a601ecd0a85763ad8687faae5d019d06656ebc99a06cb9d9568727c6b9d958a7

Resubmissions

19-12-2024 07:53

241219-jqy31swnek 10

10-12-2024 03:20

241210-dvvnhasjg1 10

Analysis

max time kernel
144s
max time network
155s
platform
android_x86
resource
android-x86-arm-20240624-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20240624-enlocale:en-usos:android-9-x86system
submitted
10-12-2024 03:20

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

dcc61ee1bdbff7e2b659bfeb6bc4b929_JaffaCakes118.apk
Size

16.9MB
MD5

dcc61ee1bdbff7e2b659bfeb6bc4b929
SHA1

0d213c8d396702cdf36f8f9295542d82470be639
SHA256

a601ecd0a85763ad8687faae5d019d06656ebc99a06cb9d9568727c6b9d958a7
SHA512

c4a1bb0b71f43868eaad6d8d3f79c4ddb93e87bd4a570fee9030e9a2423b964cd2956a92a0bd52ae189959e793844816e4526a57af9193c9fb78e078dec5a7c7
SSDEEP

393216:uPErRu8smLMNk8fbMlZixtPCffNHGQtqiVYVD/MofEWoTnsdTXK:YEo5PNdf0UQfNHDgiVQjLEfTsdT6

Score

8^/10

discovery evasion impact persistence

Malware Config

Signatures

Checks if the Android device is rooted. 1 TTPs 6 IoCs

evasion

System Information Discovery

T1426

ioc	Process
/system/app/Superuser.apk	com.tencent.androidqqmail
/sbin/su	/system/bin/sh -c type su
/system/app/Superuser.apk	com.tencent.androidqqmail:Push
/system/app/Superuser.apk	com.tencent.androidqqmail:Uninstall
/system/app/Superuser.apk	com.tencent.androidqqmail:Tools
/sbin/su	/system/bin/sh -c type su

Queries information about running processes on the device 1 TTPs 4 IoCs

Application may abuse the framework's APIs to collect information about running processes on the device.

discovery

Process Discovery

T1424

description	ioc	Process
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.tencent.androidqqmail:Push
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.tencent.androidqqmail:Uninstall
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.tencent.androidqqmail:Tools
Framework service call	android.app.IActivityManager.getRunningAppProcesses	com.tencent.androidqqmail

Makes use of the framework's foreground persistence service 1 TTPs 1 IoCs

Application may abuse the framework's foreground service to continue running in the foreground.

evasion persistence

Foreground Persistence

T1541

description	ioc	Process
Framework service call	android.app.IActivityManager.setServiceForeground	com.tencent.androidqqmail:Push

Queries information about active data network 1 TTPs 4 IoCs

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.tencent.androidqqmail
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.tencent.androidqqmail:Push
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.tencent.androidqqmail:Uninstall
Framework service call	android.net.IConnectivityManager.getActiveNetworkInfo	com.tencent.androidqqmail:Tools

Queries information about the current Wi-Fi connection 1 TTPs 1 IoCs

Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

discovery

System Network Connections Discovery

T1421

description	ioc	Process
Framework service call	android.net.wifi.IWifiManager.getConnectionInfo	com.tencent.androidqqmail:Push

Reads information about phone network operator. 1 TTPs
discovery

System Network Configuration Discovery
T1422

Registers a broadcast receiver at runtime (usually for listening for system events) 1 TTPs 4 IoCs

persistence

Broadcast Receivers

T1624.001

description	ioc	Process
Framework service call	android.app.IActivityManager.registerReceiver	com.tencent.androidqqmail:Push
Framework service call	android.app.IActivityManager.registerReceiver	com.tencent.androidqqmail:Uninstall
Framework service call	android.app.IActivityManager.registerReceiver	com.tencent.androidqqmail:Tools
Framework service call	android.app.IActivityManager.registerReceiver	com.tencent.androidqqmail

Uses Crypto APIs (Might try to encrypt user data) 1 TTPs 4 IoCs

impact

Data Encrypted for Impact

T1471

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.tencent.androidqqmail
Framework API call	javax.crypto.Cipher.doFinal	com.tencent.androidqqmail:Push
Framework API call	javax.crypto.Cipher.doFinal	com.tencent.androidqqmail:Uninstall
Framework API call	javax.crypto.Cipher.doFinal	com.tencent.androidqqmail:Tools

Checks memory information 2 TTPs 1 IoCs

System Checks

T1633.001

System Information Discovery

T1426

description	ioc	Process
File opened for read	/proc/meminfo	com.tencent.androidqqmail

com.tencent.androidqqmail
1⤵
- Checks if the Android device is rooted.
- Queries information about running processes on the device
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
- Checks memory information
PID:4311
- /system/bin/sh -c type su
  2⤵
  - Checks if the Android device is rooted.
  PID:4427

com.tencent.androidqqmail:Push
1⤵
- Checks if the Android device is rooted.
- Queries information about running processes on the device
- Makes use of the framework's foreground persistence service
- Queries information about active data network
- Queries information about the current Wi-Fi connection
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4468

com.tencent.androidqqmail:Uninstall
1⤵
- Checks if the Android device is rooted.
- Queries information about running processes on the device
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4509

com.tencent.androidqqmail:Tools
1⤵
- Checks if the Android device is rooted.
- Queries information about running processes on the device
- Queries information about active data network
- Registers a broadcast receiver at runtime (usually for listening for system events)
- Uses Crypto APIs (Might try to encrypt user data)
PID:4736
- /system/bin/sh -c type su
  2⤵
  - Checks if the Android device is rooted.
  PID:4817

Network

MITRE ATT&CK Mobile v15

Initial Access

Execution

Persistence

Event Triggered Execution

T1624

Broadcast Receivers

T1624.001

Foreground Persistence

T1541

Privilege Escalation

Defense Evasion

Foreground Persistence

T1541

Virtualization/Sandbox Evasion

T1633

System Checks

T1633.001

Credential Access

Discovery

Process Discovery

T1424

System Information Discovery

T1426

System Network Configuration Discovery

T1422

System Network Connections Discovery

T1421

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Data Encrypted for Impact

T1471

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.tencent.androidqqmail/cache/mailmarker_frompri.conf

Filesize
463KB

MD5
6877e15549d05b1f34e2a0606182ec14

SHA1
2d00c55c2edfa3a9dfa74ff14bce55b0da180a82

SHA256
6e10f00809f658384a2c347501ae5dc3b7dc10c56cbdf9bc9fe16059e687de07

SHA512
d302bbfd2da8efd49ab4ab21c32f9e9ce272dc2f49e9fb4aa96d73cadbe1b85f416c78a21b82f2047bf6c3a262ea2d6621859372a979483f9f0e8fcca156811a

Download Submit
/data/data/com.tencent.androidqqmail/cache/moai.patch.log

Filesize
2KB

MD5
7215a879dadd3184f321d45e4b8a915c

SHA1
03ef7ce5b288900b1fafe678752be29e05b2768e

SHA256
74228965987e97d37a01a28656cad3e2cdd3376cf070b416c769e8a836e6f66a

SHA512
1a649b0cf164dfee4161a48de78040492d3c30a2bc819f1c668a16c44d4f3d0eca107ae85bcf8d727cd545df4e5c9fd69c62e4ce47b424c8f65f2e2b68ef1c6c

Download Submit
/data/data/com.tencent.androidqqmail/cache/moai.patch.log

Filesize
581B

MD5
39e31283d406f171bcd8ad654b41446a

SHA1
51fdc3923d3ad25a98f4eb10c47966edc5a4b34a

SHA256
a9e260161869177e16ecb46f401c2f0228fe9ec6ff492dd9097fedfe6e8b9b97

SHA512
8553e3081a2974373b48341362c29db017077cb568be9b5bf1aa1ff784c54638938150125537f7461f2dffd3f3132297a41965f36af60f7e75a0fc2ab391ed61

Download Submit
/data/data/com.tencent.androidqqmail/databases/AccountInfo-journal

Filesize
512B

MD5
b41968a763a97bf48e78a4dd8d685910

SHA1
482667c78f8e3ba3d72a5a30d98c8d6a49b2dffd

SHA256
4ff66f33bade14058774b952b5a84732205630adefca3ecd3ec3aaa45ebf5f75

SHA512
e18524018b6ddf6c11e5f0c5503237d8a342b2f14e9e360513603aeba4e19aa8c6066c01d5fba705c758362f310ce7b58c4bfea98c8ab1dc2cb2b0f807827fb4

Download Submit
/data/data/com.tencent.androidqqmail/databases/AccountInfo-shm

Filesize
28KB

MD5
cf845a781c107ec1346e849c9dd1b7e8

SHA1
b44ccc7f7d519352422e59ee8b0bdbac881768a7

SHA256
18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

SHA512
4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

Download Submit
/data/data/com.tencent.androidqqmail/databases/AccountInfo-wal

Filesize
12KB

MD5
99341b84a2646384ef3b0ae63fc917a6

SHA1
3935e1e2ffeff26c4c95c98f70dc7fa3d2167208

SHA256
6e7245fdc7d53d047bb02a750cc937ebbf128d7ac34679c9d653572372ebb5e5

SHA512
37c82137a98faa004879c7ac180f1875a1782092e839aedd7597be544507e69c6f63949785ded21c1ff9b4e56223e3f084cb14029f3c4625abda7dcbfe03982d

Download Submit
/data/data/com.tencent.androidqqmail/databases/QMMailDB-journal

Filesize
512B

MD5
662e2b9adbf5a7887fb9472c5540d62c

SHA1
a6a27a02257116f573c405bc99d32416a367b959

SHA256
cf2ced706ca7308a586e2771b567285c73c89fb118f8fc57b32f375e5cabccd5

SHA512
e8b6741964280b8ed49f34e6b3be8c64a755660be2fbb6a7856cab54a710e3a6696f5eff95e53b632c4b73baaed99359fc433d897f06b8de1d83cb3883f16007

Download Submit
/data/data/com.tencent.androidqqmail/databases/QMMailDB-wal

Filesize
225KB

MD5
1ed3ae1dcc8cfb3978437577b8c1c059

SHA1
920dca98adf1215e853f7aeeafabf6feeeaa4118

SHA256
c52a24f0fc2bc578b5f8589bd3d39be06c0d7b26f1063a1d38fa72e7e96f097f

SHA512
f25a5acda2477544fe556923a0f037b13845caa94b8afd9dbc17780ef7cf2fd4dc34bd52f80ce1ed4db1357ef5426bae0b90e5c0caa78e3ad19ebcac44d73ee2

Download Submit
/data/data/com.tencent.androidqqmail/databases/QMSettingDB-journal

Filesize
512B

MD5
2348b4ee2d1d54becbdd0526705d738b

SHA1
611093eb2c98a64423fd06fe3ad2648ab5b39949

SHA256
8827b872a337a1bc282fc52f7f0532da5f6917780f20cecc027721d36df1b482

SHA512
4d0f4c94913750d5066ebc450deb959b23638003bb37ae8caf1d41698f5da769ae0c1fe29dea463eddfa22b43d48671d5b2f11a975b36bd153edc0628fa5a127

Download Submit
/data/data/com.tencent.androidqqmail/databases/QMSettingDB-wal

Filesize
32KB

MD5
bf1f217aad833484f91639725e28c3b6

SHA1
026f8dbaed7fc589d38376bc455c364c3dfd20e9

SHA256
f78c17d89a33c8717db7300014b0bab767d9784ec44f267866528d7a14a89fed

SHA512
829cb216e0aedd0fcc8999cfb53bd7ae05453535f5e3516962f97cb2205ae14751f51624bec2c2c65529c9d0dd76866170fa407e51fdb3824649e5e1e1ecacc1

Download Submit
/data/data/com.tencent.androidqqmail/databases/QMSharedPreferenceDB

Filesize
4KB

MD5
75381d62fc8f2ddae774a868d7635e3a

SHA1
ed55b43f39cf60134507782d75f5c9d86fd9c987

SHA256
b4397b381b384ddd4911fc3d4ae9aac5982685e21b39c7059ece50c37dabe28a

SHA512
3ea74f1ff79083dfa426b44ff814bcc0c652cdde4fad0e465f5c2c9f6912d548b0bf0954d7a245c5f0c41d8659867e6dc4bea058f28548ef3323992d23fd9223

Download Submit
/data/data/com.tencent.androidqqmail/databases/QMSharedPreferenceDB-journal

Filesize
78KB

MD5
32472c19abd6e7024c6d08d0fb5a48e0

SHA1
d8ad1800672dd2fa73a4fd1e8401791baf6fe18a

SHA256
68b9f9fc4b10ae7b5e8c590c844bfeac0a7cae85735f540a08756c709f34b095

SHA512
7f2875f0a8808bdc7a4d4c1f08c1f1fc80fe4ad518041150a2db9dd3a464c68a9ad5af0a577aab9f35211ec6cdf07b5544ed2b82c5dc865273b87b95754fd461

Download Submit
/data/data/com.tencent.androidqqmail/databases/QMSharedPreferenceDB-shm

Filesize
68KB

MD5
483e06119e35efde83eabaae035ee8a1

SHA1
af820e42d5f2ff80a5ac1f748a8d10f87fc3667a

SHA256
8dd5ab9846be115b7b373bc6b5c6a8962e0193dfc62e0823cc67f66bdab773dc

SHA512
05018750fdf655a5eaa6ce392e3fde94df055301acb60a5e3aab0b389804839840be21b12f548696f1e86b96b87c4a48fb794f50471f8e98f331d9ecea42c48b

Download Submit
/data/data/com.tencent.androidqqmail/databases/QMSharedPreferenceDB-wal

Filesize
68KB

MD5
e66ed6ec29491c9a2c48aa4d6fe8b2a3

SHA1
4ff7578a7b3d7bab73137d45c5e54c83076699ff

SHA256
88a6c5667480e52496c3ed1dfa07eb4f20e6f5ac523d1b754efc2f0a60173702

SHA512
e000309feee199010d2c2bc7fdf9f26090a699a33c1cc3e12873acf2d6eeee0f671e72c296faf8e14725026930798a655b71e15b1ac90099a8d3e4368c5fa652

Download Submit
/data/data/com.tencent.androidqqmail/databases/QMTaskDB-journal

Filesize
512B

MD5
8105c4573ff6d6b868a91076c064a6e7

SHA1
5a176469d379d27adf392eb118c21d8f9a835640

SHA256
d58d6051b04f8b1c61efadceae12dd5c2814b0205260417b7c4b00369083ead7

SHA512
58ea03be8f27eabacae3167cdfc9e1ec8c3ace88acb120f5d5343ac4f016b1387de6547e615b1dbdb9a3e918a25c0e2ab44d9c2d6fbe053c2f3065b2ba1137c6

Download Submit
/data/data/com.tencent.androidqqmail/databases/QMTaskDB-wal

Filesize
12KB

MD5
54c4efbb12a8dc8619be176844b9bd06

SHA1
9a24c04f936f4db98c13a4ca0c266648249f5e8f

SHA256
b20bf430bf2d5170ae0bdf3facc1cfdd716010928cac9a02a3c3baab4824d33b

SHA512
3328516f3c233dbe2415bf176e674ef00f6b5cecfdef2ea5993c8a11ebc9e60496b02ec7966f615a1f3271b714d17cec048692cf3a45aff713fc1c25a4c20e90

Download Submit
/data/data/com.tencent.androidqqmail/databases/beacon_db

Filesize
4KB

MD5
eb5e155bde3eb6be3ed78e79d70e7976

SHA1
c8d03cbdf602ca6d6faedebcb4d857dc19c2ceeb

SHA256
726663b9373a678f465eaefb34d2cf687df9d7efb5b9d6a17b53e8280f3f9078

SHA512
10680ef91ae7bf572d3c049112f061741dd82bfe7162d8195dee97dd5001753adca05537d8e87b1b90ef817c1f2b2e406d9f6d1350b607690878fc7c7af4bb66

Download Submit
/data/data/com.tencent.androidqqmail/databases/beacon_db-journal

Filesize
512B

MD5
f6df5539ee3ca2aa49671a01110b0906

SHA1
7e00df3ea73650d2524bb7bad63f9150c44c4019

SHA256
30e2a9a3076fb1b8ea1824b98f31acd8731e40a1dd225e68ca565da1b754210d

SHA512
32d42b8161e1918a560533d6f606082dc16d4a8d91d0c2cce639d3bea87250bbdc07e712f827fa0f9470f23a57f481c07f184b16ebe91ef65d2ecbcc73dd45ff

Download Submit
/data/data/com.tencent.androidqqmail/databases/beacon_db-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.tencent.androidqqmail/databases/beacon_db-wal

Filesize
124KB

MD5
efe91797fdb646747549c7cdce6b3bd5

SHA1
3e4874994a9bdd770d84538fa5405c6f79e7f75c

SHA256
a06810fa0c1c84f4373fb9df5e5ee25acf8ecf846c8d3e37325dd3ba5408f59e

SHA512
5df7d931e3edc79dbe6aa986b78dc3003a060e598d16e5dc06cb4e6908361b4c462ecdd611b5f7d02d172153b0288658176c6c1bf21d661ba31083953d9b88a9

Download Submit
/data/data/com.tencent.androidqqmail/databases/beacon_db-wal

Filesize
92KB

MD5
26bfd0e3bfe91793fd610c438bb56383

SHA1
3bd767c627f2cf7ddf1d863db3d35095aecded16

SHA256
27de566aaa4c0b2e5e2d4e8769d3f5d8e34d64a63fe4c1404b3aa74222885859

SHA512
d5e645c2147e3ad5617f2630583273c01941c5ca84f30360f7ebaadd87ac0bd12d1812ec35d66fba1c271140463193843fface20f9c9072add0b37ee71e6a4ce

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db

Filesize
72KB

MD5
f9e6435f3d481d5ca726b6bc3ad7491d

SHA1
1860e83d4473883a2790014de8b5bc62351e100c

SHA256
095ee1bfe90893faa58861d7bd74cbfeb063103101f1a2c60d95346c051a8cf9

SHA512
c7733cadaf80f9c904275d77bf13bfe5f762ca50e5a90401d1b2d2a3f4f1e63fd0b637eba9507a5f1f075ea3d99c9e189ae130aff7d5d29ba155f030bccb20c3

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db

Filesize
36KB

MD5
c79349ec1393a0e9d0ec486e5efa7e49

SHA1
2c6187c202ab03ec978c71ea2f93766f6bad48f5

SHA256
f992b737b12df4b51ed8155d5556b52bf92bf95a7861d43aeb418388235c6c68

SHA512
bb2c794aec96476e7760aebae9fe2317762babcec1c540ca3037a1160599aa09bc79b7cf5431a777635c033906d80ea58f21eb5f258918e8cf2bd05599956481

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db

Filesize
16KB

MD5
ec48369a01b1e09021f30383e9a84da5

SHA1
26009312e237db4b0523fb5f82252d78812b7ad0

SHA256
d085b82d18a8affa11f2d123c2d9b83385bc28fb96407f9ca09a2aa8352cdafb

SHA512
f06d0ce035300dba101e17110092b2fed533c6a535cad10a45e9e6681e02de61436864ccb4376d0108fb411c8cad5b5bcff2fca4156af41ff5b7070bfbca5f04

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db

Filesize
16KB

MD5
c5dc4c0c776665465028ddefdf6a8356

SHA1
26ccc6dca9bf84be074f3d50f28a4b795e8f45df

SHA256
4f32525f91c3561b8c6a2ef0267652cb88a9786a5f12eafb31024cba290efae3

SHA512
1465ea128d15c856b272c800ec7e7f5b1ce93afa2525a63eb155dbefba6e1ea4d0d197614cf1cb0dadb334fe39110d44cfb2503ab28bccdb7153b743214bae08

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db-journal

Filesize
80KB

MD5
bd9fc4e21c0329a7087c8fc06953f368

SHA1
f0d1d84b326bded96e3420df0f2054602bb600e7

SHA256
2b3e9adeca3b86db57b34a67d556f2960a3779e48156e90af35d28c21754a8fc

SHA512
94e391ef29fd953403070f708aaa06fb182db16752c1c986e1b90f0336fdf21d58c5ac80aafb4c06c3ac838158ed40e813b95b3b392d8d64372727b0d21ca60b

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db-shm

Filesize
116KB

MD5
5c58224fd2fbbbaa9c0215ad3eb3bb8e

SHA1
d15fa0899e74abcc3eac7a540624ef6ce2adb0e5

SHA256
254d03c4263e415556af9c0d7e7f2d362c5bc9053422f127f781f354d4a095e4

SHA512
e63e27c5884a76db0668e7a1cb47f8bb352cf18248ac186fd677e7de1a6e1a2575bd95d25577aa9691cf6a2926aebc6f7d0b497af24ae4863c3108ef83033b16

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db-wal

Filesize
445KB

MD5
b7fa42a9a18b2da11827d76a64394866

SHA1
7afd55a80f74fc54b292ed96121e9db0117bc467

SHA256
07e407e4a983ed1e3ccc64946bb7a2075370b24f02f59d9bac506fa87dd12085

SHA512
5ce0138921aaa18ade9d1b860b19b3f1da402b154cd8aca00f07194af3fec00f6d5c7abd45fb7852605af28185b286bbfbc075ae947fd38cf9d7b91bad7088ff

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db-wal

Filesize
36KB

MD5
7f374cdc67366ff90b9b5a8a68a4ca3f

SHA1
a40a32811bc90a6118f7b09307589d630390a2df

SHA256
44f29883b2a8bd7fac5d3cc2767ef2d5da31ee36bc40363cc83beb2f552f7331

SHA512
f07fbf890384be0397e9992b82a95c8bc7484d9b57f23fb34285c830e4d136a604cb6ac4522691dfcd74954ac10c613a04eed34c10afbec177a279739445b440

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db-wal

Filesize
20KB

MD5
a9745eed1bd0414ec4d4adac602f58ce

SHA1
23a757b738ecb704be4ff41641266759a9d70593

SHA256
75da6afcdbe32d80a1ef7eb8ec44d8d5b8d49281316969b606619dd2a32a2d77

SHA512
1fe7d9254afa2c9f6f302ddfcd8803bf7d533dddae5b9a6d834bf66337800d4dc1801d9af85b79ce137f5850fe0f8d2ff84527c17c610fcadbf5afea64b4e05c

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db-wal

Filesize
24KB

MD5
adfc9bc8a77135cdcaadaa07e81b65e3

SHA1
bb1c98b401b8f49f5f0a9da36e12c86b88b76c37

SHA256
c4360824a3d85f21656f40aa0197e5b9efe352bd9689bd9b74110d493636e037

SHA512
fef0387f2cc1b5fe2df167326b2b6fe1ca0b753f051ce8b4bfa19a6904366f5eedfa4a211eda0020ea4c525926265f19f037429a4108af1c17943f4884d5ef85

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db-wal

Filesize
36KB

MD5
e683a55894b3e5ffa3215e290eb75713

SHA1
579c1580853c1beffb25e5e14682c57309f01224

SHA256
0898975e63f0f62263d6634cfbc2a7d8393e5145fa8fb7686a46e3b49bf94195

SHA512
d2a356ee451bb87af3ca6caee6b41430131782c140c2669535d1bd2deff9e773853c3c9c9ac113d4b70ab3dfa508174d758d3625533f3fc03c019ba6ea00e26a

Download Submit
/data/data/com.tencent.androidqqmail/databases/eup_db-wal

Filesize
52KB

MD5
f979470d71320e0da9dd647231b449c7

SHA1
a750aae6e7ae74ce0e1e59042bb815e1266f8dde

SHA256
1b50bbbbb0d0fb549e5d61aa110c7d7d44b7373fc6c28b141bafdaf0c884280a

SHA512
b1993dae5b5cd8bde1e2eaccf47af240eee37ccd5f545e85f52e08179ff849d7793047cba24531a3639ca3e2b7491a34725dc87dce425bd7143c6891591fee51

Download Submit
/data/data/com.tencent.androidqqmail/files/did

Filesize
15B

MD5
e9b3218310730595d1c6c43e9d48e047

SHA1
3b0f94eb5363a120c6753280b04ba242aa3d9a0d

SHA256
573d6dd39e5ad0411e4f79e4afe2dbccaa14687a630267e9fbd5de9f6f919e07

SHA512
a29a1035d0da9a64055e4d70a6a0e32816252bf3d1a4eaae9c8c703872efd4c6c87d7fb7a7cae8ba3fca055208f30dc6c2b43f58e114dbf21439188f5297803e

Download Submit
/storage/emulated/0/Android/data/com.tencent.androidqqmail/files/tbslog/tbslog.txt

Filesize
537B

MD5
94acdc18bb8ea2ad08efdc760d65ea1b

SHA1
8a8d334d1b53c5ff9a1f0a6e1e5a9c52786c95c2

SHA256
514eaa57869305913e56292a07de0b42e7eaef59382f33f63b38db40fe5bb6f5

SHA512
481d065ea66120bd5caaac4e10717529d112e119c0e89c3cb9e5c2e41e80ca7f967cb80e1f32cb16021e3681510ae4588a2c6a84edaf75e798ec32f024ddee45

Download Submit
/storage/emulated/0/Download/test.tmp

Filesize
1B

MD5
93b885adfe0da089cdf634904fd59f71

SHA1
5ba93c9db0cff93f52b521d7420e43f6eda2784f

SHA256
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

SHA512
b8244d028981d693af7b456af8efa4cad63d282e19ff14942c246e50d9351d22704a802a71c3580b6370de4ceb293c324a8423342557d4e5c38438f0e36910ee

Download Submit
/storage/emulated/0/tencent/QQmail/log/qqmaillog/20241210.log

Filesize
32KB

MD5
f5ef64d9e4f3c0894e9a67ed16a84c42

SHA1
77c09842492248067658ba452933ffc3188b672b

SHA256
ae843b95223a59a12b00f206a1af5b26e916d1eacd9d52dc46db247b411888e4

SHA512
b4d4dc49d0dfe463323e77c9b19d0abfff7d6858dff2a660d5ca0aa2862fa7c962e0dd09214ced3b57253e653c0aa82010ade4d3c07d06a0d9c6f509957ce774

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Mobile v15

Replay Monitor

Loading Replay Monitor...

Downloads