-journal

Filesize
8KB

MD5
8da76093974341bc951f2c01846271e1

SHA1
96fd4489faa7da321d993b7553192489f0ae6e69

SHA256
3c474f38b856d1ab0015b5787641488f0c581ca771934da31dd05119d3d5a41c

SHA512
28838e742b8be9883b9ac499938def4c163fa7d595cab363cbe2444daff6de19f70f6086b548e705bccc9c55bbb47464cd86fa9b1dc8173cf42d550ce6974576

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbstatcube.db-journal

Filesize
12KB

MD5
3e12e7104118af362520462b21adb020

SHA1
463ba588d5cc28007d9f9ed0bbd69010730d1f8c

SHA256
4eb560668695e03633e98298580dc81821e63994d8a56b17dd275ad8bfdb7b99

SHA512
3ab91b01ea305aaefda19d611c69aa95340f0ed26f399bcea067b25c3860d49c628a198b4ad48cbe499bb9a85fecf999fd47833e8fe4ce2498f2c1a2bbe37867

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbstatcube.db-journal

Filesize
12KB

MD5
54f97e077ee2576fb1cc80d2415d569a

SHA1
ffc91648298f449b8ca975eeaa3394b2118e41cb

SHA256
f48a0b463d94829dda9c0514c8a97cdfbe5aa6aac667e7a2478b2e7fa2a3a437

SHA512
3abce7ac6e3849a0119759a4b120145c5c08976375d8bb357d96b428340558b552f56afca837e9809498794de363f70381d8371d25f9becb72c49d9c6b94d9ca

Download Submit
/data/data/com.xingjiabi.shengsheng/databases/xjbstatcube.db-journal

Filesize
12KB

MD5
1a0bb2eef37dbfc99204403511002b27

SHA1
16bec66aed75911c498f551063e71f9813452d93

SHA256
176f224e153c646ee17e9386bfdfac8dd9d3e7ec7f1647bb9689c4cd6562fe2b

SHA512
180f6ded0fb23b7470912dd72c512853aa8a8d50a1548ce4fa5094d4dbc4adc5faf9a288d252ee55e4ad436439cb4ddb8040aa1290e537e5235ea38c083b49eb

Download Submit
/data/data/com.xingjiabi.shengsheng/files/.um/um_cache_1726920338664.env

Filesize
1KB

MD5
4361b0f959348709c51c0a15a7c16d8a

SHA1
fce29ec176895c69e0c23b8f784c4e85dfdaeccf

SHA256
9cfc94aa1905407654c630f3202527023a6132b2600c8e813477a821e0e16f1c

SHA512
96d736a1e5bce7079cb84ca1a0fec58867ceed18df7514076a2774231fc2220513f869bcb12b974be7eee511658d2dcaeaf0ac756d2811e970c966319e61b918

Download Submit
/data/data/com.xingjiabi.shengsheng/files/.umeng/exchangeIdentity.json

Filesize
162B

MD5
12f1de6ea26b80b6b1dd91fdab1eb2bb

SHA1
91e29e8d1466dc5c6bdb8528d9d84ecfee48320a

SHA256
bc3db82a9fa602a191ccbbf9cb670af8a02ad72ec5590d553ae178aa18dad6af

SHA512
1af1ffbb3d20cabdcae1a28d44faf2a46a23490e899350d486c8a7f71665aadaef6aedfca01b136cf7d8e31d1e484c0acb46be3a0dbd84042100f7ca5149f8a5

Download Submit
/data/data/com.xingjiabi.shengsheng/files/exid.dat

Filesize
59B

MD5
1909939c663685d06401e8b12ec00d5b

SHA1
72c1634f1367241937a121ef795b7688302445e3

SHA256
a03de1d792d2673c049a0961e293bd3c30ed14a87bd1961d0782282e546fab50

SHA512
af34676be2f5fd5c71049597bc035d68d2343a669760e978b83d8a2eb943627032de93cea804aa90223bfbd5f71ac8144096d49965065300a8cb9e9dedb2dd77

Download Submit
/data/data/com.xingjiabi.shengsheng/files/pili_qos_index.json

Filesize
91B

MD5
56f30a649f02052aa2b1fdf7dca861f1

SHA1
6de3d8e5146d563f2b85daffb60edd62dc9e52ac

SHA256
b4abd54dbab11c53f49469bb30ef27e42883fa62c4d50149a353f3d65390b935

SHA512
530c904446310d36cae5053025b31dd20adf0ff4dc60a8434f270639a6aaaab5852078f568b34e59898b7899673a973e88be25e57d713049f163ec1e8c817455

Download Submit
/data/data/com.xingjiabi.shengsheng/files/pili_qos_index.json

Filesize
91B

MD5
520bcc493ebe0019094281377e336dec

SHA1
25a1cd5f646804663d8c83f0f0a0fdfbd343bf50

SHA256
3018ad6f3de26932f00f2310c81ef68d47b9168da2b14f60a24c5efc1fc5d581

SHA512
0c8fe77f8de6e1447f97701adb8d456dc2e3282d66ec4fa80c29e1a150d840659c1dcf10ff296b9711c6bd802b6cf68fdcf856b3651d6ce235a72e35205be0ab

Download Submit
/data/data/com.xingjiabi.shengsheng/files/pili_qos_index.json

Filesize
94B

MD5
4ad58dd05a6c94f66b28aef3d719f1d3

SHA1
66c420c65a58a5c410c6194b0ef38df8770c8d26

SHA256
ac26ce11003b059c27a21dd28dd8a867b106a3d6bd1a74785f7231d775488472

SHA512
55c4887735e548cdcd10e5d62ddb222c09b2912810b627d52e24dad93b3b1c79b5529c35ddffab264b7206850ed829873e0da0826f80dddab7ce4a3fea0a41d4

Download Submit
/data/data/com.xingjiabi.shengsheng/files/pili_qos_index.json

Filesize
91B

MD5
b4563b9f79bcf2c9f27f8547300b3bfa

SHA1
a0ed0469c38a6c5d029191c8fdb38a63cfbf0fcf

SHA256
46fd6012a0d87bcde88c48657f76debdf4bf3ac49740504aca7ef67dd3a21119

SHA512
e921448a9a52f8a713431f281b6ca44098e8b158c03b620987d6ba641c1b03cf404b7322510e71e26e2be797e67afa4a83fddb3e03bcc069f177a4caa2b755a6

Download Submit
/data/data/com.xingjiabi.shengsheng/files/pili_qos_log.0

Filesize
55B

MD5
b22faa1625034838e78fa6f922bb2b43

SHA1
0818f24109ccdaa38a44d3227ad95f2e82818ab6

SHA256
f853c95ab2a7f6d3b767489bbe77d2921a9267ea003bb292ba98021ab24d9aff

SHA512
37c89447ad74ad98fd489af2112e864f0c8c650d6851a1aa01c1ee509d1677916b21d5feb9eee103ee8c110c1d4c810fa360c595762305ffe53c13a67189cc08

Download Submit
/data/data/com.xingjiabi.shengsheng/files/pili_qos_log.0

Filesize
76B

MD5
84a9b2607093630edc76a71faa5f0962

SHA1
aa663c1e3b377bd85de2bd06b57df8bd8f281aa8

SHA256
ec9cf905905881fedfea229939a55ed25f9f818345b36d7ae0238c4ac2c332c0

SHA512
13b6c0b7fc6166dbf96ad07170fb0a465adb0b674f9389e441fe4b7c9397e403f9dc76dd22d72c20e40cdcfc2a4e4681d29337a8aa2f6ec39817ad0cad571cee

Download Submit
/data/data/com.xingjiabi.shengsheng/files/pili_qos_log.0

Filesize
172B

MD5
2f98708c11e16f758b61b84ac5018312

SHA1
4bf86fe81881ae64aa00e81562fccee46af20e0a

SHA256
31695f8f626f24f2cea6c52635caf07af1deee24146ccfdb9a7774808333fe74

SHA512
4b40af1790ab7bbd0d60065c346226f0582081959c7c3be4780ad3cef90ce63430806270b0456c0f49cbfc6255d922f047db672ef665ff381395bce22d3918e2

Download Submit
/data/data/com.xingjiabi.shengsheng/files/umeng_it.cache

Filesize
346B

MD5
75fb9c820beacc264040ab6bdcec859a

SHA1
92ea38ab2ce9bc45842893fbb8b17e752de28618

SHA256
3e6affae35da80c2cdb6eec32135eb52e18b11a65aab21b7fe8f5e0fef368cf6

SHA512
12472a9ef609f715b53c35df26f3e77a6dfba0937675bb49091d3cb9277b862c9fd10ed2cce1d1a93a6070502fb2ff3af740913e8ecd1bab36c8a3b6db9fc8fe

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads