agent_smith | cc8ccb04aceadd14683ed3c5d4e5a3640dfbcbc922ea54db82c3ba1bbbf015e6

Analysis

max time kernel
3802336s
max time network
136s
platform
android_x86
resource
android-x86-arm-20220310-en
submitted
20-05-2022 18:02

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

cc8ccb04aceadd14683ed3c5d4e5a3640dfbcbc922ea54db82c3ba1bbbf015e6.apk
Size

26.5MB
MD5

22f24e744aecbb6e69f32ac57025596d
SHA1

3dac8f4e0e61bd4d2add0b12e8436e7893bf20ab
SHA256

cc8ccb04aceadd14683ed3c5d4e5a3640dfbcbc922ea54db82c3ba1bbbf015e6
SHA512

63909f8f756f761d1420db4e1c0a6074849bc6b7e3ee86ccd06f46a03af52666fc3e7f6eb3fe09044cef9252b3a2ed4ec8484d431975b0d8a03f0b8294545af5

Score

10^/10

agent_smith adware ransomware

Malware Config

Signatures

Agent smith
Agent smith is a modular adware that installs malicious ADs into legitimate applications.
adware agent_smith
Checks Android system properties for emulator presence. 1 IoCs

Processes:

com.e8game.xzbbahh.aligames

description ioc process

Accessed system property key: ro.hardware com.e8game.xzbbahh.aligames
Reads information about phone network operator.
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.e8game.xzbbahh.aligames

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.e8game.xzbbahh.aligames

description	ioc	process
Accessed system property	key: ro.hardware	com.e8game.xzbbahh.aligames

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.e8game.xzbbahh.aligames

com.e8game.xzbbahh.aligames
1⤵
- Checks Android system properties for emulator presence.
- Uses Crypto APIs (Might try to encrypt user data).
PID:5289

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.e8game.xzbbahh.aligames/adpsdk/lib/libsoftlink.so
Filesize
13KB

MD5
a50f28d5c0c1a42dde41fe93f94c51c1

SHA1
a8bc58708c7be6458e65ec89ae4c1f9623954fa6

SHA256
329c76fbd9135185e92e004292dd6a341ea4a81c4566f403c7baf10652aa2057

SHA512
4ad8e9726c597576321cf47c4309ff444b5e89f37a912ce6d1328517d604744687ef3ba6538ff5513781a969cb2d221913d87485c3c8901eefa82e10edd20754

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/adpsdk/modules/stable/cn.sirius.adpsdk.loader.apk
Filesize
932KB

MD5
26cd72c99f0e31492744e8180a95e033

SHA1
4e07582f6ece0d5f2911e1adcbfd4b5d01c6e0a2

SHA256
f232cfcff69de8eac9e8a5dee92d8bf7ba15cc6f381018bc85d2e273fbdbf46c

SHA512
e0df0c600029c7c584297e1e65c198d30b2d2f04d0af678a478f44aea47055ffa3512be648848d1e1a77b193681633d1b2a550240ff21a76504821a04b23ea21

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/adpsdk/modules/stable/version.ini
Filesize
10B

MD5
8101e987515cf9d3fd40621e3438c2fc

SHA1
9128c9e62bc8831931c8ca405f90e2fc69080527

SHA256
d108a943ffcbb6b60e60789a6692516e07459b3f1ede5ac1dd620ac0c0c919f1

SHA512
e3c95d57ca7184d419695eeb8ff57d34c332a7b1d5809772b907dca2f8f93a8709528f22e4d98967d61892fdb78f46ff5eb2d56cdc0f8eb192e48d92775a5f4b

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/app_webview/Web Data
Filesize
104KB

MD5
dc79f9ce5f3ab5270b33e61119dfc959

SHA1
1844bf222a5144b513dcf2fb50a18c011701c647

SHA256
47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65

SHA512
18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/app_webview/Web Data-journal
Filesize
1KB

MD5
d82df770ad7180c535301754d517c762

SHA1
e08ab1758f6ad6954a43658af04d595da7219bc3

SHA256
3b5f8c0a1994efa82e5cbadcc20b6497f994ad887c53dbdcdaf208ec72da00ab

SHA512
ce27c333612cb105f99994ee092183aa43afdcb7faacb48a5b5b92e7c74401ecb08009b70ff658e182f1c1c58b0b35564c5d9c2f175a0cb6bdd764fe8886632e

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/app_webview/metrics_guid
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/app_webview/metrics_guid
Filesize
36B

MD5
0ed3ed3cf946a7485f8ad1a7e0740e81

SHA1
16227ece0d6d0789f22e6863bf4bb5fbd9fdc471

SHA256
72ec4aba5d132df0015db4393e24eeb72ed257a51d78c54cac0505021692a639

SHA512
73a3d36e19857038023df2ae217baf5b316f51c052d70ace5bc5a2cb0ec52bc66a27dfb26e33036de58d7f56e73681de99e269265f0544b2051d57cfcba93bb2

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/app_webview/variations_seed_new
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/app_webview/variations_stamp
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/app_webview/webview_data.lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/shared_prefs/WebViewChromiumPrefs.xml
Filesize
127B

MD5
21223e9184445fe043476484cd8cb1f9

SHA1
2b4813f849121d60ba35eb0889080668bb62c778

SHA256
bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

SHA512
be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/shared_prefs/info.xml
Filesize
460B

MD5
ae4b9f73e90bf0a97ceb34f0216b06a6

SHA1
24e15ded612891f2ea71ce920e44c651cbba0b66

SHA256
d796d8a3e4a4283cf412e930d2c5cc739387127c877d4810c4021e141fa37a2e

SHA512
028e345ab489bdc99fc6993aa8f1ae8b194e7e427990e2dd2924f0e30b0a338070dd2ee43f29d26a197b829182bef6afddd8697c02b00cf393a4b06bcb115988

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/shared_prefs/umeng_common_config.xml
Filesize
112B

MD5
0a0b4b63b900707a70ccb605402e0a35

SHA1
32cabe796c8f49e11d43df9dfb9f83f996391f4a

SHA256
d90fdce761d51c15612fca2ec32dc360020ed6bbc8ac00297273562f42b01a3d

SHA512
4230a0e6348c0114032096185805481f4e861bc688ea9f0fbf480f4ba408ed9d52c3f7d5c09fd8fbf59f557ca323f476dcf814d2643a823041c3741f11101c98

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/shared_prefs/umeng_common_config.xml
Filesize
172B

MD5
52492caaf5cd5d0b93be4122eb786fa6

SHA1
085b12218cb04b2ede0e8d9637dbdb86ebacc635

SHA256
8ef8527ef2dd86d8667cf18b8854bccc5dce0f58fca9d1003bb3ecc9ed91beb7

SHA512
3c478939ad4e81b2e9f46c43cd994285f08221422323184e48cab2b67cfaa1a9ed977a8a57e084d9646c7a10f0f146c2fe9d99f2e9d8607797e7b1f0113bdfae

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/shared_prefs/umeng_common_config.xml
Filesize
237B

MD5
89999a00f6177ce05725a78492657256

SHA1
add0bf6b692d79732a16e9886bf65672d7d29f04

SHA256
d6630afec6da36ee8d8ddfae7410c656a18346a8a081a7e933b7f310dd3d6065

SHA512
f506da3f020ebef03a5922bb41324fd48b497fdeacdda04aac83cec817968563a0f7efed1ebfe77acb5eb8a5859bae7ed856786f40709922fee0e4acba5c5281

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/shared_prefs/umeng_common_location.xml
Filesize
390B

MD5
324cdd9e86b8fb412defc558b036680e

SHA1
8f54afa42baf41d538f0f02bcc9c4e8e0106723c

SHA256
234373510f164b28162a7b89b5ebe1d0955697d97cf2f991e269b10b1f80bfaa

SHA512
2b08cd705f8d22da534285b6d47a88b35d37b4d2bdc7207cfd65ae0493629d6feccc3bcf55791a27f40448e784d66e129ca8bd92e1a3bcf532b21c3a293e5fdc

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/shared_prefs/umeng_general_config.xml
Filesize
102B

MD5
64e0aa25c24ddde3818479bfb53d4a90

SHA1
fc53938ebd1feb0a51e83699d75c3f771f703d09

SHA256
d5bba73256a5443c04a97e4bdf7aefc134a109c5bf2a0453c05e8a68213da999

SHA512
e52295f359e0286ce4beb19e2ffbe239ac3292cd0c8aaa2f23572a2680065be4998e5a1094bdec79df26a6a68e41434185255c59f1b0aa03ac242d1d89a4118e

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/ucgamesdk/lib/oat/x86/ucsdk.odex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/ucgamesdk/lib/oat/x86/ucsdk.vdex
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/ucgamesdk/lib/ucsdk.apk
Filesize
37KB

MD5
1e5d2ae8f1e890c4182fd46f6a84f932

SHA1
7f86c7f330038b2fb2289723b483c4077edacc3d

SHA256
8ad31017a72b5afd54856038d992514ffe66e56b508f34897992426344f7a46a

SHA512
d08231273c8c4338917a73ceb8fa963246feaa47eb028e6faf25dffcee42fb0c7efa7e4067b96bd7427abb83bc63a0ecb6c29368167ba129e403c8bb0c4ff15e

Download Submit
/data/user/0/com.e8game.xzbbahh.aligames/ucgamesdk/lib/ucsdk.apk.x86.flock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
111B

MD5
c706f305449526e677fd5b98d4e2293a

SHA1
6652f5fe3b6e340e549c9254e0f4b33a3089fd27

SHA256
039cb737d17d5006f0934fa1db87fedbf73779c775973e7a72b8f0183f56ad3c

SHA512
a787e60a67cfc3743a99298379011874a704acd83f871615d5d4b3527ea9813ee1caea2314f308f978d911a29607e988a91b9bd79637e2db68a1ad00d49f1fc1

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
111B

MD5
c706f305449526e677fd5b98d4e2293a

SHA1
6652f5fe3b6e340e549c9254e0f4b33a3089fd27

SHA256
039cb737d17d5006f0934fa1db87fedbf73779c775973e7a72b8f0183f56ad3c

SHA512
a787e60a67cfc3743a99298379011874a704acd83f871615d5d4b3527ea9813ee1caea2314f308f978d911a29607e988a91b9bd79637e2db68a1ad00d49f1fc1

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
213B

MD5
0be803ebb8ec6a1e096ca00e4c36562e

SHA1
9c62b8f99c2f106392423d9b4604264eb212a48c

SHA256
d35ddeca036476f370d51738ad86511cc653c5bc4b4b4bdb0b5a842f686cbcd0

SHA512
3a4c1b55f243d4354a4c1a38d5fd8f942b221ddd16a1d55fcdec2e34755ccbb591288722c060c7145e33313b51407d2af5c380a2367b0e480f3994329522ec43

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
111B

MD5
8b2b4eb29659d3ff9e2764d648a6cab6

SHA1
6818a1af21a39a98f1f740aa8d24e69bcab4ae49

SHA256
8e2e785a11c364f92c4b788392adbf063caa322dae0261f4538aa6f16cdac333

SHA512
6e999c956bc1c7757baebec70fc7b940459e7379b805a14d60d8e24341ef24e020883d598cffe3e56445d131d1488db0688a4b44e2e42e5d04b45b74c6403e84

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
167B

MD5
5cca3a8cbef051cf1882f58abd91d97c

SHA1
9ae1692941c00cbec87ef464f44b493c0f460062

SHA256
8f4ef2e6e9f4c6f4c172649c5596742c6105f4a9c975c25787572c44787e4577

SHA512
2ac74ed82866057276a726b3fec2c3df9ebf66a6677a0c1d5a6bbe1d842fc2a40ece53b09f728e9d65b708ca5c09a5696a6de05cd11f2a2e3e2af68222cc1d41

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
167B

MD5
8e2396c2997d3812ee3a686907a9d48e

SHA1
846aae3fc0f2d9423df4728b335f54c61e65d45f

SHA256
c179e54738cfb9a1faafa56f302fb01665dbe522cc9ade4dfdad24c6e0cf75f5

SHA512
dc0389340ac0a9e5ede92c479084e908c6a7bdf7aedcdcb399f194e710eb4a6d93e629adf4345f7a7e98d52880aeb9bfeacb854d92be560490559c199f0686a4

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads