b21fb074fad3fc47b740a386d0981588c4cc3be97de773df756ded75cac0286b

Analysis

max time kernel
3824692s
max time network
171s
platform
android_x64
resource
android-x64-arm64-20220310-en
submitted
21-05-2022 00:05

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

b21fb074fad3fc47b740a386d0981588c4cc3be97de773df756ded75cac0286b.apk
Size

5.9MB
MD5

6fa80f465bd59df696b2e45076e24589
SHA1

0c6836d52be826886ad0534e7b37a1d482034285
SHA256

b21fb074fad3fc47b740a386d0981588c4cc3be97de773df756ded75cac0286b
SHA512

b65bcc18b2786ff99e1f59a312fe599d4da5a72fdb8be867df86e8e94c92fc013f10d558062170473e49905cdd8df7a1d0a87833e3b4753efd966b29a4154a38

Score

7^/10

ransomware

Malware Config

Signatures

Queries the unique device ID (IMEI, MEID, IMSI).
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.gentongsehat.fudzapp

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.gentongsehat.fudzapp

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.gentongsehat.fudzapp

com.gentongsehat.fudzapp
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:7049

com.gentongsehat.fudzapp:Metrica
1⤵
PID:7120

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.gentongsehat.fudzapp/files/ZPkFS.log
Filesize
90B

MD5
150409c9f6c6e134c4880edf5eb4c12f

SHA1
8f1d83670d6508f8836ef3fcd3807cec21882eab

SHA256
13207b2eeb700ac4e35eb751aad3efb3f3e5230d8df4878eeb014b40f796b02a

SHA512
0df208f950cccaccb6492de1573d56db6670caaae3896395d368c10078c3cd885d0c0c511a24520bfd4f954620d69afff0215a382e390e152e68cc2ad4438679

Download Submit
/data/user/0/com.gentongsehat.fudzapp/files/credentials.dat
Filesize
233B

MD5
eaedfba4bdd469444917d2bc0d88b13c

SHA1
7ec171df71ebf755ead1415b2da623e3638a740f

SHA256
5ddf0ce6fafa64af2619157fe40c3285b8fa12b4ff562b027dadf59e4a3e6d19

SHA512
8e521efc6f573c97dec619cf8820f5e8fe9366048e64412b5f25ffe1d56aebdb78195294509397436ddf8dccf5786c510beb78650e635ad0b1be813d004a2ce4

Download Submit
/data/user/0/com.gentongsehat.fudzapp/files/metrica_client_data.db.lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.gentongsehat.fudzapp/no_backup/credentials.dat
Filesize
233B

MD5
eaedfba4bdd469444917d2bc0d88b13c

SHA1
7ec171df71ebf755ead1415b2da623e3638a740f

SHA256
5ddf0ce6fafa64af2619157fe40c3285b8fa12b4ff562b027dadf59e4a3e6d19

SHA512
8e521efc6f573c97dec619cf8820f5e8fe9366048e64412b5f25ffe1d56aebdb78195294509397436ddf8dccf5786c510beb78650e635ad0b1be813d004a2ce4

Download Submit
/data/user/0/com.gentongsehat.fudzapp/no_backup/db_metrica_com.gentongsehat.fudzapp
Filesize
1.2MB

MD5
075630a27f02ae9f297d896d5302ac78

SHA1
168ecc9b6a53239dafd44837a2eb8b74a98d4987

SHA256
9363010713f78ec862d34ef5b52eaf5578352007cb4f1c28c55ebd955f6a3f0e

SHA512
6857c50e5d3c878e58795cb83576359d95dca50d8ce57ee38def1297903d9d4ae146963400982be1053b4d2aaa63792474862baae5a8fbeef5918a4a0a92bfe9

Download Submit
/data/user/0/com.gentongsehat.fudzapp/no_backup/db_metrica_com.gentongsehat.fudzapp-journal
Filesize
1KB

MD5
309a2e9743eadfe47bb217ff0bb1715a

SHA1
b5069488695354f634e86ba8e314bc01789d75a2

SHA256
fb13bce3041035344e5e4007ea644098df768e4f9903a0a767bbfb0052d63c94

SHA512
525bf6a7c5545bb57ea0e40a35ce0c6703cc3d5827451dd0afb4773abc236463eeb4e1e7f8cad136571de8e24401fb2f058aa368c5a5d6572d9b425cb7e8d740

Download Submit
/data/user/0/com.gentongsehat.fudzapp/no_backup/db_metrica_com.gentongsehat.fudzapp_20799a27-fa80-4b36-b2db-0f8141f24180
Filesize
424KB

MD5
0cebfb53fb550a39866687658d3f7955

SHA1
dce68679b4416dfdab4945a62b2ee9568b9806e2

SHA256
ad2ef44257bb1073d2f3b2fdbe6e356cd06b00ac3e8dbd6bedb97f8ec42d099d

SHA512
3f5ee5979b930f429e2f11308862b575f3d8997a40fd8dba40c70ec279e604137301f0da41ceb71ffe22828cdbd3cd195e8cea0defd337aa9522bbf1cfbb14a6

Download Submit
/data/user/0/com.gentongsehat.fudzapp/no_backup/db_metrica_com.gentongsehat.fudzapp_20799a27-fa80-4b36-b2db-0f8141f24180-journal
Filesize
1KB

MD5
cee82c0c924b19ff108376b02cb901fa

SHA1
ec024fc35336abe54e77e34169d2c615ad1ea6e6

SHA256
a1f0a447c20c86798341313d10fd8c65ac2bf29239f3f642d950488a8a2d39ef

SHA512
a118eb1d7ef9dae54fcb7a78a7c662cdfaa8af18f325d6a68a7f7ff591fea77139e36745ad7c20188aab90218409fbbc5637555ddb081154775a7bbd450863cf

Download Submit
/data/user/0/com.gentongsehat.fudzapp/no_backup/metrica_client_data.db
Filesize
72KB

MD5
9a3a3b75fccfd0f867aa701a3bcc1680

SHA1
a9502f26a77a0073cdc1e7db61c3163b2b99582b

SHA256
dad6e81e21c686e9f565f1566d67f150135334644af3b4db184e01331cf2a905

SHA512
8f3b3458a40628d469d7ea1cb8388b1a73bada8b6e30309cca48d1066d14f80d0d3f55953977a4b3e98a31c8ed421845691e4784a96419d72867d92faab66dec

Download Submit
/data/user/0/com.gentongsehat.fudzapp/no_backup/metrica_client_data.db-journal
Filesize
1KB

MD5
a236c0d314a00f1a7e94eb959dbe0c60

SHA1
ae882c3bee93e794c1b4f375090dcfb1a7c0bdd4

SHA256
6ebf86b2165aa2680674f7cdb78a03cea5584e7a36514b5c9f08a9ff86d38148

SHA512
ca2d1e329102b8c98f5b117e768104dbffb9bc1f6a6f84782134486d622048c42f50548489dc1ff3e7692d0257a328c38ddeeeeca8ec1da7ca31a215099ef86d

Download Submit
/data/user/0/com.gentongsehat.fudzapp/no_backup/metrica_data.db
Filesize
1.2MB

MD5
477b9867177ad0d3020bcb3a6058fb62

SHA1
c09de56e1e67dd02e3057c88586b80837b8b65d9

SHA256
05f823a0b46c6c89fa54e8793c92436487cb3a3b604c254aa0619f186693d26d

SHA512
7470cfa3a4e2952f6453f6d7df78375d11e26d7e9c44946b5a5fd1dda254dbbb096a31dfe91e7c1716d450936192f4a8d8168d2c320b60c124b2095000c6ddc3

Download Submit
/data/user/0/com.gentongsehat.fudzapp/no_backup/metrica_data.db-journal
Filesize
1KB

MD5
738be13e170a8ebc81f676ba625c556a

SHA1
b6cbf39b777bedfb068e50b74c5ba3045614e160

SHA256
5211b1a2d220f04997b2a02205c0ee6e16484b2fe8f0c57e25d0ede938e4fe98

SHA512
75176949a6696f5f8fd9635d1180e019675f119ef1c73c2234205887dd14da2561353a41fc408e41b84d1e1c5da67a8bc34cca873ddb010f5815b5a45060cb36

Download Submit
/data/user/0/com.gentongsehat.fudzapp/shared_prefs/com.gentongsehat.fudzapp_migrationpreferences.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/data/user/0/com.gentongsehat.fudzapp/shared_prefs/yteSlT7daYsGlbVGqXfR.xml
Filesize
2KB

MD5
52d32ab73bdba7357f1254573a6b3d27

SHA1
c52e4da69a91713416928aa73adaa2df696c5660

SHA256
12213fd0383bac08979c1a5e0da7c3da9c91031d52b00ab8f3309341ca04d5c0

SHA512
17adbc01df5af8b676fa17e4acb5d2b269883453d5b8cada6f24cf629b0eace0a959836aaa0f382f8171ca25db0affc8f48f59bc140a38b93492fae3f59aa95d

Download Submit
/data/user/0/com.gentongsehat.fudzapp/shared_prefs/yteSlT7daYsGlbVGqXfR.xml
Filesize
4KB

MD5
c4f014ea16d04d377605a11508a83763

SHA1
1e4ab2975fc39e8666d72a0d172dec8874bad858

SHA256
89182bccf074d316111480d15141220ef3c52840b7e16e694f3baa43d842ec53

SHA512
7ee4f254239e42f1d6b260d60290c01614d777627e3fd04f0c17ef7005a2f4bfe25ee3ec2417fe0ded7ad1a2e3366f271158a853be164e05214bd9b8b9644708

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads