Overview

overview

10

Static

static

7

828132b6a7...c9.apk

android_x86

10

828132b6a7...c9.apk

android_x64

10

828132b6a7...c9.apk

android_x64

10

Analysis

  • max time kernel
    686876s
  • max time network
    162s
  • platform
    android_x64
  • resource
    android-x64-20220310-en
  • submitted
    03-06-2022 07:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    828132b6a72eb38e731a0e035bbf9111d38bacd7289be6cda9cea7c80a60bcc9.apk

  • Size

    4.4MB

  • MD5

    162b8f9a0af305b7816383081928163c

  • SHA1

    6ce97f5702f054029690ec46a54acfe839def5ee

  • SHA256

    828132b6a72eb38e731a0e035bbf9111d38bacd7289be6cda9cea7c80a60bcc9

  • SHA512

    452d0600b85955301dbee4af642d3013f851ed2df111754a0504e02e3f257ef1c831355f3e48fe0528e2b3fc1953042ca64a3fd6811843d4e3df6bad7cd63153

Score
10/10
agent_smithadwareevasionransomware

Malware Config

Signatures

  • Agent smith

    Agent smith is a modular adware that installs malicious ADs into legitimate applications.

    adwareagent_smith
  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware
  • Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
    evasion

Processes

  • com.e.orangeredscanner
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data).
    • Listens for changes in the sensor environment (might be used to detect emulation).
    PID:6363

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/data/com.e.orangeredscanner/databases/ua.db
    Filesize

    104KB

    MD5

    9fc80363998b006e0cd23b932a3767de

    SHA1

    a042774dc0a970af8bbaac5deb753aa9f5752c5c

    SHA256

    fe578355161482f7a262d6b0a963c8f2ff7b3c79e5ffff9d23785c87b19f2987

    SHA512

    0352940515006256c6729861e6e6adc1a639d0d88242daa1639de80d5a23ff1d54c140775b58adbe292b515914edc1e51d13661475c58cef2a92861c8161511b

    Download Submit
  • /data/data/com.e.orangeredscanner/databases/ua.db-journal
    Filesize

    1KB

    MD5

    9f1e61fca0ab8d5f3e74c3df6003f040

    SHA1

    df3dadb59ef60b9c212db186689d2f39a31d2744

    SHA256

    4439389e0b15be1abf8b6218079807069e4500861b31ede99febba827178d7f5

    SHA512

    e3c92295656328c7bc7b816a680a42ea44058334b8f7606cb0dec05d8ead4ed57c4427e14b30bdaafd478489114c28cb216b2a501839f3b144715c7cc428aa8d

    Download Submit
  • /data/user/0/com.e.orangeredscanner/app_webview/.com.google.Chrome.hII7vQ
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit
  • /data/user/0/com.e.orangeredscanner/app_webview/GPUCache/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit
  • /data/user/0/com.e.orangeredscanner/app_webview/GPUCache/index-dir/temp-index
    Filesize

    96B

    MD5

    39205fd5630da545fdfc0be10b059504

    SHA1

    261763008b7be746db450dd0dcf698160716cc21

    SHA256

    b82b38731465718b4ea75cd1f2a8ba38012ac59387e247d9e37c219746b4df97

    SHA512

    966b8d33aac27a88ac6b1c2ae18e345f46b763b8be87fea724e69b4481eb076d3982317c887ca15b39cf1a8d76c3ce465194fbf63a4d84afbcee489271f2cf5b

    Download Submit
  • /data/user/0/com.e.orangeredscanner/app_webview/Web Data
    Filesize

    112KB

    MD5

    b663831f8cc130493476d94f2d7a5330

    SHA1

    043a1956ab8e40821d67043f8a9110a8eb36fb93

    SHA256

    c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7

    SHA512

    e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

    Download Submit
  • /data/user/0/com.e.orangeredscanner/app_webview/Web Data-journal
    Filesize

    1KB

    MD5

    934adaca3faab42742986d8f1320ea92

    SHA1

    0bad31ee4022501d596ee6588c19fe001d7a05db

    SHA256

    76f63ffbd595420df9980d8c39b74e19d26b16c23dfaad9bd1b41edbfda14483

    SHA512

    7ff9e13ba095a394634930737308565051bbfb9b4eeb8d3e6132ee43da5c3d63d7ae1bb716a279a036a032cc780a25aee4ae9a27419929ade6601132bf0b87db

    Download Submit
  • /data/user/0/com.e.orangeredscanner/app_webview/metrics_guid
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit
  • /data/user/0/com.e.orangeredscanner/app_webview/metrics_guid
    Filesize

    36B

    MD5

    014e223dbc5fd11a0443fbca674d67e7

    SHA1

    95e802022764d45a3f3f37b51a57b36701909087

    SHA256

    5133785139b56702844a16d6427eac5b1e517005cceda107210b8fbc5d60ab07

    SHA512

    f9071e1f37d0662d8818fb5c983da67e7144218bc9c670eca83e74cb80c85302221a3b9668248b61bd3868023120410e300aa79a471dffb643652ee5f710a9d0

    Download Submit
  • /data/user/0/com.e.orangeredscanner/app_webview/variations_seed_new
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit
  • /data/user/0/com.e.orangeredscanner/app_webview/variations_stamp
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit
  • /data/user/0/com.e.orangeredscanner/app_webview/webview_data.lock
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit
  • /data/user/0/com.e.orangeredscanner/cache/WebView/Crashpad/settings.dat
    Filesize

    40B

    MD5

    01771a51472093db1b52e59883798d8c

    SHA1

    79f247f87396d0f1e1ed56403f778b94a7581dad

    SHA256

    da02b2fe8a46859a6a29fb5a78191d6bfe5c64c0e61edfaccf6e4d5ac1960373

    SHA512

    aeec006b6831d6655d61a1d8879b9dc3a91f9c61a21c3e9ba16bb7faffc91cb4d85afdcf496d4675a3b8731fc447f4b0ddb6b28329154e0b7bda905fde5ec3aa

    Download Submit
  • /data/user/0/com.e.orangeredscanner/cache/org.chromium.android_webview/Code Cache/js/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit
  • /data/user/0/com.e.orangeredscanner/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index
    Filesize

    96B

    MD5

    768525b22c8037c4da9a3aec2e4f1621

    SHA1

    92eff259d9f4cbdd95269734ed9d411035af54c6

    SHA256

    3e9035322192dab44576e6f3d0e6fd740c9e9854d5905a6907d46e6f1792fbd8

    SHA512

    9ad6eb0adca4597a2ae178c5de71790b35d502fc4b4f69374907b09ead069e74c49a7f910c79a2fe089c36374ebbeb8f7df36af10733ebf32fedbd8f9e03ba13

    Download Submit
  • /data/user/0/com.e.orangeredscanner/files/AppEventsLogger.persistedevents
    Filesize

    1KB

    MD5

    8c3240d6f24528d8cb79a498feff92e3

    SHA1

    edb9d00cc7c25357b843cd4adb6817e81b591b8b

    SHA256

    fe915c3ff7e852ceb61af5b3d929a342093bd2ea7da582adfad0a370c566e108

    SHA512

    02b8771e454a8f1091bb9ab7b8463242bc2486052d806b2b00df2d9e0e163d41260bb57b690d8a640a3bad7fbb0c9706289307ff8aae1a4ec0e4c59c13f00cf6

    Download Submit
  • /data/user/0/com.e.orangeredscanner/files/AppEventsLogger.persistedevents
    Filesize

    1KB

    MD5

    8c3240d6f24528d8cb79a498feff92e3

    SHA1

    edb9d00cc7c25357b843cd4adb6817e81b591b8b

    SHA256

    fe915c3ff7e852ceb61af5b3d929a342093bd2ea7da582adfad0a370c566e108

    SHA512

    02b8771e454a8f1091bb9ab7b8463242bc2486052d806b2b00df2d9e0e163d41260bb57b690d8a640a3bad7fbb0c9706289307ff8aae1a4ec0e4c59c13f00cf6

    Download Submit
  • /data/user/0/com.e.orangeredscanner/files/AppEventsLogger.persistedevents
    Filesize

    1KB

    MD5

    fc00a65801bc80cfd607ebe50e8304da

    SHA1

    04d5ea60fb4a444548ec3a8d272207c7d686e65b

    SHA256

    169a7a599d0abc26f483ac0393ef4af740339fb0065f96673dca4a2cdd971790

    SHA512

    fd08974c4e722919c341f74655c336f97e9c87a04b28209095533540d9547c1eaf1ffa99307c34cb632a4c99ad075aa9a51187b895ed50441f0f3e70201d5252

    Download Submit
  • /data/user/0/com.e.orangeredscanner/shared_prefs/WebViewChromiumPrefs.xml
    Filesize

    127B

    MD5

    6ef709b8536878951e87c29a1518fc2b

    SHA1

    24376c70b00152501b3d98df61fa7db435339172

    SHA256

    10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6

    SHA512

    96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

    Download Submit