0c0626373d00a99483d405eba1383dd9a29933e461dc1c0831ddef952f250710 | Triage

Analysis

max time kernel
3058131s
max time network
140s
platform
android_x86
resource
android-x86-arm-20220621-en
submitted
30-06-2022 19:35

Sharing

Report Analysis Logs

General

Target

0c0626373d00a99483d405eba1383dd9a29933e461dc1c0831ddef952f250710.apk
Size

607KB
MD5

8ad69f4cb45cc44d656f2b0937e49e75
SHA1

5787c3cba924b1f46c0c63598272636a74821afd
SHA256

0c0626373d00a99483d405eba1383dd9a29933e461dc1c0831ddef952f250710
SHA512

84ff69200e12a13960b77024f6712c104d911a9d47f6c22a2dd4ec63bc5bdaa2822cebbae41fae19ddbc3c1d089470bd6510db54c1b68720a73be862bb3d2357

Score

5^/10

ransomware

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.luoye.wodemo

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.luoye.wodemo

com.luoye.wodemo
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4593

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.luoye.wodemo/shared_prefs/bmob_sp.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit