89025ff12018ed90a709f3c8bf47b803c5c5b2b533858bda398fca3e1d6140f1

General

Target

89025ff12018ed90a709f3c8bf47b803c5c5b2b533858bda398fca3e1d6140f1.apk
Size

4.4MB
MD5

6a0660a71795cb8d67370524b56bb29a
SHA1

681a02883944f6f14963815e854f3fa3de5cc6f3
SHA256

89025ff12018ed90a709f3c8bf47b803c5c5b2b533858bda398fca3e1d6140f1
SHA512

318cd57c16e0529a9ff1021533298f5a79418da15c81f71f8138da9ff344e0a8135974b77a48456507d0215e4af8eab651b44ea00a2edb3e0d55fc8c7620b3b0

Score

7^/10

obfuscation ransomware

Malware Config

Signatures

Loads dropped Dex/Jar 3 IoCs

Runs executable file dropped to the device during analysis.

Processes:

com.baidu.searchbox/system/bin/dex2oat

ioc	pid	process
/data/user/0/com.baidu.searchbox/app_apkprotector_dex/Hd6c3m8B.wet	4651	com.baidu.searchbox
/data/user/0/com.baidu.searchbox/app_apkprotector_dex/Hd6c3m8B.wet	4695	/system/bin/dex2oat
/data/user/0/com.baidu.searchbox/app_apkprotector_dex/Hd6c3m8B.wet	4651	com.baidu.searchbox

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.baidu.searchbox

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.baidu.searchbox
Uses reflection 1 IoCs
obfuscation

Processes:

com.baidu.searchbox

description pid process

Invokes method android.view.ViewGroup.makeOptionalFitsSystemWindows 4651 com.baidu.searchbox

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.baidu.searchbox

description	pid	process
Invokes method android.view.ViewGroup.makeOptionalFitsSystemWindows	4651	com.baidu.searchbox

com.baidu.searchbox
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data).
- Uses reflection
PID:4651

com.baidu.searchbox
2⤵
PID:4695

/system/bin/dex2oat
2⤵
- Loads dropped Dex/Jar
PID:4695

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.baidu.searchbox/app_apkprotector_dex/Hd6c3m8B.wet

MD5
7cf662a3bc6d9d21f461027375b36295

SHA1
978a29a038dce7e9fbe702244c5518e030074f32

SHA256
47ca52e88810b9537abee9c169c13bb7041e6aa576cf6f471452e3a79dc687e5

SHA512
dae821af7005c182664507b9c3da86cefeacdd71780ec7c9afff1ef7a3f30366327160f4907ffb6b031e6a94e7e7864035f37ae63aa40dfb746bbaed643045f9

Download Submit
/data/user/0/com.baidu.searchbox/app_apkprotector_dex/Hd6c3m8B.wet

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/app_apkprotector_dex/Hd6c3m8B.wet

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/app_apkprotector_dex/Hd6c3m8B.wet

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/app_apkprotector_dex/Hd6c3m8B.wet.x86.flock

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/app_apkprotector_dex/oat/x86/Hd6c3m8B.odex

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/app_apkprotector_dex/oat/x86/Hd6c3m8B.vdex

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.baidu.searchbox/shared_prefs/Voicemail.xml

MD5
34eaf6df9485f57a413c57dc1e421de0

SHA1
31aa4f46a388f6c91e2cd56785da41d96dd26eea

SHA256
1c331f2fc8c3000c24fa9b64f4c698a0ed7e5bba97da524c0359824c2b2bf77b

SHA512
0034d55809932c78881e55eaf41048661afe5a13f60378b69e385901bde2bc4f2183239c7e220a677b681a63c6b8e3593f8bcb3c07175b285bc7ccbf2cfb376f

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads