04eedea1ea86ff475242853b50c4e8a0de96a28603cc77dbc40ffaa5a6beec19

Analysis

max time kernel
740174s
max time network
133s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
30-10-2022 13:53

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

04eedea1ea86ff475242853b50c4e8a0de96a28603cc77dbc40ffaa5a6beec19.apk
Size

218KB
MD5

93a56654e298dbaf444d94a6a630e2e0
SHA1

a92949bea05c7c09d9cb01578751cb405f2d30d5
SHA256

04eedea1ea86ff475242853b50c4e8a0de96a28603cc77dbc40ffaa5a6beec19
SHA512

034f269dee42c74906592a5c551301b832fedd11a26482489b5296ef8b343c6e54135488bcab98aaf8dd61fe11693a871c8709fe87a69fd6b5696119502d87d1
SSDEEP

3072:2FJPj/wBLiFLgvqPC5+kAMEJG8G/GF17IlBTU6xocAZFPLWA9GOsPvWLVL:GhwipyVfF86G1IyeYLWAwnW1

Score

6^/10

evasion ransomware

Malware Config

Signatures

Reads information about phone network operator.

Removes a system notification. 1 IoCs

evasion

description	ioc	Process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	glwlbb.eyfwmaung

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs

ransomware

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	glwlbb.eyfwmaung

glwlbb.eyfwmaung
1⤵
- Removes a system notification.
- Uses Crypto APIs (Might try to encrypt user data).
PID:4093

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/glwlbb.eyfwmaung/app_webview/GPUCache/index

Filesize
20B

MD5
93027d42b314432c4216e6cfca48b384

SHA1
43448dd8102979c3926828182579691945eedd4e

SHA256
3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

SHA512
a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

Download Submit
/data/user/0/glwlbb.eyfwmaung/app_webview/GPUCache/index-dir/temp-index

Filesize
48B

MD5
be9bfa5d9145e5f0dd81982f4478cdf7

SHA1
eadb41e44c39bad2cdb70e17ab31e55d28e21429

SHA256
5893ad40f277fc59c63d0feff5fbf7ce2c452d768aeba42ca9aaf51b219a89b7

SHA512
0684a2119624e72dd7ac404c96a6a099a8e69d89211d2e93dc98c66182186f19e40c20a7b3638b20037c87707fc41d7fb8acb2de401cf0b471ddaebd671487c2

Download Submit
/data/user/0/glwlbb.eyfwmaung/app_webview/Web Data

Filesize
104KB

MD5
dc79f9ce5f3ab5270b33e61119dfc959

SHA1
1844bf222a5144b513dcf2fb50a18c011701c647

SHA256
47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65

SHA512
18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

Download Submit
/data/user/0/glwlbb.eyfwmaung/app_webview/Web Data-journal

Filesize
1KB

MD5
8f1a7ff8057ebad1aef1332628cf5015

SHA1
368e727b25b749c622a5f1a8d41011688beb8c6f

SHA256
0f4bb2cab3839fbb932b3029152d00e3ef27e2c66e0d691beb99c81e53bb8946

SHA512
dab5882e81305a28a91c55b2a1af11fdedc48d07725955a0e35d3311c3c91fd4eadd60ad5f71443827ab90cff0b19792e424bdf73ab22316c15880f0c789888d

Download Submit
/data/user/0/glwlbb.eyfwmaung/app_webview/metrics_guid

Filesize
36B

MD5
93a5019f9274f7716264a2954a8c07ed

SHA1
e3a2df7adeb1b9bfea709bc13d158d58fe02b57e

SHA256
b42bdd6710faeba993a84576e7dd62bc54fafb7bf8ed07d28dfafac77cab7222

SHA512
3beddc6f21fb685ce733ed023ef52b74b88fd831770170475c0b43d6b13d39b14fd6a1dc62db29e51a570c6317e3346edc587711a2e921a73d6cb5f9941fa38f

Download Submit
/data/user/0/glwlbb.eyfwmaung/cache/org.chromium.android_webview/index

Filesize
20B

MD5
93027d42b314432c4216e6cfca48b384

SHA1
43448dd8102979c3926828182579691945eedd4e

SHA256
3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

SHA512
a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

Download Submit
/data/user/0/glwlbb.eyfwmaung/cache/org.chromium.android_webview/index-dir/temp-index

Filesize
48B

MD5
5add0808cf502b0690fb795f6adf62f4

SHA1
41c6c5bbb545c9925ee71ca66eea54766c95615c

SHA256
b5d2a7065840a0f1da7c1df0e42764c06add5f9c995ecc99c5f04b73fd4a31cd

SHA512
ec22090a5c91c94456e0e33c0bb8137f25e8548a30540c1559039d86bc7d2606be6e98973cd8a6b71550aedc4a548021f6d2b74e67b661acbc858d780c15ecf2

Download Submit
/data/user/0/glwlbb.eyfwmaung/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
21223e9184445fe043476484cd8cb1f9

SHA1
2b4813f849121d60ba35eb0889080668bb62c778

SHA256
bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

SHA512
be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

Download Submit
/storage/emulated/0/wss22.dat

Filesize
256B

MD5
73ac49f5a49577638ee88c18b09bc0d1

SHA1
51ffb1fa70b8b33c13a82df43bedf7390ca14e30

SHA256
35597f2ae8ab23b5adf5dfbbc9dad30003c32fc501e194d77ff233d8ecd95636

SHA512
5cc4e38c5cdac359c7d5c4287ed8f8af9c4b2810175eed3cec9fa25acae0910c2ba86fcc5e33e6fc41cf6cf83d711d17dd8ed5ca6130d73dcdbb6f2829b5cfa2

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads