c5e9aee5c084939d3426e828b673de2f11af900c324928d9f8825af329e78fb6

Analysis

max time kernel
589780s
max time network
160s
platform
android_x64
resource
android-x64-20220823-en
resource tags

androidarch:x64arch:x86image:android-x64-20220823-enlocale:en-usos:android-10-x64system
submitted
29/10/2022, 06:05

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

c5e9aee5c084939d3426e828b673de2f11af900c324928d9f8825af329e78fb6.apk
Size

1.1MB
MD5

2101ca4eb3de71ddaa2d7b1a02291be5
SHA1

c3480fbf36b15cacf693a36418ac1707ad465bce
SHA256

c5e9aee5c084939d3426e828b673de2f11af900c324928d9f8825af329e78fb6
SHA512

fb8a210b7aa79d00c6f73a6f65f50d804b91914d700a28d8b6e364ad6a0fedf7dcc35d7c0c55e8f8a473ea4c7c9478920a95bc44cc7a6db67fb973987ba7b837
SSDEEP

24576:KW2O0K4/zHYTbNReVO61DYALeXFTNBuSkjazX7qRRqQ+9bfC:KZKI4TbNR1ALcBuSkjaL72RV+9bfC

Score

6^/10

ransomware

Malware Config

Signatures

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs

ransomware

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.qihoo.app.bangzi

com.qihoo.app.bangzi
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4843

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.qihoo.app.bangzi/app_webview/Cookies

Filesize
64KB

MD5
9b23e6a88d5a95f155f205cb04b93cd0

SHA1
b62dccbbef087a0731f226b96d15d35d8aa5e5fc

SHA256
f2f3c3c0c7f085399a6f9a464c1ac30a59ceeb5a4b7026286fa5609e6e8ef857

SHA512
bce5f25d98e2e8296c4101b62082dcb6a43902f3431ff6f725e41be6b9aece76e887ef94c4818baf4da845708fd76fd51c37fb6915710c870647593868f27482

Download Submit
/data/user/0/com.qihoo.app.bangzi/app_webview/Cookies-journal

Filesize
1KB

MD5
1d760649394467a6946805c3dc478ea8

SHA1
e8e3d3b012331f76b7c32e46549bb2416590e071

SHA256
498d8677baa401a61d520a25acfce236f64343beafef2b12060d40eb98367c41

SHA512
21510a3bc263c0938cd5bf835f61ffefba55d27343e192c19fa47778d3c78ccfd74e98473ff0090ceb474c728ab45fc2570389b1d639b2f82d7066cf51fbff11

Download Submit
/data/user/0/com.qihoo.app.bangzi/app_webview/GPUCache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.qihoo.app.bangzi/app_webview/GPUCache/index-dir/temp-index

Filesize
96B

MD5
dfe4d61f07918db2d771509b9bc81c7b

SHA1
ec95ad934cce9fe724f66f9a2dde6ca4fb3ae216

SHA256
dddd2dcfbf2bcaae82c70d1f450663bd85fa4d1ac4adc6df9d07552d961688d8

SHA512
e5def7dbfe671494ac28ef867cea757195eff16301fd28d79177a39e4fdf8f51aaca91ef345f85eb7f798a9b6bc03245f9441119908ece07b56b8bcd7a215a73

Download Submit
/data/user/0/com.qihoo.app.bangzi/app_webview/Web Data

Filesize
112KB

MD5
b663831f8cc130493476d94f2d7a5330

SHA1
043a1956ab8e40821d67043f8a9110a8eb36fb93

SHA256
c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7

SHA512
e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

Download Submit
/data/user/0/com.qihoo.app.bangzi/app_webview/Web Data-journal

Filesize
1KB

MD5
a5381791e4ee6c5b5bd9caa7bb4a2887

SHA1
7b6c4e60d6cd31c3e7e44badf67cdc5708671563

SHA256
d6f9217dd035a3a4e5122e6e8f6881acae123e23f2bf5cbd54897df9e97bef16

SHA512
fa7258c2fd251194d904340ea21fc98b8e8941682a6339a0ef42b6744994f1ee163c1c37a633f7891606e1c52324839e95638c326c5af30869d9df7040e02eee

Download Submit
/data/user/0/com.qihoo.app.bangzi/app_webview/metrics_guid

Filesize
36B

MD5
8ff552f349673af929d01cecc3d80448

SHA1
f78e51ad08d741586daa37338b9eba49885fff35

SHA256
e38e06eaedf2855b5ef21d577b81c093eb6382998e3a7f23d30d6f1a420aa7af

SHA512
acd5a1f76cc071e6458bf0cbebd5f04ad6a4ffa5fef78456aa37641447a219225ed986c96c02d8f087a4e66b73fc502a716359d3d0b917881e6f4842f6ffcf59

Download Submit
/data/user/0/com.qihoo.app.bangzi/cache/WebView/Crashpad/settings.dat

Filesize
40B

MD5
c7d01673825aef7b6c4a2b58d9ef46b0

SHA1
3d17725bb003be0b3c3c1936d6f44a599e613e0e

SHA256
4dfa0c260d9e846a49c77ccbdf4d0f708e796f363746566793d87a2e9e225443

SHA512
f006b880e35a516add2247bad66cd418c92a2ef10a4eb5396e5a9e867d915e2b1f889dff4eeb978d20927e092ea0454aa7bf017f7e9e5e6f50188ace555fd61e

Download Submit
/data/user/0/com.qihoo.app.bangzi/cache/org.chromium.android_webview/Code Cache/js/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.qihoo.app.bangzi/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index

Filesize
96B

MD5
494495df2e48f4319a989d27fe0ada84

SHA1
c9a8acff2fdd25298763e695b793b9a4b4c14dcf

SHA256
c12f41f458ed3aad278aa0ce33e2cef675080eddafd39383fd980663345538c5

SHA512
bcd48c4371a5c29bed0b5dbf048116eadd6d78e7130808e949287c0be6449f6403af735a2d852f039a3418974a7440530346884e500b3e66641bd8a575d6ab0b

Download Submit
/data/user/0/com.qihoo.app.bangzi/cache/org.chromium.android_webview/cc692f94b316072d_0

Filesize
402B

MD5
84794c5881a33a5e841ff547dc5898a5

SHA1
57e622a067393787fbd0c0d7583211b3e60e9fc0

SHA256
13c4c011e2e90155bf2110b72b0a05b31ab84b01082eabcf53f171507280fa1e

SHA512
251931da6c45d3846761aed53afe334fe229cd4cc567b7b0bbb49052542be01d6e597fdedb19ebc3da14b4bfb42c083dda93b0cd1721201149e25acac2da6b53

Download Submit
/data/user/0/com.qihoo.app.bangzi/cache/org.chromium.android_webview/cc692f94b316072d_0

Filesize
242B

MD5
7aa34a60d7eed790b6e03a19d29bc26e

SHA1
218cba7d817f99b3d42992a2fc24b87edcb09a15

SHA256
933b2e266064e48cbf6ab0e01014fd3bb3e73f600b9d51a0bf51560de2c5fe66

SHA512
f8373487520417e8063e92b30920b1cdf33afcb1248ab8918cc0b440bebb94fb8cdb77aaba73f72dbc3c7c1d269570d558b8c9cf1c7b8029d25c7bfeef9fdda2

Download Submit
/data/user/0/com.qihoo.app.bangzi/cache/org.chromium.android_webview/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.qihoo.app.bangzi/cache/org.chromium.android_webview/index-dir/temp-index

Filesize
144B

MD5
22b04b3d976782b439878add5b8e8fa7

SHA1
54c8f24b20df48f0cc7fb819f6f58e15a5e710af

SHA256
fa833185174c9738277d9bbc4635b9b1a170be0ab0e3c4a6f1e18af8df69dc26

SHA512
d2183589cad642a7c81821c90f892fac8d3d04c232b3ffa4102ab9bd522576c89698854cbc800e5298c7a84adf284af88be6532b201b551b2b33ddcb56c4cd61

Download Submit
/data/user/0/com.qihoo.app.bangzi/cache/org.chromium.android_webview/index-dir/temp-index

Filesize
144B

MD5
b25287c10b7a31f56e36934ed9fbc833

SHA1
6b8648f7589b5551506be733c51cd38737b81804

SHA256
daeb624d896737051c7c2810f7ec37573244788ad84784a78b0750ee78103983

SHA512
e91ea51901fd5bec57f569440cea60f820e53917793f4f8ca74cada9a5bb07f38bd3584dd33e62ccd9b440165088f2abe95cb8b8b94c1568d7b5abab0a2d6b4f

Download Submit
/data/user/0/com.qihoo.app.bangzi/databases/hy.db

Filesize
280KB

MD5
041a38426864ba8ab95d04f374586d09

SHA1
d8b45c9516c9a7ba572873d3f5713a7198d8ec89

SHA256
3afc67d64d61c051d5abe7acca1ff03fa3eac7938ce53d70a968ce51f4902587

SHA512
b043eb1df9f8736bc461367f475d6403e8d46b11b96d3e42eb28c8342c8556b78b2267669ac1a3f20cf98dc7a13024043eeb9920e974cfd18478acf132e78d1c

Download Submit
/data/user/0/com.qihoo.app.bangzi/databases/hy.db-journal

Filesize
1KB

MD5
215fc40ee88848b5d7b706d2f0f96079

SHA1
bac9143943924c200647414c2fbe0a91ed3274cb

SHA256
217cfa6676cf855dcb85de0c8cad6caf46fc6c6f956a31e8beeb3d5021f33bbe

SHA512
388c1a0ec57fce04fd48dcb8bc583a370fbec920ff23a991d3f68f13d6bf93cf6c20dc2f153a0b7dbb4b005b3e9426e2d09d69f59d06c7b552602252f4b00591

Download Submit
/data/user/0/com.qihoo.app.bangzi/files/.imprint

Filesize
833B

MD5
8d07a051231e2711352a6bb0988ebe12

SHA1
115f0ab29edfc4cb3745a36d647eaf7d01099ca8

SHA256
626525e978b0a4a72d0f54a84b2e7986e260b9740cdb452ccf8d59689ba62223

SHA512
e06e94701be642aecc8a694a74cf0ffc8646d7f85ee4fd00d91f532555b43daadf7f4ba84c6f8229516f44d7bf82143dd63039d21da0410c7ba8fd241c3a76ac

Download Submit
/data/user/0/com.qihoo.app.bangzi/files/__local_last_session.json

Filesize
130B

MD5
b8addb073154370ea93c4f14d88c5031

SHA1
8407c638364a6a710d336d6a8d7f90800b4688f2

SHA256
1385f04a728b832a0fdf30b1de99a2ea2c2c4368e320447fb36ebc79696d182e

SHA512
13c320c9cb90d8dfe1b8c46faac73912e4db179303464e7201629c343d98d119706944bfd8df8eb11d246af25b741a1125832f21d234ad8d0b9cf4d45fc06277

Download Submit
/data/user/0/com.qihoo.app.bangzi/files/umeng_it.cache

Filesize
245B

MD5
d0320a6a5777372c1417fad59b844a7e

SHA1
60ac583d1171a691ae0633fffee256e7e53d4fe1

SHA256
bdb066819b2d988d032d495437c00f297d7ab38f00bc253f07253369480d90c0

SHA512
ccbe1d2ca452015f27fa84a2741a39901c4bb9834c28a5938eaae2d82d7df2c2b9bea8ef72e88150d3322f59b1c8a2ea4a41310f987df0131e03d2658cdc1058

Download Submit
/data/user/0/com.qihoo.app.bangzi/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
6ef709b8536878951e87c29a1518fc2b

SHA1
24376c70b00152501b3d98df61fa7db435339172

SHA256
10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6

SHA512
96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

Download Submit
/data/user/0/com.qihoo.app.bangzi/shared_prefs/mobclick_agent_online_setting_com.qihoo.app.bangzi.xml

Filesize
124B

MD5
74ad6555bf23e41c3999ce1a4ba2bcc7

SHA1
9b712380f76aa0239e774927ad741545b5f95cbd

SHA256
de7182f970b644740ae335542f2641e6d68d106d52e93863e1594c62d073fe39

SHA512
ffa86c113eb1908f2db58f7ff2f8bdf23852ec6b3a90b14fe608ad05da15be028c33f90013a1b0c86c593a3b1acc0cafb0fe72a9baa40741c8c56071c63b8826

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads