2807633cd7e4a4998f5c790397a4402acb093211dcf08b68988ee01cddaa1b50

Analysis

max time kernel
3870249s
max time network
153s
platform
android_x86
resource
android-x86-arm-20220310-en
submitted
21-05-2022 11:30

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

2807633cd7e4a4998f5c790397a4402acb093211dcf08b68988ee01cddaa1b50.apk
Size

5.5MB
MD5

15a91533dde1a28ab7fe81bd77fa0fa4
SHA1

78f180421ce56e86f780dbd40cbbaddad53e62db
SHA256

2807633cd7e4a4998f5c790397a4402acb093211dcf08b68988ee01cddaa1b50
SHA512

bb0308ce50650d19b061f1d4732f8d2c20c6ce00486660ac55178f59d0d71d5008288ececfa4b32c0961e9791c341eb1a9d36fa60ecad91a75fda09c83fc8812

Score

5^/10

ransomware

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.kvinve.kxtizgu

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.kvinve.kxtizgu

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.kvinve.kxtizgu

com.kvinve.kxtizgu
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:5140

/system/bin/sh
2⤵
PID:5193

cat /proc/version
3⤵
PID:5300

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.kvinve.kxtizgu/app_tbs/core_private/download_upload
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.kvinve.kxtizgu/app_tbs/core_private/tbs_pv_config
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.kvinve.kxtizgu/app_tbs/core_private/tbslock.txt
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.kvinve.kxtizgu/cache/image_manager_disk_cache/journal.tmp
Filesize
31B

MD5
8c92de9ce46d41a22f3b20f77404cc1d

SHA1
8671a6dca00edb72be47363a7071be65cf270373

SHA256
68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

SHA512
30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

Download Submit
/data/user/0/com.kvinve.kxtizgu/databases/ip.db
Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/user/0/com.kvinve.kxtizgu/databases/ip.db-journal
Filesize
524B

MD5
aaf1f961fe8ef3b3c2f31b5af7edbd92

SHA1
a8e540858a9e8e4bcb6e0e7910fc65782113c990

SHA256
061705ce0cdc6d174acd79991a44590c1c39c915cccf2fa69284f390d0c40719

SHA512
3f5018d30e9294355cf53fdceb6c6e05e40d01ddf9b1463c55756129afbe634086d726fbe5cd26e650049958dac3b925e787ee66b22d5caf2c27ff6d1d11963f

Download Submit
/data/user/0/com.kvinve.kxtizgu/databases/ip.db-shm
Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.kvinve.kxtizgu/databases/ip.db-wal
Filesize
32KB

MD5
2f28f27ae82db42be8b936cca68b3e83

SHA1
be6af58275f5d842590a67fffe5dd1409646684a

SHA256
c6dc9485f259eb970fa256954c81935fa1a277c60cc55ea31a89e314f1ab2990

SHA512
6a48551a5d25a9e498dfb169ffb116698e897fd6daf39bf010176e354a3f5fb5d5e3d97b348e8d38f1c255ea41a5db8648f22f8c609fcb199b2b43dfb37403bd

Download Submit
/data/user/0/com.kvinve.kxtizgu/files/files/dpi
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/ctywcid.xml
Filesize
393B

MD5
9f7c81ef579bf44cb98af19424a72943

SHA1
07fbe8135a5cc736eacdabbea6794b1cbe935eac

SHA256
ac03217b67246d678fc20e8931d74ad445c06bb05f8596889980f7eac4c8c733

SHA512
4a31552366f77bb75b8457dda8c67a50ab59bd5ff596d52e1b280349305cf2985582dbfa11874f920aa0c0b132655276b7e0d857e9afbbdefad3070772751345

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/ctywcid.xml
Filesize
447B

MD5
a34432f138c6a5af81ffc96622b8ebf9

SHA1
3f138a242ab8671471ed9b57e92a36c7c84ff52f

SHA256
399ccbbb6a1ccd33458b02522597b1fc9a9bdc40e2e258d3daaccc59569a3c00

SHA512
171dba6dd3d7c9ceb73a7212e0213551a62b44a8bf8099e1b21c8811c9b1454ee7f50f61827ef6659a1dacd639dd665d298f30b1f0105c95620278e1141d3161

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/ctywcid.xml
Filesize
112B

MD5
558a394f9aafa305087bfb7944216ea9

SHA1
581275bfec220fc2de16b15fce886939b0d7a68b

SHA256
c33ea69e0c699eacb5ba63349f03d917ada3a0ec8cd75708f8a07d3c298b600b

SHA512
d2b4bc7dd6b6d15a5f114170bb0641fbb6b760ddacac7398a3c729849a70863c40e33a9a88ce79efed8dfd4ccd334412835389b228b1926bc857593068130f22

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/ctywcid.xml
Filesize
148B

MD5
231c6d70214997450a88dcd338e3f440

SHA1
70ec417a748ab4a8d9c25a645b81b73d5402ee8f

SHA256
a414366ed174eab87ba00d51cc58ed01f863687db6b34700b3b54b37ac4096fa

SHA512
34e6075c225b25f30c4815350c6b04fa5221bfc2f9983ce7a33e6e80453ff552bf37373b96646273d28b9efc8365b35188f26df1e973851810283f9382837407

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/ctywcid.xml
Filesize
199B

MD5
55078ae48f27908acdb4af29a3ca228c

SHA1
41f654da9f167fe201c7602efbdb4938e4e4132c

SHA256
7d6aabdbbe85e83691094dabe0426ec1952ae141b0b73ab9272f9589aa8ba25e

SHA512
5ad21bdb570d1444356523d0e92cca55159ab57d93caed4b7e2563590dd788e08065b489147d600c91e1477aaff3564a1dc6de7f3a07565c78441986d6236efd

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/ctywcid.xml
Filesize
248B

MD5
3854d559e003686722ea6218c224d075

SHA1
cd5f61c80507b9ffaab1b083c106a604b1d88eb4

SHA256
28420e9b56637769baf02522280f05f0056d8e5d3d2a19bc5845dfdc8be6d0e9

SHA512
83adf93e08b540debb1a3edd69b55aa05ad8074d59784d727c0bd4b4ef5681ac0108f179ade1a59c63c303f2f7690e65c92ab48b4987e106a00fe6af98c793a9

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/ctywcid.xml
Filesize
300B

MD5
71794d87ea407deb3a6053db0a9cdfce

SHA1
21e1921a6fe5c00b5e0577d36e49265f9d55148c

SHA256
9e6147c4ee7d20de66a68755180daab82477a44dadd693fe3d51a5bb188b823b

SHA512
4a7d88147d8c80dfc4e539c653f8e035a4e8d1a7c9207ae58b16247503991941d9f2d88178bd300afca442b716bc791c570061b478cb9d404b0d392b3ae4f5d0

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/ctywcid.xml
Filesize
345B

MD5
a2da683517eb05eb0a6aa22b7fabb34a

SHA1
a528cce3fac06a2604db0336110268b85211e3f4

SHA256
a013a4faa504aaa811b37e535e993bf20cebcd948ebd4860cb1dfc49324ca210

SHA512
0a51fdf1ae58e32d9a0da731acd3c22490b658d798f78c25d38af7ecff51743ce3d5987a9df1418ce9a5003bfb98ad23aea3f77bcfce170b07e5802d453a65a6

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/lqe.xml
Filesize
158B

MD5
3cf09be52d871a5b01cac4d109c50497

SHA1
e740c435f27cd054db65f6459c1705984c72a407

SHA256
ae1370769a3519c773b4b855ae93057ccc0f2285ae30b3ed0b1e7c6360bf2f6e

SHA512
dea8ef82a66f5f6c3d9e103ab06ebd0a96fd7c103b11b05dcd8ccc93a861e27c9c8c42d3e4006ce2a0d657135a05096dd92096a2f9a42742a9ddb82c75f2f14a

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/tbs_download_config.xml
Filesize
200B

MD5
227a1da196cbc99ab39c9b0091849414

SHA1
2ec5ad0092ddde12a5d2b5c23d0ae9eb69040e49

SHA256
13b7a881a1286938737e11774c504055a6818cc30789b08536e9326cc0b0fc49

SHA512
70b3575aaa8b7375ee88a5141ae10b370fa077bac9db8f20cdb0cb0d6b113ecdb7ed99bfd3f233467c10ce59e1e17ffa4e4169ac8a682e44908b9d35f47364d0

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/tbs_download_config.xml
Filesize
248B

MD5
b5497e4af91bc27fa35e7413a8638e76

SHA1
e667a8771cded5828359ba78b0e89b5b57311ee8

SHA256
819640d00da57265966776fb1a0ffca73d2fbfd6193f8c44b79f96f3436f25a8

SHA512
e52edb944704d13e894d7b5a3e516800298c081e33b6364df1d50fe250b6f10c05bf4b7966b04cd8e106b629bcc2ce6e31997b300ced056ef484262bc87c0065

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/tbs_download_config.xml
Filesize
248B

MD5
8827e3a7516407ccc65bd0269c015ce5

SHA1
954cf9490dc9e4deb895cf3b16560752a601ef80

SHA256
f0bcf74c3a768cc1e6d924bcca1713d79eca7ac80b3dbf64787a00fc84156ef4

SHA512
5a96c9f442614e678e7edbd055db27f9966c4c9a42eef6031937b31a690d5914b907cb65002d5fba459e6741def94673a2c07a6d4b067052832cf95803eb4d26

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/tbs_download_config.xml
Filesize
248B

MD5
723bb36b988938b972e8bca7b3750aa4

SHA1
6c83366d34f1efbc2d3600b664cbb68829ee6ff5

SHA256
2173776cb9c88f81e3096ca8ff4723242adfcd22ab104043defbab2aec6f3af0

SHA512
76a59090118be85a3d426ad61d6bd69d74ec1039b3239386ab225b54ecd529b8c1d9a9d75d2be876108c5c0740ee5b45a490baf45c6e1f0fe2e33a20ce510a11

Download Submit
/data/user/0/com.kvinve.kxtizgu/shared_prefs/tsvx.xml
Filesize
159B

MD5
e5d24e69676d923592a1aea657f718a2

SHA1
1bf5622ab2e615bb5cc96b05ef687fd81713984e

SHA256
e6a73bd24e400adf289ae8337bea3f4e28cb88b9061c03226de517db630b8375

SHA512
0549304f2789b074902de2bf5d4806452772ff5ef36e015fc1b04d4b508aedb4906976e54600116d44eaa210808c70a093953607d879fab1579d936e5629006a

Download Submit
/storage/emulated/0/.nid
Filesize
36B

MD5
cbe84a6c1c840d04d47b8014143e7034

SHA1
04d06686c090d44caa116f6e01998627420a53a8

SHA256
fadb30a3fbabed850fce63865162374c32e32dfa301c0ae4d151bd9a3b518bc7

SHA512
479ee118354427b21d0ee17c36528b25881abbf66274646055dc9c1450122e4acfc0abb0a264abfbacea8fb8bd5c8c21f437d84c8dda071243113e97944186b4

Download Submit
/storage/emulated/0/.rg/ia
Filesize
26B

MD5
c36896db24a815210676c1fcb99abfa1

SHA1
ecc851c51b6130ad4c04eb349244a97499c4ca0d

SHA256
25a59980528fd6598d9e2e1d574a1068a007d1aa10de1dad4096d36d5f7c1f5c

SHA512
c540121d8e97d616cdeb52ed80f828a339172baff9db68e2bcf0c5f5f3e3163dc18e8996500b73388be1e96b782c62771f6c1e20d937ca16c975f330d4833935

Download Submit
/storage/emulated/0/.rg/miqn
Filesize
27B

MD5
890b041655c9d3d0fca4d5eadc88477b

SHA1
2e1f60c262ea7791b7941e84243ff1cbc5a612fa

SHA256
e5ea49adea41395ac8ebd931b8a6e82fc81bbb725a8c7275a45eaebc88b86f6a

SHA512
6b080783c4a2358cf528453303979604b79da2dbdc9059691ffca278b92f18b971a57e2d7ba7a0a874e5c411400e676483c4b7efc107cf1446481c6d69f5f3b9

Download Submit
/storage/emulated/0/Android/data/com.kvinve.kxtizgu/files/tbslog/tbslog.txt
Filesize
2KB

MD5
4074df38daa3aa2aecde1bcec47e43f4

SHA1
0205f12304a2a87da78b9b732ae61a9e9339590e

SHA256
af73b8def3dfd3fe87235ba96cae54a2e5fec6c3b286800629c0695c691c599e

SHA512
a019f8aa4f332cbd92e5cbdbe5954daa5ba736e034816730525f5b966f9965a3a8ae4f09c3c0715e9c7c7d5f3f7b4ad2c33e4783a563a52f067974ccb354aa48

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads