Overview

overview

8

Static

static

8

Android APK

android_x64

7

Analysis

  • max time kernel
    716954s
  • max time network
    120s
  • platform
    android_x64
  • resource
    android-x64
  • submitted
    09-08-2021 11:43

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4a8654dd87cc6e82b29b7683306ec5841ee24faad3e636fb48021390e78cac72.apk

  • Size

    3.3MB

  • MD5

    a263e0566fd079b88eebca24b9c14285

  • SHA1

    d28c0242a4fc0e3567e5e26e1b5e94962f5bf653

  • SHA256

    4a8654dd87cc6e82b29b7683306ec5841ee24faad3e636fb48021390e78cac72

  • SHA512

    66739e3b515de31395381ebc1f65dad5d2b94fa0fe32ce9e102a8444fb6f02e76c23723284edcb7d0f0406f1a66641ee64c08def5cb7d06785aa69bee709351d

Score
7/10
obfuscationransomware

Malware Config

Signatures

  • Loads dropped Dex/Jar 1 IoCs

    Runs executable file dropped to the device during analysis.

  • Requests enabling of the accessibility settings. 1 IoCs
  • Reads name of network operator 1 IoCs

    Uses Android APIs to discover system information.

  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware
  • Uses reflection 64 IoCs
    obfuscation

Processes

  • com.tencent.qqmusic
    1⤵
    • Loads dropped Dex/Jar
    • Requests enabling of the accessibility settings.
    • Reads name of network operator
    • Uses Crypto APIs (Might try to encrypt user data).
    • Uses reflection
    PID:3635

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.tencent.qqmusic/code_cache/secondary-dexes/MultiDex.lock
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/com.tencent.qqmusic/code_cache/secondary-dexes/base.apk.classes1.zip
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/com.tencent.qqmusic/code_cache/secondary-dexes/tmp-base.apk.classes3994017748377505998.zip
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/com.tencent.qqmusic/shared_prefs/Voicemail.xml
    MD5

    0a51b37799ce0bc71d8e69fe43d3ad03

    SHA1

    b66798755898167318c04919324bc0283b89a845

    SHA256

    609b6257952e0f02caee4be4ff6d29923ddc0cb0dc4fb2e3ec38b149debc2b8d

    SHA512

    7b19f677c6d67ff586a9ae2ae37f96a8cc19cc1a1da84e7afee0b12a6025fbc20907184f476ac7ce5771c1df94c39ed4bf61ce477791494eb098a70ba10a0a06

    Download Submit

  • /data/user/0/com.tencent.qqmusic/shared_prefs/Voicemail.xml
    MD5

    b24a634b2a0ac819619d564711b7f1dd

    SHA1

    86d834eca7e3eb1f83ab39e2422ad0ae66c8aea4

    SHA256

    8f64e17b90ea7881110957b6e720d5bff87ce580febdd7ab147723955fb2446c

    SHA512

    c8c6afba538f2a53cb870da445753b1ce3e503ce9e74d541d9ee4cb08737e2a2895b43d9384a39ee3666fe538c2cd249db23fe0eeb4aa8b56cd5b48d82201d88

    Download Submit

  • /data/user/0/com.tencent.qqmusic/shared_prefs/multidex.version.xml
    MD5

    ffcbcb00f65f3ef09a8389a89d92d398

    SHA1

    656414d7056e4cc10c93a386d92711264ed98ddd

    SHA256

    7d0f8835d920bf2d4b7b7d091edad0e88511cdbbbe588149515c08a76e876d23

    SHA512

    c4ad21af6afbcb445ffabd7014a892f306761bae3609b710a38ead8d7961eb38afae760ac3db1e6a227711297399fc69137592f01dccc0549e4643b1952c5d61

    Download Submit