Overview

overview

10

Static

static

10

a3baebaf9d...c8.apk

android-9-x86

a3baebaf9d...c8.apk

android-10-x64

10

a3baebaf9d...c8.apk

android-11-x64

10

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    android-10_x64
  • resource
    android-x64-20240910-en
  • resource tags

    arch:x64arch:x86image:android-x64-20240910-enlocale:en-usos:android-10-x64system
  • submitted
    17/04/2025, 22:07

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a3baebaf9d5c91a34c7adc8435d069d0abd8099d0e38a177d4c6704b476447c8.apk

  • Size

    4.0MB

  • MD5

    cd8010eb4a1945384d673fa2ee24a277

  • SHA1

    8dfcc36d74e2b158d76572fdea955b068fda19ed

  • SHA256

    a3baebaf9d5c91a34c7adc8435d069d0abd8099d0e38a177d4c6704b476447c8

  • SHA512

    e42445d44454e3de4659c416a2647aafc5008b89eb62fe248770a72c2207742f8f8efa2ecaefe114eff12823592aa30d704c444831c0d46cef08cfd960804545

  • SSDEEP

    98304:Fi4V399CFmuXBlChb/+RvvRgP6tQ8aVMcHi3l:F73CcuRlE/+RWiraVzHi3l

Score
10/10
hookcollectioncredential_accessdefense_evasiondiscoveryimpactinfostealerpersistencerattrojan

Malware Config

Extracted

Family

hook

AES_key

Signatures

Processes

  • com.tencent.mm
    1⤵
    • Makes use of the framework's Accessibility service
    • Obtains sensitive information copied to the device clipboard
    • Queries information about the current Wi-Fi connection
    • Queries the mobile country code (MCC)
    • Registers a broadcast receiver at runtime (usually for listening for system events)
    • Uses Crypto APIs (Might try to encrypt user data)
    • Checks CPU information
    • Checks memory information
    PID:5058

Network

MITRE ATT&CK Mobile v16

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.tencent.mm/no_backup/androidx.work.workdb
    Filesize

    4KB

    MD5

    f2b4b0190b9f384ca885f0c8c9b14700

    SHA1

    934ff2646757b5b6e7f20f6a0aa76c7f995d9361

    SHA256

    0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

    SHA512

    ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

    Download Submit

  • /data/data/com.tencent.mm/no_backup/androidx.work.workdb-journal
    Filesize

    512B

    MD5

    68dc6f1b1bebe58a7586dce23758b2a5

    SHA1

    aee28b45c67cf3219cf82d10172b14ba3ef86976

    SHA256

    a56f2dba25c5602d245c00db99a9509b303664d5ed496c99b6585f96db0ea1c9

    SHA512

    144f78bd0032e2fb631380c809f56b8480663c41c4e7ec6f5cba515461020b0f486a084e94b820ae9bb648935597f39cf15425962047e0336306c8ff7d382dd4

    Download Submit

  • /data/data/com.tencent.mm/no_backup/androidx.work.workdb-shm
    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

    Download Submit

  • /data/data/com.tencent.mm/no_backup/androidx.work.workdb-wal
    Filesize

    16KB

    MD5

    f34a05190b69462e07be883ee007262f

    SHA1

    ef212e957ca4613e357f37ee0c90300754c71a55

    SHA256

    d4fa10b36c798fd0fd3f22774c6a94f42caaa1b32da4fd6675a35d5092044271

    SHA512

    9f3ef960ba2b58774e3ff779970ab14d444fcc871a3ce4dd40f9395dd8e9707a10193da92d91258e3dc5c20fde844475a760745953f95895d5d87d8114fd9204

    Download Submit

  • /data/data/com.tencent.mm/no_backup/androidx.work.workdb-wal
    Filesize

    108KB

    MD5

    7d6597d579c89aeb5d33182a129a889f

    SHA1

    327cf9d587c587c35d615fede3b88a16f31f51c2

    SHA256

    de242c665cc867a8cbbc3a5facc4f9cbef187af0b2be555082aed0d8efe26ea2

    SHA512

    ddc91ef7d4fbd88b66cf0d9d6c36aea49afc2e51b90b00174bb50d2e1e5e74c3ddb74734d501826a3880c4969ffb20a61ddce73b7ed6c0611e40ce8074d9ca62

    Download Submit