agent_smith | 255690ea153d761bb845caf97c5e1491085f15768e75ccea534eb6ca12d16ba5

Analysis

max time kernel
3444732s
max time network
161s
platform
android_x86
resource
android-x86-arm-20220310-en
submitted
16-05-2022 12:57

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

255690ea153d761bb845caf97c5e1491085f15768e75ccea534eb6ca12d16ba5.apk
Size

7.1MB
MD5

53f31f79d52a1482447f5114844e4f51
SHA1

3c83e26732efb05046a94c21d43a179cfaf15476
SHA256

255690ea153d761bb845caf97c5e1491085f15768e75ccea534eb6ca12d16ba5
SHA512

30b8edb33f9150c69b4fec3533d454ca1406f63364574156b83f9df0395c48acf37726899eaf7f679f183ce4caaa43fe78d5455744d9810137a48bb02d0a2aa6

Score

10^/10

agent_smith adware evasion ransomware

Malware Config

Signatures

Agent smith
Agent smith is a modular adware that installs malicious ADs into legitimate applications.
adware agent_smith
Reads information about phone network operator.
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

free.game.video.box.fuo

description ioc process

Framework API call javax.crypto.Cipher.doFinal free.game.video.box.fuo
Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
evasion

Processes:

free.game.video.box.fuo

description ioc process

Framework API call android.hardware.SensorManager.registerListener free.game.video.box.fuo

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	free.game.video.box.fuo

description	ioc	process
Framework API call	android.hardware.SensorManager.registerListener	free.game.video.box.fuo

free.game.video.box.fuo
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
- Listens for changes in the sensor environment (might be used to detect emulation).
PID:5171

ls /sys/class/thermal
2⤵
PID:5277

ls /
2⤵
PID:5340

free.game.video.box.fuo:x
1⤵
PID:5406

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/free.game.video.box.fuo/virtual/data/app/system/sync/accounts.xml
Filesize
122B

MD5
c3b989561b596d1f1c44e66104f7592a

SHA1
5d20c51e0d69903353037ffe4761ca5733a009aa

SHA256
725679b820370685904d8f96fb7d23e14c8bae05cf15e109870f8ac00acf7766

SHA512
591f1ef0a4eaba63b9e74676c0be3b845ef6ef0a80443b21a48de01a80c3aea6ce9cbf8392522d08cd162118b440bb8eb7286d2b04bcb4e6ff08cde1b934952f

Download Submit
/data/data/free.game.video.box.fuo/virtual/data/app/system/sync/pending.xml
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/data/free.game.video.box.fuo/virtual/data/app/system/sync/stats.bin
Filesize
4B

MD5
f1d3ff8443297732862df21dc4e57262

SHA1
9069ca78e7450a285173431b3e52c5c25299e473

SHA256
df3f619804a92fdb4057192dc43dd748ea778adc52bc498ce80524c014b81119

SHA512
ec2d57691d9b2d40182ac565032054b7d784ba96b18bcb5be0bb4e70e3fb041eff582c8af66ee50256539f2181d7f9e53627c0189da7e75a4d5ef10ea93b20b3

Download Submit
/data/data/free.game.video.box.fuo/virtual/data/app/system/sync/status.bin
Filesize
4B

MD5
f1d3ff8443297732862df21dc4e57262

SHA1
9069ca78e7450a285173431b3e52c5c25299e473

SHA256
df3f619804a92fdb4057192dc43dd748ea778adc52bc498ce80524c014b81119

SHA512
ec2d57691d9b2d40182ac565032054b7d784ba96b18bcb5be0bb4e70e3fb041eff582c8af66ee50256539f2181d7f9e53627c0189da7e75a4d5ef10ea93b20b3

Download Submit
/data/data/free.game.video.box.fuo/virtual/data/system/users/0.xml
Filesize
159B

MD5
2ae695aa5dab64b4ae05c43c6a35eec1

SHA1
b1ed2ac2cb72be31802f1f216066ccce1033d366

SHA256
865a155fc1d774c31095dc3a9bd570cc2d7eb6b37d5935b1c6915782cb53adb1

SHA512
fc9f5c96a0e35c03c66f70d1353503820e53de924c41d375c29b5bc202c8b276a3bcfffe213fd07f5814ff1f156a12ca81d63db960be9ad5fa350373b09872b4

Download Submit
/data/data/free.game.video.box.fuo/virtual/data/system/users/userlist.xml
Filesize
127B

MD5
d6b31cd6e249022fa5534d3fe3e73dc1

SHA1
45113c84dcfc0ab675779b2b9cf6ca4f9d601783

SHA256
606165a506af817e97f23455a7c0416084e7914ae7c6b59e01438c5e01c18990

SHA512
de00b392dcea6223b98fa07548ee292dc478235167c92e25e5f8872c50f09c4cf66eb274ba562ecefa00dbe4b21b06dbbe8058a7a18ee7f598f2a3d3d3fc09d1

Download Submit
/data/user/0/free.game.video.box.fuo/databases/share.db
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/free.game.video.box.fuo/databases/share.db-journal
Filesize
524B

MD5
56383a0b1634ed090ce8dd5fcebe5188

SHA1
b97a3c2bc03124f62de65296ad6a9cd8a31d99a1

SHA256
706f76806b904dfc942eb16e3b8235251df8940735b7d56f708c6e997d8d239e

SHA512
aba1f2fd5181cd073594e344cc849d2830b18da94fc55acd06971933a3da608bfde29691e9bc58d4742b8d0dfe8d4b3c104876c1707397927bd45b6a0d48efc2

Download Submit
/data/user/0/free.game.video.box.fuo/databases/share.db-shm
Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/free.game.video.box.fuo/databases/share.db-wal
Filesize
48KB

MD5
ee047cb268166f8e63a28a1a03a4b865

SHA1
956a9dfd4e4d948042d8020f317e360aa743d213

SHA256
bcc28b7792d7f05cdab3d299bb68d38ab9a1107ace39d428312bb461f20d50b2

SHA512
f19b6609ff62070216436e705b62b8d2ef8f749a8d4f0abbcccb34fb4e0ba07e6a4661c1cab25c53f2262875694ab4e5f67b8b0034cecfa63571f0eaa5f7cb7d

Download Submit
/data/user/0/free.game.video.box.fuo/shared_prefs/gToDoSet.xml
Filesize
108B

MD5
cc19f0efaf01829518e05f5ebd4b1073

SHA1
31cb16a290bcd3a777a27eaad2a005f74bbf29d8

SHA256
51bc46c9d289974164ff10b230a33cb8791f013059ca1be2120e49acdd3c120c

SHA512
deade5cdfcfa6116d32da149c01cbc095cd3cd427da2ca64b64fc1d247b160ad9bcd1b4c89fe5f1e5d8cbe338bf1993891000002a0f02aab433321cd04d8d873

Download Submit
/data/user/0/free.game.video.box.fuo/shared_prefs/info.xml
Filesize
460B

MD5
b1ec9afaca532b4f1441ec549398fad5

SHA1
10a9d9bf9a8d7ba0c85e552f3fa44b663078b0d6

SHA256
b059b0d5388524999ca3c3fb5014945fcefce76f5c4f0df62fb4a217862c0088

SHA512
c550520032696b1bc646fa1d1c20d475e41b6675a30edececad8b881f5f38c51ad0fde46a92954db1082db005d696eaa07e1263afb251b3dc901ee1c8d0f3d47

Download Submit
/data/user/0/free.game.video.box.fuo/shared_prefs/umeng_common_config.xml
Filesize
111B

MD5
bfc4924c66df81402a920cca5395eae5

SHA1
70133b8f69396547e3f82cacbba9ce41ac7495a1

SHA256
b1b2735f40bdb0888c9464efee37ee5c536a6f6fccb7b5c3db55ba2329785047

SHA512
f83530a9fda3cdde25d17b8eb390f045f8e16fef6ab7b90f964d8de6ede2f1db7732ab6a5b92a20a58af46a65cec0d114bc0c9af41c0d3de9cd05f5ecdad2a3d

Download Submit
/data/user/0/free.game.video.box.fuo/shared_prefs/umeng_common_config.xml
Filesize
171B

MD5
dd3f7ab476880f7244ed7944b5e3f793

SHA1
01c3a482ff7e5b415a86616bf6096c5d143d2f2b

SHA256
567e4a4b57ae0ee3e2e83240eb734b301e7bfd63b69f28bd26cbde4a89d88c46

SHA512
0b7d0b2ff95035f7192d6c49c07a1ec9bfaa131fe4680daaad594978fdc37c99c4022c9c2e190027e139d3a3b2a3d459839073d1e05fac4600accc098d085164

Download Submit
/data/user/0/free.game.video.box.fuo/shared_prefs/umeng_common_config.xml
Filesize
236B

MD5
5cffb3632d6223e132822d1c1c3b026c

SHA1
381e403d9063110335c205ab136d55929fa87876

SHA256
32462f86a8ce0f0ab47e6b86b2c64951e6deec013d9ba2b96f480ebb1858e1f9

SHA512
0f7ce5a7d76e0e443bec64e3857da44f2d1c0086672ad835e97b264e927b96d1b94b5adb10a781124db194e6f403f290553c250e75b9946d5990a0ca3c1cff07

Download Submit
/data/user/0/free.game.video.box.fuo/shared_prefs/umeng_common_location.xml
Filesize
390B

MD5
324cdd9e86b8fb412defc558b036680e

SHA1
8f54afa42baf41d538f0f02bcc9c4e8e0106723c

SHA256
234373510f164b28162a7b89b5ebe1d0955697d97cf2f991e269b10b1f80bfaa

SHA512
2b08cd705f8d22da534285b6d47a88b35d37b4d2bdc7207cfd65ae0493629d6feccc3bcf55791a27f40448e784d66e129ca8bd92e1a3bcf532b21c3a293e5fdc

Download Submit
/data/user/0/free.game.video.box.fuo/shared_prefs/x_umeng_common_config.xml
Filesize
111B

MD5
bfc4924c66df81402a920cca5395eae5

SHA1
70133b8f69396547e3f82cacbba9ce41ac7495a1

SHA256
b1b2735f40bdb0888c9464efee37ee5c536a6f6fccb7b5c3db55ba2329785047

SHA512
f83530a9fda3cdde25d17b8eb390f045f8e16fef6ab7b90f964d8de6ede2f1db7732ab6a5b92a20a58af46a65cec0d114bc0c9af41c0d3de9cd05f5ecdad2a3d

Download Submit
/data/user/0/free.game.video.box.fuo/shared_prefs/x_umeng_common_config.xml
Filesize
171B

MD5
dd3f7ab476880f7244ed7944b5e3f793

SHA1
01c3a482ff7e5b415a86616bf6096c5d143d2f2b

SHA256
567e4a4b57ae0ee3e2e83240eb734b301e7bfd63b69f28bd26cbde4a89d88c46

SHA512
0b7d0b2ff95035f7192d6c49c07a1ec9bfaa131fe4680daaad594978fdc37c99c4022c9c2e190027e139d3a3b2a3d459839073d1e05fac4600accc098d085164

Download Submit
/data/user/0/free.game.video.box.fuo/shared_prefs/x_umeng_common_config.xml
Filesize
236B

MD5
5cffb3632d6223e132822d1c1c3b026c

SHA1
381e403d9063110335c205ab136d55929fa87876

SHA256
32462f86a8ce0f0ab47e6b86b2c64951e6deec013d9ba2b96f480ebb1858e1f9

SHA512
0f7ce5a7d76e0e443bec64e3857da44f2d1c0086672ad835e97b264e927b96d1b94b5adb10a781124db194e6f403f290553c250e75b9946d5990a0ca3c1cff07

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
213B

MD5
1d6a4fc715664d8d121ab572f3cd8f79

SHA1
5081182062431c05c68024a9196687434cc3d206

SHA256
f00b62e2eb71c16adb8383fd48cfc2ffca6aa8214be30622b3ef5d1152927163

SHA512
019d886dc6685a6c7a2b8c56089fd43f69e7c292ad84fa462d235840f5807e50513718e3786f35e94048080e9c97c070a0cad42c5e589155985ff141130ff76f

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
111B

MD5
3012d4ab78c0336683fee9db055b367a

SHA1
675c040fe38133df7c8846d348955c398af6e4fc

SHA256
b9a837918dfb4e9805a473eb2a7d0b8540142c44893a42ff2c0d336c3af2a75e

SHA512
3e165e6c1a7fcc20cde3b4dfb7bdb49f506cc6c24f4fc03b0a73126c488133f93883da767116e2efeb9fe1885c3d669a1c82c09a8b06b975422546f01c93df92

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
111B

MD5
03670578226b46ab31c469824aadba3a

SHA1
f8384846d41ccad7a7f2cfa0daa19c72032e986c

SHA256
e38b87110ef7407d8b3248112eb04d4dede452877dd6465a1ae793f2ee9fd9b4

SHA512
82a66f096d1abcb48b64356658b60075392a24a8544c671228cb42d5e438b7d306cfdd5087af19e9fa914a860f4b7dbd51d3eef88714106e3ae0510bfac10eb4

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
167B

MD5
75ce5a477e0ff36129db7a1e0e549b4c

SHA1
ddf974fec049ebc8d7f8cdae7155fb74d260a899

SHA256
46107d1f7c7e7685b1b4339e1f51ed869fb455c05136437ff8f636d031cf3bfe

SHA512
b716512abe6f124c691ced67620c1281a1e9d646646575880189855eeff4b116f3fab35454029497324980089f30c8fcbbf33ee7f9b22805c50efd46756ed42f

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads