8707f2f32cb6e9f616708abad307d9eff127c0090032387c14783215b40a27c0

Analysis

max time kernel
3089387s
max time network
170s
platform
android_x64
resource
android-x64-20220621-en
submitted
01-07-2022 04:17

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8707f2f32cb6e9f616708abad307d9eff127c0090032387c14783215b40a27c0.apk
Size

5.8MB
MD5

63c57a2670e9bb6c0ae324151704d2bf
SHA1

dd3b524519e0bce4ffadabfbdf2c5bc849464177
SHA256

8707f2f32cb6e9f616708abad307d9eff127c0090032387c14783215b40a27c0
SHA512

915fb7622660a21f1b07f356f3d41427e0d150e741ab1b8e1b334d6d0cd3bf374fc1081706e5518c13718055a9ce806f698f05008da1e14019efe636ba781cf2

Score

7^/10

ransomware

Malware Config

Signatures

Loads dropped Dex/Jar 2 IoCs
Runs executable file dropped to the device during analysis.

Processes:

com.dsmk.dkos

ioc pid process

/data/user/0/com.dsmk.dkos/files/926696.jar 5898 com.dsmk.dkos
/data/user/0/com.dsmk.dkos/files/da.jar 5898 com.dsmk.dkos
Reads information about phone network operator.
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.dsmk.dkos

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.dsmk.dkos

ioc	pid	process
/data/user/0/com.dsmk.dkos/files/926696.jar	5898	com.dsmk.dkos
/data/user/0/com.dsmk.dkos/files/da.jar	5898	com.dsmk.dkos

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.dsmk.dkos

com.dsmk.dkos
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data).
PID:5898

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.dsmk.dkos/databases/cc/cc.db

Filesize
104KB

MD5
5976811be1933ec96b6d5f7f4a7bffad

SHA1
e7353b30abbf4590b44003e907d8fa7a4994a9f0

SHA256
f234171aba76a2d9af36bac17e36d5bfe4c73ce2f46364c1b250c6ba5047c41d

SHA512
589fccea11f07a20fe20a257160911cf6fb05dfa51b5234ef36be575b683d6c39e730426a56a8bb27544758b184d22a170c92f0ec24c94d0a44c89944508d832

Download Submit
/data/data/com.dsmk.dkos/databases/cc/cc.db-journal

Filesize
1KB

MD5
4b243a71ea6d785eab41d7a5155c4dfb

SHA1
4332cc833f11d7a4ed494559c483d60d299b3bd2

SHA256
5d483654f857a36ab24a654193fea4a4a64f6ee37aa27f4e0ef395a2a892e89d

SHA512
9d572622ed425b7bbf12970a06e74fc1ba4890059e2a74ece9f8f770ea16ff454561e0c7f04a5810e7ce32d1fc4d19752f5beb4818a0a5dc1fe212f8d62923e3

Download Submit
/data/data/com.dsmk.dkos/databases/ua.db

Filesize
128KB

MD5
d7438e9580bb9fad9f00db2ce6a1696b

SHA1
6efda5f86309faf26f2e2f2e7004ecadfd760552

SHA256
087f5f9a6ab2e41c761505e3d93d84f34da9bb7d6d600e8d80893d6b885d37f9

SHA512
74325d05a63a03e0c71b21cfebddbf12db0e10b618776d1d4ceb6acdc0ece7c8f6189a6b795006cf8e9af388563da4a8774cef9f3d616bf6c8d9ced0b80aae81

Download Submit
/data/data/com.dsmk.dkos/databases/ua.db-journal

Filesize
1KB

MD5
d385cf930c1d0f69ee9a8d0f25309962

SHA1
eafdddd2bbfafffbcdb766fc71737cc15ac9876f

SHA256
3a80523c3ae78278fb78bdb71c62f3d5b04d68e155c5aefefdea7aa786a81511

SHA512
7ea5dc38c6d5465c4e2227973072f91e0a9506608e39d3a4ab8c4445bc2866422ad18e5d32b773544a80274e3271de1e630a0de9c6b013768e547c839fdb66c2

Download Submit
/data/user/0/com.dsmk.dkos/databases/360Msg.db

Filesize
72KB

MD5
791f6df67923558291724b76ffa00419

SHA1
bf0b2ec488c3eb2d3930536a7ab9d873860654f8

SHA256
7054647b909a330d5cffaf1dafea6e1e6c25aaabf91267f14f4a8d054077058d

SHA512
d2c4b07dfef9978c6a4fff2c85a66e1a3074f4fa1446357e3340b48767d271f2de8263ad3074c3b5722fca5b7b0acc3e3b7812de46f170ffd344a8d1484393bb

Download Submit
/data/user/0/com.dsmk.dkos/databases/360Msg.db-journal

Filesize
1KB

MD5
14024feaba6e63e9f2831de72210b52b

SHA1
b2ad4d99edda81bda0d886f352493b1cd701f137

SHA256
8f620ae640e1afd348463bcb9e7d27624927611a9c96e5279155f1ba32aa98c9

SHA512
7bf43c70b7b52439c0ace2c45abf0c21ea5da165369845f27320fb8f22e329dcbc0a0b2dbdaf44622fc89ecd65936e6b5d9f97ebceb56d2718437b6201b3f792

Download Submit
/data/user/0/com.dsmk.dkos/files/.imprint

Filesize
994B

MD5
94f60bd79b63b39f8b89abaaa34beb2b

SHA1
446de00e73738280df58d26ae94bc334948b6f59

SHA256
c8984339371e33e1faa7b78869e91b9d7f47a621c5ec01f0a0a38c473dd4f8ed

SHA512
0ce4f903e6e276a766beb200a9462c4d51019f683109cdf0fe4d33117ea9d589c4207f331459ffd5b76f09f2b29762047dc43b06a3ae74abefbf0db9650a6fd7

Download Submit
/data/user/0/com.dsmk.dkos/files/.umeng/exchangeIdentity.json

Filesize
162B

MD5
2ff12f3a39d9911fe0f8997f271b4ec6

SHA1
381d067cffc082e159d7065f3c6c8de469e56258

SHA256
e0c992c22bb0d1bd997573869622990dd013397401e6ce7b839e255a49da1f5c

SHA512
fdc12fcfb3b620663df7479fd484d3973e5b5a6d98d247348cd72e151d46c28c313e7604184495a64f847e3dc60fb03ed676fe391fe9c729bb5db975f4b4e13f

Download Submit
/data/user/0/com.dsmk.dkos/files/926696.jar

Filesize
70KB

MD5
80cafec19799deaa40cf0ccfe11e2cbe

SHA1
375b026cafd24c875a846f08d467459f54f75548

SHA256
27bca6168f6eac9be6e9c3d54fb1763dee718b7678b734c416b285508658c3c5

SHA512
db6457d04778cb7a56e03aa14eefc09f0da443abfc4190ae6e07f9cbdd73d05c4e08f53703acfaf60a9fc66aeea13a4b1593fe44409c7b692c552929e1fe09d0

Download Submit
/data/user/0/com.dsmk.dkos/files/926696.jar

Filesize
144KB

MD5
b849e0ce51cff01a9e4a3dcd4265a949

SHA1
a290c2634b41550584dc7859cee986a13d9e73c1

SHA256
932795366b83049df7892db2596279f5d5b262261786db526eb54b077a021b40

SHA512
37bf6cf35dbe990f03be10bcd806be216a152a3d2c46e708ea136085abbb3dab6d29a39e044b953f147c70854e98e78ea12691f6196d18ad3acee9d1352c6192

Download Submit
/data/user/0/com.dsmk.dkos/files/da.jar

Filesize
5KB

MD5
1781a98b57700b166a0fbcd7f6ce5aa2

SHA1
494d1be335a5095033688a61dc70c1f846712356

SHA256
6f24bb9c819050ad4ad7b245b1bed3c782c9341ed2482ff19d0b2aaa59fc6483

SHA512
1d87e24fc8d759b27d6d3716711c66508cd5f2b93f3a004ebd50c6a6bd2eb9194f8ecda7e29dac6e78430f8d189a885d30ed598e44a1b0f530bb0b1c369d8329

Download Submit
/data/user/0/com.dsmk.dkos/files/da.jar

Filesize
11KB

MD5
30ed110cb984803cd486d0c0e05a4f07

SHA1
3f1fadbb365d373cf10bd62ae4eff675f83ae215

SHA256
b51d28a93ded9685f802ce965c8adf9a428d22d46ff9d0f06bac2b3e325a5ca7

SHA512
f0b1629780a70a0a3e56a3dd22b0882fcee0f569d15dcbcf3704fbd17552e91b2bd1f9bfa83bcf8876b6fb161bd9f6fa6dc359d3369c778099c899aa53be3ec0

Download Submit
/data/user/0/com.dsmk.dkos/files/exid.dat

Filesize
55B

MD5
3a5422b8d226e0e8fd657f05d802de14

SHA1
ad9a0f047d0f18671755b7944e1d90d1d214a745

SHA256
197f137573ec71c578b31036d0b1981576a35397a0239c386586ab359e1df99e

SHA512
b0744125f56ec816f77620f677076fb07cdc99e36533fb454f1a746002b79ebb8441f34480010cf94eeceb5469979d6cf76057fdacbee60e965f2fa0493d29b1

Download Submit
/data/user/0/com.dsmk.dkos/files/oat/926696.jar.cur.prof

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.dsmk.dkos/files/oat/da.jar.cur.prof

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.dsmk.dkos/files/umeng_it.cache

Filesize
433B

MD5
be183293710ad7e1dc8f068305d5f870

SHA1
61d4045bdd126a33f0bf5e47a02de6cf0da62db4

SHA256
70496ef4499c74068fa1b9981e4ad833433bf589374704659135e068e4756185

SHA512
986315f5039be3240dc46fd53c4228a2b064fcb9eac95ce2ad1ce03ac9026fd64b60ce83bfdb8afe04c949c20b4f5dda0d47dc9ddcc4c60b52a81ee2f917f0ae

Download Submit
/data/user/0/com.dsmk.dkos/shared_prefs/com.dsmk.dkos_preferences.xml

Filesize
602B

MD5
d2a32d7d448f48f50b5fa8d170f32c2c

SHA1
604df80bce38a7da70edc4a0127617fadfa809d2

SHA256
cc9f1e409b205a75860952784ccae8c922a11d02ca6feed8ffd31fd58b2462cd

SHA512
dee8d3e14099ed17dfe6d464afd73871b979edb6f07ed2672490547cc8d26ea4248cced0d13818b4eee955f249023b9c8208161aa6f861b7c7bfa986f98776c5

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml

Filesize
111B

MD5
c5ef77dbc20c897d9e4c624d4cb59f80

SHA1
f528223608a11c081ae6f63f8a31da2ad41cae35

SHA256
14e3aabec08ba2786b255866ce949512ac287c9103fe9a459d31d39265870d14

SHA512
a46a5cd93c48bcd3bda08f479eac0b18cfca924e03dd598e4369dbeb4465c50656008fbefc6191713091437a911277565142bab40f5faedb8078eddd0ceef24c

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
111B

MD5
6164f1945a3f743aa28c9ad0df24ba83

SHA1
2f8ebf065051e5dc37ad584caa0137f7a98549ac

SHA256
ddaf62f6315d7ea6b46a390b191821b0cad27625d06353150b1cfc443dd46588

SHA512
16f05fcde5d82f4bc9058ab3bb0d08f8dc583b757b4942df9654d26f9930bebacd29a5dd9159b850472fea744199eaa6c2928fbca38c8dd6208d872d2d073db1

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml

Filesize
408B

MD5
f6c2da79255b4ba014ea98344cdd562b

SHA1
3b5920990375963a0cdcda5b2ddb03c0562d3fc0

SHA256
96062a2b17369b3b8cd24e111fb44384dbbedd423d2751bd058c1032639b6e8f

SHA512
f6d7f83858f3133e8bc95f79c8057d85a038e8b5f9ce78e1fd76d7c772324651c8d8fe6dce63aadf70d1c87832604b037ada8b1dddaf58ff496afe6fde29f31d

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads