agent_smith | 7db0b00b99e4d053c21392473707d2527530e375197652e9d05091834922527b

Analysis

max time kernel
953516s
max time network
91s
platform
android_x86
resource
android-x86-arm-20220621-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220621-enlocale:en-usos:android-9-x86system
submitted
25-07-2022 03:33

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7db0b00b99e4d053c21392473707d2527530e375197652e9d05091834922527b.apk
Size

2.4MB
MD5

d51ceadcdd8238b3734d615e62132d16
SHA1

8d7c0264726def62717fc3c01eaa3dd813fd482b
SHA256

7db0b00b99e4d053c21392473707d2527530e375197652e9d05091834922527b
SHA512

0988a153844fd91aa1c1546dcad7b77946febd28bdfda0f021fd8ef1cc51e1a56bd9439379d0acac3c30472fe077e33c3c9a4d35667ec8d850a92a7466d5b7f4

Score

10^/10

agent_smith adware ransomware

Malware Config

Signatures

Agent smith
Agent smith is a modular adware that installs malicious ADs into legitimate applications.
adware agent_smith
Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs

ransomware

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.yumer11.ausdiue

com.yumer11.ausdiue
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4319
- ls /sys/class/thermal
  2⤵
  PID:4573

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.yumer11.ausdiue/app_jar/lpdf.jar

Filesize
35KB

MD5
e1ab911d4b585a26aae02d8540575013

SHA1
ac148f7bdf95edddc97d9224ff51a771f1070520

SHA256
8a71fab57b4a03f0b37095daa2eaa086ec6ed6c1c6166ca67c0e0a9e14cc85ca

SHA512
983ec12cde3cbfaffb414b8c8eb17c793bee558eb51b9d5e630f9bd5f312e0ce55622719aad6097a799286c25001212b26d7053e7e110a4918beace33d3bcbc4

Download Submit
/data/user/0/com.yumer11.ausdiue/app_webview/Web Data-journal

Filesize
1KB

MD5
2752f4ca8a4efc9a779f942a8c6ea764

SHA1
95e434fdafbb2f65686578d28c4d48d2e3180e1f

SHA256
a822f8bcdab394de9dbd64e10521a8b96c91cab4f2d37bb7d667d40e82b4c656

SHA512
b17d9b005c0902a0d32a766e241b9384affe25e0b900300a01e01022d95b4dc5832155419439efb1739fdf384bd5671c14ec57935ed55022bc486a1e9b5171ff

Download Submit
/data/user/0/com.yumer11.ausdiue/app_webview/metrics_guid

Filesize
36B

MD5
e12ab208769aad7aa2e98f5770de7d49

SHA1
8548a668cec666a5ada244f9f203a15867bd47c9

SHA256
f234324714c67f3afbcf86a26359343430ff3a36f86230d533d15b8ff0bd853a

SHA512
da1fb4bb80d8157e8cf7de1ad6a44e76f16a5750d2a514b852ce108ee297c21d88fcf84118a51d533ab7eb00c70db41d387255488a878d416fcec8894e2a2995

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
21223e9184445fe043476484cd8cb1f9

SHA1
2b4813f849121d60ba35eb0889080668bb62c778

SHA256
bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

SHA512
be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/XinZF.xml

Filesize
125B

MD5
237ae82ee89a2accf57cc2d78879094a

SHA1
0c2efe5d38dbb74625568265c72e3b624091bd57

SHA256
7c593841a5a94cb2e7e8b6b991eb936fbbb90cd68b02fb38795c1c24779dfff4

SHA512
414228ca69a9556e7ea86e3f0d9d1026479b72aa3ae9a3977f20dcdf489a1c25e61b4fc510eb54e0a7472985a309b472744190ee86b730cc08cd00e1ebb0ff08

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/XinZF_conf.xml

Filesize
208B

MD5
8f2f02caafe6c3a5d2f8e92245062d8c

SHA1
ada9beb5b048a331082e920b0e47c8f3b3d29515

SHA256
2065466a49825e16b88572a23a3c8675b94fcadd0ed48b291d88062cee11661a

SHA512
2f03afcbfcba70434d3ab7703f8f5fbc84c3336b33679987fd5db163cd35fb8a16952aa4a3d66a014128357de9303d4f6650e6c70cf61aaffd6e5c86e5760285

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/XinZF_conf.xml

Filesize
122B

MD5
2eaf1b50441f9c8cb4b7b89476e754f0

SHA1
cf4af930a6762f5b606138af8cee22c01cf76424

SHA256
5e82b2bda3fd21a2ee833995d374723860020141440c16932925c34d1d953fef

SHA512
25ec7040480a2cceb9421897d10a95a635bd1afd105ccd0a3c1de807b6b61cdcd31840186d1750964a8d9026c16c7f0b9d2273951f9274d712a9860ebe0a5d43

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/XinZF_conf.xml

Filesize
169B

MD5
edbac43021524f402a4c5ae7859bdede

SHA1
c0526001eddae5c9c3337451bc0d4fb9db69340c

SHA256
9505ebb4d9c50363a19fed4673d9bbadd5743bd23add2d11aa981fd91fc2b98e

SHA512
07606cb67b94232900fac285e8bbf8c48cc6e21dd6a822aeb258820bcd358b524fe987537cab18fdae2752434524276ecde8d34d5fb5fbe624cd102ef9a93bdc

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/com.yumer11.ausdiue_preferences.xml

Filesize
200B

MD5
217606bdad89389432f35ca69e4b8355

SHA1
f72b8741a10756d7147f55c776ebbd8c19107c10

SHA256
b1dd54c54cdd39ccd99e4ce4711aa8b6d0578651078a4b91ae5fc8a88b26e667

SHA512
ee6101c90b7ccc8b9eae36c6c2b3b06934c4f8f035e65c8c9ada09234a9971558b31f5a17423123d85ed00099fb57739df399ea000167210924abd5520b47f36

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/com.yumer11.ausdiue_preferences.xml

Filesize
143B

MD5
b145b37629325f14f67f7ad4fb025512

SHA1
c899e1e746a281791b44d4d47d84b7b007173848

SHA256
c91cf79474d92170bc446cb19f31bfe0f0c108548332c610fd0df090957ce401

SHA512
f66cdbbf9564fad433e7868de861e0319554464e4267d87fdaf86354ca4d77d1375f06abc2b8ba75e058fb3e1ba03f65024f375b9190d0b1c269ef7bcaa9cf18

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/info.xml

Filesize
400B

MD5
fd53c95cb02f18bba57bbbc2bb422cf3

SHA1
5e1c4f8ead53c815c330c657fe17259114668260

SHA256
3ffe0a3ec75a0553802e3a4f681c59ff600e79f01c558ea18817c78fc91db75f

SHA512
8a9e71c9be7cdbe40ff687656cedd1a0aab813e583cf373dede12306935165769d9e60f826721e96666f0bac3c6a2bd84f7a72feab6667e7a2d29a4eb5552eaa

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/umeng_common_config.xml

Filesize
111B

MD5
4da30719dca246873553c676231bbf41

SHA1
52faa6d98cb236392291bf49a82b98cff3955579

SHA256
78c69e8106ec154de88b82e31875c666db13269a4e9b8391ce9dc10029ff3cb4

SHA512
68df4b6d79117bff65679b1ed1681f4e2cee94baf396315dbc60af52b1d10c1a8afcb5dc1b674482f128ed6fc23024dbb11b2f94a05a667e521210f52a018d16

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/umeng_common_config.xml

Filesize
171B

MD5
20de472bef9ff92db4add62b0cbb91f6

SHA1
b520adcacfb928fcd72fc5ea88ddd524a5ad2f3f

SHA256
42b931f9d5e2360b0bb1522ba02bb4e546e2369726aba7755d67121aab55ff41

SHA512
881e75a4f64ce2d802948657857bd157a30bc99bd349945836e4268e094dfac669adcbcc6bdcbec61246c701353179543c6eebdbf054ebad07a1600795d8bcf4

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/umeng_common_config.xml

Filesize
236B

MD5
db34e0576671b2bbbf4423aadf9892d3

SHA1
84101273146e27488e674b654d3516b10f634e82

SHA256
1287ca7fbf18692d663d5c9d154b1faa76d55f35f519e50b0a8af22c57b9a34b

SHA512
f2239b175f0b276ce594ebc89a7012d19d49eb57b638cc1eb9b5bf28a793fcca6ea29bc14b1423bd8cecbb24f632f61d054d79755b129aa87b8c00d80ab26aac

Download Submit
/data/user/0/com.yumer11.ausdiue/shared_prefs/umeng_common_location.xml

Filesize
390B

MD5
3570af2cf1f44a1777a30ee6ece4bbbc

SHA1
311107c145554935f869ab907f3bec923d594ad6

SHA256
de26d42ac51513a52eda4ae7cbcc1bac618d76924abc19719dd6d5fb7233b143

SHA512
4bc621e06249278887ad91180c3bba46cb8e7739db94ddb9f88ffb0b405844d6bcf6c3a88cd3731db9bc13ac9acefe01d3c1f0ce265de581163a0bfa1210faa1

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads