0ad737848a03c5c39a08a79f8b871859f7824ee19917deb590deaefeaffd8bc8

Resubmissions

14-06-2021 19:17

210614-dz7janzdx6 8

14-06-2021 18:48

210614-6tyympk936 8

Analysis

max time kernel
199021s
platform
android_x86
resource
android-x86-arm
submitted
14-06-2021 18:48

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0ad737848a03c5c39a08a79f8b871859f7824ee19917deb590deaefeaffd8bc8.apk
Size

1.1MB
MD5

c7f023e73ce2fc19f0f4d4a591c20567
SHA1

9c2d059a280f738fb0c9bfaf65ebced27fc5c7a5
SHA256

0ad737848a03c5c39a08a79f8b871859f7824ee19917deb590deaefeaffd8bc8
SHA512

2f2fedd995625c3f666b8e8ed64d83ecd7ff929aba178e5a08d8b7363d43b2a18b4c0b3e6ad540fdba795a724f47c01a27659003944f458a435247b96b1333c1

Score

6^/10

obfuscation

Malware Config

Signatures

Reads name of network operator 1 IoCs
Uses Android APIs to discover system information.

Processes:

iqqgvtb.bcyindziyckutotnchpw.fddgdwak

description ioc process

Framework API call android.telephony.TelephonyManager.getNetworkOperatorName iqqgvtb.bcyindziyckutotnchpw.fddgdwak
Reads serial number of SIM 1 IoCs

Processes:

iqqgvtb.bcyindziyckutotnchpw.fddgdwak

description ioc process

Framework API call android.telephony.TelephonyManager.getSimSerialNumber iqqgvtb.bcyindziyckutotnchpw.fddgdwak

description	ioc	process
Framework API call	android.telephony.TelephonyManager.getNetworkOperatorName	iqqgvtb.bcyindziyckutotnchpw.fddgdwak

description	ioc	process
Framework API call	android.telephony.TelephonyManager.getSimSerialNumber	iqqgvtb.bcyindziyckutotnchpw.fddgdwak

Uses reflection 2 IoCs

obfuscation

Processes:

iqqgvtb.bcyindziyckutotnchpw.fddgdwak

description	pid	process
Invokes method android.content.pm.PackageManager.isInstantApp	4827	iqqgvtb.bcyindziyckutotnchpw.fddgdwak
Invokes method android.net.Uri.parse	4827	iqqgvtb.bcyindziyckutotnchpw.fddgdwak

iqqgvtb.bcyindziyckutotnchpw.fddgdwak
1⤵
- Reads name of network operator
- Reads serial number of SIM
- Uses reflection
PID:4827

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/app_webview/GPUCache/index

MD5
93027d42b314432c4216e6cfca48b384

SHA1
43448dd8102979c3926828182579691945eedd4e

SHA256
3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

SHA512
a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/app_webview/GPUCache/index-dir/temp-index

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/app_webview/Web Data

MD5
5168d8c4556ac22decc2362ce61ddafb

SHA1
664cb3c7b0b5b13c3b915c28354793bcc0afd408

SHA256
5057cf5dab27589d93f7d55ffa505ea8249c213b79fd8c85ac39423c135c5db6

SHA512
81cefa22b3b1d30acf590b44b97a47b68c265a15b3725ff348ac0256faae0aa76b6a9bedece897c912bbcc86623c3a20c193ff131d9a25d0ee8e315394ae332d

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/app_webview/Web Data-journal

MD5
00f3a7d609891d7708c3a02882ae53d1

SHA1
c6770f7ea39d291d9ffa644edb705f5690c6a39f

SHA256
55ca581f8b7d560f550e9814e35252c212a7936832378a73154c9c8e5df2a6c2

SHA512
b978f3bfef35a2f55693d617378899d3115a4b339fe756a7e3eea64b39ef2cd66a9ff18ca4d3391b300cbf50318e40b7766222830390ea8ee38d20fcac361082

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/app_webview/metrics_guid

MD5
d0c5f9c05ccb268baddc1ae40b398113

SHA1
066848d8b25c24359e826ec479438ede782709ad

SHA256
73268b59aa41927850b7ce473a983ae93cff3c014fbac6591c6d4bd59714e06d

SHA512
442e8d1e5691d0afbcc4e02ff4ed8c781f383d5a819ad40827a6a3b10d5e365e5c7b3db736ab3b81c55c600d4ba4a18cf994d4cd5bde60cc13d666b1b8a86ade

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/app_webview/metrics_guid

MD5
d0c5f9c05ccb268baddc1ae40b398113

SHA1
066848d8b25c24359e826ec479438ede782709ad

SHA256
73268b59aa41927850b7ce473a983ae93cff3c014fbac6591c6d4bd59714e06d

SHA512
442e8d1e5691d0afbcc4e02ff4ed8c781f383d5a819ad40827a6a3b10d5e365e5c7b3db736ab3b81c55c600d4ba4a18cf994d4cd5bde60cc13d666b1b8a86ade

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/app_webview/variations_seed_new

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/app_webview/variations_stamp

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/app_webview/webview_data.lock

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/shared_prefs/WebViewChromiumPrefs.xml

MD5
21223e9184445fe043476484cd8cb1f9

SHA1
2b4813f849121d60ba35eb0889080668bb62c778

SHA256
bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

SHA512
be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/shared_prefs/bugaga.xml

MD5
16c7c4f60d0ce139080935908b61274a

SHA1
21816051946f018879aa3eace01e8a6433c2be2e

SHA256
0fdb932eec4b48a376522e406ace670ac3e38060ea6450bebc71d459e91ed858

SHA512
9e556a2324891754e14f88033977470b1ab6b6152b5a5fc6f29e481804e4dc69eb41b5cc0c86c2b93892b39f5efa035e8e61b1072667eaf0abe61f0960c4cd8f

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/shared_prefs/bugaga.xml

MD5
be84ee29d08a1d338e74c818cea891d1

SHA1
8bfadb92d3e8d4c586579c01fb3b37178c878386

SHA256
0285b33a9dc08de4054c266674ccd724be6696bc31f32b2cbd522cd4406e80c5

SHA512
4c1e88f1e8d4d580353d560d5b86ef1f9638a202b319e6825d5895be5cb836406a25ed6aad27656b1ae177153e587025859f8fa25afec621316c63994703a38c

Download Submit
/data/user/0/iqqgvtb.bcyindziyckutotnchpw.fddgdwak/shared_prefs/bugaga.xml

MD5
65d49182ecc2b37ad7ccfb7655f99f21

SHA1
b91e5a153b9234542ce9d14680fa689bd53a376d

SHA256
180ed4abca3810f1e995b78921f65d130c9db03a2af14ad6e3d7d82192ff1c07

SHA512
1bd948b3d3a078f7f4821368ac6d4f2b9cae2185df74519ce9241a32eab57b0c6035632e45cf1075ff38ab0d17972546cb15b7f6ee0c15bc6d5e604bbd4324b3

Download Submit