Mobile threat intelligence for the masses

Try a real life example of Pithus on TryHackMe: Android Malware Analysis
Search by fuzzy hash

Results

com.flyersoft.moonreaderp
3d160ac329aac842c2e9086306a9599a0643262f08e4a2b9789aa8a85c6cd658
Moon+ Reader Pro
Version: 707002
First seen: 2022-09-21T14:21:53.149010
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
net.onecook.browser
c769735e47bf2e74d3f2dbac300e4a8b7713fb16a6471726437a5da74b9af8d0
Stargon
Version: 143
First seen: 2022-09-20T12:51:44.164524
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
info.plateaukao.einkbro
f3315d547be5f3cce7b129b5c5d46f50a7d42e271627e4a2843f5a677e92d894
EinkBro
Version: 90700
First seen: 2022-09-20T11:21:55.305924
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

1/64
video.player.videoplayer
1c6bff15258bbd61cd53de93f18f38036df71608a0fdd97afbb9fc184a25fb78
XPlayer - Video Player
Version: 231400
First seen: 2022-09-15T10:48:54.616793
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

1/64
com.flyersoft.moonreaderp
e94fe0f6403d143a4186f6d2034ad73b127fe9c9bfaa0047b68fe34f4cc3648f
Moon+ Reader Pro
Version: 706001
First seen: 2022-09-14T18:38:48.353609
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: High Risk
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Similar samples:
cn.com.supermonk…
com.instantbits.cast.webvideo
2b4fc384168882985de51d72544f1ab5df4edd739aea7cd8531cd0dfe56bc84c
Web Video Caster
Version: 4522
First seen: 2022-09-01T18:43:15.634111
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
com.saggitt.omega
7dc6b446d03001612f5e633a66af62209b20cb062a2d8bac45d39366f6c1c2df
Neo Launcher
Version: 926
First seen: 2022-08-31T15:34:40.292841
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
com.estrongs.android.pop
b1516e18ef6fd9c9e2301d8fd0bb6ed19a35a29eb959a29f23326027e107e200
ES File Explorer
Version: 15005
First seen: 2022-08-31T11:20:05.181682
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

1/60
com.hss01248.sencedemo
316dca84ee2ff85fbe39d3a02daeffebe3b2ad4eff452d2bc53c5c1a6da7b2f0
aku internal test
Version: 1
First seen: 2022-08-17T20:28:21.936943
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
com.dirror.music
7e60008857f8d373bdc96d670aa4873480e9e23a7038a469e8d9a3862f889f94
Dso Music
Version: 760
First seen: 2022-08-16T15:50:32.310550
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Similar samples:
cn.com.supermonk…
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: High Risk
com.neonthemekeyboard.app
ed994104dfea8b7f4f2ae6f2df4809db5c9a0b9e295af97f50fcd4fdc7e54b31
Neon Theme Keyboard
Version: 10
First seen: 2022-08-12T03:58:50.829172
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

2/62
com.jonjomckay.fritter
018d81aa1e7ebf883dcf6fb74e0219e6fbd2536e446fda056378ed294bb13885
Fritter
Version: 202201231
First seen: 2022-08-10T08:17:20.437902
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
com.shuc162.wayc162b406.lu91
42ab3bbfb8e3be5aa89cb30f34eef6e3b110080eb1aaea60231b18f9951b0bfb
红豆视频
Version: 2022072903
First seen: 2022-08-09T12:38:50.883664
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
com.tiqiaa.remote
9ccdc8d361d6c82b64037bbae41f62332ead7b7d019d3dec0a72f92614f4e099
ZazaRemote
Version: 482
First seen: 2022-08-09T06:54:25.346159
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: High Risk
com.super.clean.zaz
acf7a3cd43958ffb8e816b12f6cc023fcb7426ebdd8adaeb1a6360d26b357e64
Super Clean
Version: 13
First seen: 2022-08-05T09:50:01.451968
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

5/62
com.tree.game.actree
311e194d12986b0178ca1c97bc25dd7a5e856448e1ff761358bd7cf68dd120a1
Fortunes Tree
Version: 11
First seen: 2022-07-31T11:43:57.747169
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: High Risk
com.lenovo.anyshare.gps
8b7a62b3755d90cd3c1c4309b9ef619d6af31d9f4c99694105d229e252c9d26b
SHAREit
Version: 4062108
First seen: 2022-07-31T05:19:14.868801
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

1/62
com.tdo.showbox
8f269e01027bc6d61fb53e0acabf2d08aa5843e28091bed706850c674d3bda8f
ShowBox
Version: 129
First seen: 2022-07-25T20:34:26.793157
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: High Risk
com.saggitt.omega
f49927ed2c655fa4f027c0be15c1878a921cda3d1b36dd461d84bb933ecd139c
Neo Launcher
Version: 922
First seen: 2022-07-25T19:12:17.315102
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
com.egostudio.clean
8c91bd9aca7880a09a59c791596f7939d9afa306dbfb10d23d11ec1d9fb89d20
Super Clean
Version: 22
First seen: 2022-07-25T12:28:52.641350
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: High Risk
com.noxgroup.app.security
c8548d570a99ca1606e1d1fc7adb3a9a26738cd297db6d0af6d8df8380d4b0ac
 NoxSecurity
Version: 257
First seen: 2022-07-20T10:19:40.440452
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

1/63
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

1/63
Similar samples:
com.cbi.refah.re…
cn.wps.moffice_eng
4f25febf3818e7f04ec59c01abdb83820ef5409c3a9a038f8d6a78a73481ae8a
WPS Office (Kingsoft Office)
Version: 97
First seen: 2022-07-14T01:41:52.880658
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

3/63
cn.lmfq.mbyjiv
3665a7e23364dc475fd11fc6ab4bb7cebe4e996369f2cadfa80041da4addff82
秒借贷
Version: 394
First seen: 2022-07-07T07:18:04.312180
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

1/62
dbkrju.dbyiad.nbtqat
fb0d20016c3c0974cabaf459d607317a6c951687039205acf37707c290fc14e1
如梦居
Version: 23
First seen: 2022-07-05T08:51:12.747781
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
com.xxqp.dz
e6b19f420db90c4c607a3cbe3da712571b1765ffd15f4cdbbfe2a20cb593a2c3
雀神山庄麻将
Version: 25
First seen: 2022-06-29T10:26:38.495099
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
com.ticktick.task
0930fa9f32df25283ba3b01bdc8dcd5c114bebb6131104bc18ad548143dbe6b7
TickTick
Version: 6291
First seen: 2022-06-21T16:39:37.143415
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

9/56
com.aspirecn.hljzhxy
d34893b77f3af29da5ab7a8d55e890206090a6426a3f4425c3e3bf1f81b2bcdb
黑龙江和教育
Version: 1
First seen: 2022-06-20T06:37:36.888795
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
com.google.android.webview
28557497477e7318243acad1d880a2085a0e438c74569a65af6d63c8edaeb200
Android System WebView
Version: 500509900
First seen: 2022-06-13T13:49:30.185139
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Similar samples:
com.cbi.refah.re…
com.estrongs.android.pop
1c8bec216248b0f2a41767c67e0dfa73420f70c56105444eb4d1e54797783ee9
ES File Explorer
Version: 10168
First seen: 2022-06-11T10:59:05.996643
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: High Risk
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
com.sophos.smsec
98c80b9a02ae236de21b984abbdd838fa19088a4a67c861e791b6bcf199135f6
Sophos Intercept X for Mobile
Version: 3495
First seen: 2022-06-07T23:49:15.300896
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

23/62
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Dev.ArmaN.PortFucker
ab4f0fd23b6fa98ff76cb6f930b9fd4462f75e8380e19965a2b7ec9fd35c5754
عدالت همراه
Version: 1
First seen: 2022-06-02T18:39:00.179511
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Similar samples:
com.Blue.JkOurc
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: High Risk
com.intsig.camscanner
265479ed06b68288594dcf017cfa7c9f99470ec93e44c3ab0dce725ed6962631
CamScanner
Version: 61587
First seen: 2022-05-27T23:13:40.787474
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: High Risk
com.Blue.JkOurc
eea0ee99a833ec8b673f6b6b4943d46df26aba4a1fbc0bb9f383c51c6fa1f65a
عدالت همراه
Version: 1
First seen: 2022-05-26T20:34:16.993151
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
Similar samples:
Dev.ArmaN.PortFu…
com.flyersoft.moonreaderp
f3f283baca17feb377d6188a7bc2c5d96b06044bcd3ad429cc37ea30d2da71d7
Moon+ Reader Pro
Version: 609002
First seen: 2022-05-25T15:00:37.538683
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
org.asascorp.mi6.watchfaces
7d1e7cf34085c9747359c52370eebab24660ce8b21f23cf4877152f612caf542
MiBand 6 Faces
Version: 3
First seen: 2022-05-24T04:37:47.801528
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: Moderate Risk
com.recollect.linkus
390df52c6c7ce9f95455c540ac825c36f915539482df44912f2561ce4e962cc6
Private Messenger
Version: 733
First seen: 2022-05-23T10:20:07.436774
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: High Risk
com.ryde_android
d22ed5cbfbca942c8d5ad225867891b5a9f8acc4a511745d394ceb32e96466b7
Ryde
Version: 193
First seen: 2022-05-22T13:37:35.478630
Attribute: domains

www.baidu.com

Attribute: domains_analysis._name

www.baidu.com

Threat level: High Risk