Overview

overview

8

Static

static

8

Voicemail70.apk

android_x64

7

Resubmissions

10-07-2021 19:40

210710-7z5ltn95r6 10

10-07-2021 19:36

210710-sjstcywcj2 8

Analysis

  • max time kernel
    2448333s
  • max time network
    166s
  • platform
    android_x64
  • resource
    android-x64-arm64
  • submitted
    10-07-2021 19:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Voicemail70.apk

  • Size

    3.0MB

  • MD5

    42dd6892c18c1490f098ed09e9faf7a1

  • SHA1

    010403baebac87d5724a187668e3ece52e6075a8

  • SHA256

    215d1c859be950849f3fadd651bad0f7853e7340c34418c446175a488bb9d3f6

  • SHA512

    6b68c8f95996be209b2a988d9723bb57cce2d9d8d0d9ddf6602cd8df35a66fa1a716b39b8370df1cb4b4e0d93da45582b70327a9482b8bf9e8a23570bc2ced24

Score
7/10
obfuscationransomware

Malware Config

Signatures

  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Requests enabling of the accessibility settings. 1 IoCs
  • Reads name of network operator 1 IoCs

    Uses Android APIs to discover system information.

  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware
  • Uses reflection 64 IoCs
    obfuscation

Processes

  • com.tencent.mobileqq
    1⤵
    • Loads dropped Dex/Jar
    • Requests enabling of the accessibility settings.
    • Reads name of network operator
    • Uses Crypto APIs (Might try to encrypt user data).
    • Uses reflection
    PID:4137

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.tencent.mobileqq/app_apkprotector_dex/NkTk7ucV.wine
    MD5

    6b475f66c6ef6a90d841f0b19893d8d0

    SHA1

    9ea129bea476d71ade723216ffaf102dbb6b8f5f

    SHA256

    0d52122c07cd977e8657b96d38b79e15dfa77f7ab4f540501826206da3c6bd57

    SHA512

    456429e7f7cb210da7f3d35788078c574289735bb1dcfdde2ef1e872fff20759efbee73d0ccdc69ae460caf765304ce96b4bd88605f9cf058854a835943b769b

    Download Submit

  • /data/user/0/com.tencent.mobileqq/app_apkprotector_dex/NkTk7ucV.wine
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/com.tencent.mobileqq/app_apkprotector_dex/NkTk7ucV.wine
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/com.tencent.mobileqq/shared_prefs/Voicemail.xml
    MD5

    d62a206f8629f2c989e8ae1f15015ed6

    SHA1

    63070217c7f83c1213361b10093492a3029d08e1

    SHA256

    1832cc3318f894ac0b7a16ca04fd6f86900f3318f67d2995c0d9e0fca594240b

    SHA512

    98d1ac3c07cfc446321f94bf87ff0e2235b9abde7723f9d98c438fe8c30767adb7b126a17286e08887c4f8c257fc95e316edfb45d34fc8c207c4db7a45a68cbd

    Download Submit

  • /data/user/0/com.tencent.mobileqq/shared_prefs/Voicemail.xml
    MD5

    c7dea2590507de32918d997f5437db10

    SHA1

    ad8c8d7d11f9a7919215f9007439f69bfa842dac

    SHA256

    052d07afbb2ca5d367313dc6b184934e4cfa2a1c514c4d5dfb26594ec63f18ca

    SHA512

    009907875b0debdeea07c4bee3dfc23565fad26dfcb9a4fe25053b23b5561bad197971e1916aa84a81aa5adc2681c0e5cee02fab0700ada3fcc84e456a801131

    Download Submit

  • /data/user/0/com.tencent.mobileqq/shared_prefs/Voicemail.xml
    MD5

    401cae32a92dd0468f7d4d1646e4f03c

    SHA1

    0afae713cbbcf4961d0f6b661451c2907f97a128

    SHA256

    c082c2d97ff83a772cbc1668dfe29c36c9ea4d0f96fd9b2785be12cd1b01e369

    SHA512

    cdf7b3338177dd750e9e6dd5cb6abe09e853c4c6c6bee9ed4d1243aa7c4b54292120e3fff9441eed8357f96b8f6030a31647c449555a505107b1dc09f5caae6a

    Download Submit