Overview

overview

10

Static

static

7

3fc0ef6653...df.apk

android-9-x86

1

3fc0ef6653...df.apk

android-10-x64

7

3fc0ef6653...df.apk

android-11-x64

10

Analysis

  • max time kernel
    3208995s
  • max time network
    136s
  • platform
    android_x64
  • resource
    android-x64-20220621-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20220621-enlocale:en-usos:android-10-x64system
  • submitted
    21-08-2022 07:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3fc0ef665382cc3a2c23100625a1fedf.apk

  • Size

    3.6MB

  • MD5

    3fc0ef665382cc3a2c23100625a1fedf

  • SHA1

    b39fc47f0eb2d862a2b79ea3a88e0a8f46e6858d

  • SHA256

    e0d2b13e45213bbb392b8ac873879afb87ec89155b8234c61facbe060acb2fd0

  • SHA512

    c589240e0eea1a938a699be40be87b6b2c9f665494187be35b657ac95eb1d9fae4938eac26acfeae4324912a01c7eb84e3c358c84e0c934b0d9289b1e72ea17a

Score
7/10
ransomware

Malware Config

Signatures

  • Loads dropped Dex/Jar 2 IoCs

    Runs executable file dropped to the device during analysis.

  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • com.udglqdyjg.emddkvlun
    1⤵
    • Loads dropped Dex/Jar
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:6040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.udglqdyjg.emddkvlun/shared_prefs/multidex.version.xml
    Filesize

    306B

    MD5

    852cc67538d86f3c31d636a00a9f48dd

    SHA1

    995f4ea8b8cfc91cd2f44c13e9ce10742796f3d9

    SHA256

    15c9507ea71439700b7e3344235f09806f12b0c97bb306e96c6f3c2dfc178b0e

    SHA512

    29ec45a9e8aa8e0c17a51a2d36830d44c14ea2fd5dbf2e9155f897ab458a970b9f8b45a04511b0c6a5dfd67c35109eb24138845aff40fdfa55b4b138cdd604b6

    Download Submit

  • /data/user/0/com.udglqdyjg.emddkvlun/ygksjkIdk6/jkh8H4f8akkoskh/base.apk.kfh6tkh1.8jj
    Filesize

    1.3MB

    MD5

    88210136a3750a03bacdcf26cc9d505a

    SHA1

    8ffe4492550a80034fef807ca7aea1f9f7f7a197

    SHA256

    75a96e0a179b8e373324f3425abf78f4eca8ea279a87cd923d697d98402a1e9e

    SHA512

    a44064c30067496bfa9e7839ba12348c3fd1d92701a5d3d25048b0693d2799462de88d616efdea81f8515028ae22e032b8525f21f405abd8f41006aaddd5f1d1

    Download Submit

  • [anon:dalvik-classes.dex extracted in memory from /data/user/0/com.udglqdyjg.emddkvlun/ygksjkIdk6/jkh8H4f8akkoskh/base.apk.kfh6tkh1.8jj]
    Filesize

    1.3MB

    MD5

    88210136a3750a03bacdcf26cc9d505a

    SHA1

    8ffe4492550a80034fef807ca7aea1f9f7f7a197

    SHA256

    75a96e0a179b8e373324f3425abf78f4eca8ea279a87cd923d697d98402a1e9e

    SHA512

    a44064c30067496bfa9e7839ba12348c3fd1d92701a5d3d25048b0693d2799462de88d616efdea81f8515028ae22e032b8525f21f405abd8f41006aaddd5f1d1

    Download Submit