04eedea1ea86ff475242853b50c4e8a0de96a28603cc77dbc40ffaa5a6beec19

Analysis

max time kernel
743900s
max time network
143s
platform
android_x64
resource
android-x64-arm64-20220823-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
submitted
30/10/2022, 13:53

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

04eedea1ea86ff475242853b50c4e8a0de96a28603cc77dbc40ffaa5a6beec19.apk
Size

218KB
MD5

93a56654e298dbaf444d94a6a630e2e0
SHA1

a92949bea05c7c09d9cb01578751cb405f2d30d5
SHA256

04eedea1ea86ff475242853b50c4e8a0de96a28603cc77dbc40ffaa5a6beec19
SHA512

034f269dee42c74906592a5c551301b832fedd11a26482489b5296ef8b343c6e54135488bcab98aaf8dd61fe11693a871c8709fe87a69fd6b5696119502d87d1
SSDEEP

3072:2FJPj/wBLiFLgvqPC5+kAMEJG8G/GF17IlBTU6xocAZFPLWA9GOsPvWLVL:GhwipyVfF86G1IyeYLWAwnW1

Score

6^/10

ransomware

Malware Config

Signatures

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs

ransomware

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	glwlbb.eyfwmaung

glwlbb.eyfwmaung
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4526

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/glwlbb.eyfwmaung/app_webview/Default/GPUCache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/glwlbb.eyfwmaung/app_webview/Default/GPUCache/index-dir/temp-index

Filesize
96B

MD5
c49a38d59e7815a2f122bcc5e30f491b

SHA1
f0c9c0d446cad957bcdecfaaab2c448ecb9a1fa6

SHA256
f39e428ce481bd972aaf8b943765e396ca60ef69e9868322579bb9dddf3cf82c

SHA512
aea8dfab95b614b7edf27200f9832994e9217cb809e7ebaa1e6670be0b5cdcb37dcda8abc1d111e0c9d3b3f11dde76ebaab59778eeec8aea56679d7a5bf97c85

Download Submit
/data/user/0/glwlbb.eyfwmaung/app_webview/Default/Web Data

Filesize
120KB

MD5
a48cd9324b1f8754b07f00d863b840f3

SHA1
11c6614775b35a58f440971dfc87c8aaac6d6173

SHA256
8859a216183793485d4699bf69d7ed96904679834188d07b9a70424d47eb1420

SHA512
35fa712f0af4a5eeed7e00e4e59ed5027dc6609d268462fe79d92043be9ae0c5961ce9e1d2f64b1a196c9b6aa6242b8b83817b3ee4c1058596c58a99c45478b1

Download Submit
/data/user/0/glwlbb.eyfwmaung/app_webview/Default/Web Data-journal

Filesize
2KB

MD5
991a96125323802f03d58256816e0990

SHA1
627f85812855cf3e4b8bd5d844daf7c016f24680

SHA256
907f794e92d01b11b45f3bb81079c9d08d4b1f39f065554792e521da74ec45d4

SHA512
6c85cb9a3a494e63aa4e176074c148f25dc9723d07e4f60df12d3821faef44aabbeb9f5dbe99066d5fb71df4f1c2d0219c8c4aec04298e3dda24cbeacec6cfc1

Download Submit
/data/user/0/glwlbb.eyfwmaung/app_webview/webview_data.lock

Filesize
22B

MD5
e661404d081a824126574657b9d3ddc2

SHA1
8cfd242fe7832293f59c611a74469377ee2cbedf

SHA256
254a41db72b310f14efb159f46cc2565d2913d0d93646ceb316443581a95ac39

SHA512
c72ed536869a068d3c558bda8abb9aaaecc548dd48f1e9a6a50ca0136a295405598078f0a0b59626e6bf5f26836c2054e43149fca78312a088549bf136400113

Download Submit
/data/user/0/glwlbb.eyfwmaung/cache/WebView/Crashpad/settings.dat

Filesize
40B

MD5
20c7033e04435edb362de74b02189e0a

SHA1
d3dc04f4bbbb2217e642e1ea224ac2102cca7a9a

SHA256
91368df732ee68b0263874d5230549c8ba6dc406d8526fc4991e0bf5ec014e63

SHA512
bd9b374e45bdee30ad1af156377521e88ffa6f6c12c3cc6490e1d433afce4537366c8fa329313ff965f636a141e80e77892e9fa65891b6c47f48529e967184b6

Download Submit
/data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/Code Cache/js/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/Code Cache/js/index-dir/temp-index

Filesize
96B

MD5
fb6c1bbf25e8eafe1b0c10fcd47d6b9d

SHA1
183cd32fb774a20fe008708c9974997f7d67d51c

SHA256
c82cc073b39b6986ebc6f2fe57e708d6842e55adf45e502865cec24dcd9aaaea

SHA512
a57be4f9ce83261f565ebf5dcff785bc997a7cec989530955513a6b49437ed6dd0944f4b081561e510a2405482c01960862aac91733757e8794c4be5aadca644

Download Submit
/data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index-dir/temp-index

Filesize
96B

MD5
833e2f35b08c96ed737d41acd0d118f7

SHA1
ece9c1e14de1ea0e2ad883f59e61ceb611ab971b

SHA256
645ef32916599d3e592322e599cd366bcb2e38451f98dbe3e80cc6777f55da75

SHA512
4daffe52b2f28730e8922e69df77cb0b652e4518829263d0963d187c875be0b027cb0c03865a90452e14d78d842f833ef7d73d3b0b443b63b575dc3686306118

Download Submit
/data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/index-dir/temp-index

Filesize
96B

MD5
495ae9858a906e57aa28342abd03462a

SHA1
f906e8437613b5db5c1ca402331fcb2e8310a300

SHA256
a9b380ede067debe062966dc7daa96d66472668988e66363c3d64aa73e004156

SHA512
30a87479d4f80f09e58ac8d0e7ab33a90e8297e6819e2a2c0a7d6e7aa8896c58a4bd7725bbdfd1fbac669b0bc32c69e758919f8c664c5a2f2111bb212446b1d2

Download Submit
/data/user/0/glwlbb.eyfwmaung/cache/WebView/font_unique_name_table.pb

Filesize
57KB

MD5
f080fa2a56ab5479d58063e5ea871447

SHA1
4b3fd57a98916fa5784305b76ba30af26b5253d9

SHA256
0aa374bc456330fd1b5daf18d25b4bb8e2df1998dfa85466f2c31843ff56e815

SHA512
8aee3186a95b389d39882620b7c4199a29aa50580aa98a381b2931a934de6406943c89d4d00ebeabff21e2b03b4a4adcc01e37e32a2335c4838be24bdbf61936

Download Submit
/data/user/0/glwlbb.eyfwmaung/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
97ccd9a2b2063143df56b6937f961ca4

SHA1
5e78a91ae5df289ce83443cb7d5589dd3504fb5d

SHA256
248ff7928128015b1cfe3e6517c8f9b8c9511bfb8c8baf44fc1370640eac61fd

SHA512
86c05a5bb3d7eedea390664796966e9e5a5bf846c85808da54407788a76b3ee25b91428242a1e76d8765bfe51e1ba3636617fbab6e7dbb39fcc433e07c3fcd3b

Download Submit
/storage/emulated/0/wss22.dat

Filesize
256B

MD5
73ac49f5a49577638ee88c18b09bc0d1

SHA1
51ffb1fa70b8b33c13a82df43bedf7390ca14e30

SHA256
35597f2ae8ab23b5adf5dfbbc9dad30003c32fc501e194d77ff233d8ecd95636

SHA512
5cc4e38c5cdac359c7d5c4287ed8f8af9c4b2810175eed3cec9fa25acae0910c2ba86fcc5e33e6fc41cf6cf83d711d17dd8ed5ca6130d73dcdbb6f2829b5cfa2

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads