Overview

overview

10

Static

static

10

Powerful C....9.apk

android-9-x86

8

Powerful C....9.apk

android-10-x64

5

Powerful C....9.apk

android-11-x64

8

Resubmissions

08-11-2022 11:34

221108-npjddsfhgp 10

08-11-2022 11:33

221108-npafgsfhfp 10

26-08-2022 06:04

220826-gsvr9sgchl 8

04-03-2022 09:45

220304-lq3gjsfggl 7

Analysis

  • max time kernel
    1460067s
  • max time network
    168s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    08-11-2022 11:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Powerful Cleaner Antivirus_v1.9.apk

  • Size

    14.1MB

  • MD5

    60d9c2095ed150373a6b1fa0221d016e

  • SHA1

    e09fd3dc9e6090aaafde5fadb9390646b633aabf

  • SHA256

    d05fb8c6899c96d1519e46eaea848ead6a17c7ddd0e20228e83c1aa9f264011d

  • SHA512

    76f3acdb856752fba8de87a9cc5dae337591b2ead6248879993da533f9ec0c227998df516622aec192a419721909526728c8d8ac35b3a654eb93762996cf3816

  • SSDEEP

    393216:j9XnFH5macX7X52NWdXJq2TNhMXw6zpMrfum7h:J1ZqgY5D2qh

Score
8/10
bankerransomware

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps). 1 IoCs
    banker
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • com.pagnotto28.sellsourcecode.supercleaner
    1⤵
    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps).
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4515
  • com.pagnotto28.sellsourcecode.supercleaner:BackgroundService
    1⤵
      PID:4652

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/databases/dbytes.db
      Filesize

      96KB

      MD5

      7efb06a1bdebbfaa6973612189832535

      SHA1

      b8a8f873824f29d8024cd2e22a998f0d0c87d977

      SHA256

      d65bb0ab506c51802de48e598f58e4029beca59218dfb67f48b6a69a7b1b00b3

      SHA512

      41930188a90605dc1f06f3e50347274f5bad8d7f94c8f27936e9218b5cf1574f499fc19d9448c573f5cff0cbbcea2385ff2786ec10ad636a01a47e8f521ab755

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/databases/dbytes.db-journal
      Filesize

      1KB

      MD5

      52e89bfc414780458c07222a7de79b83

      SHA1

      b87cc91d1cb931442c6163d41107cf5db53d2f51

      SHA256

      260ac062ebbc1d2f4f4c5183749ee68879cc033e269a018a21a7039893e29e58

      SHA512

      68e31f1b61648fb2b06dea2db4244d853098ddc32e0f73b1da2446334a279616b219827871eba078a9310d0881c5ec61627308f19ec9ce84ea8e1d237096e8da

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/no_backup/androidx.work.workdb
      Filesize

      8KB

      MD5

      e579a6b00eef1318f9166352228eba18

      SHA1

      76988896854f0139083e77862eea1a4846cf039f

      SHA256

      4b34cf505050facf47aa7936e4e7667e1969105665c632b3eefe7ecddf9a6935

      SHA512

      c47632e957d87727bf6504a82ca7a44d8da24d30cd997a0f449a96e4f97c656a1b4d9da3fcd827e2a48c59677688da0b872358ebd0f9369d898d1b8ec18d5699

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/no_backup/androidx.work.workdb-journal
      Filesize

      1KB

      MD5

      2031b1a1403d17803aab61bd53b986ab

      SHA1

      8619e99d95d8140661b8d7fa31ed767c634beb65

      SHA256

      77327e3beaccac118de8cbbb4d51f7cc71fd0bdd2e3b676eb53bd4645d3fc2e9

      SHA512

      7ebdc09c48cd282ff00d684c4de201bf21b3390ff6a2825d63d451f30e60b53c513c76a8ca14edcf54a1b1cbe8333c43e9da7fa7ed417466e72fede40b3ef22e

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/no_backup/androidx.work.workdb-shm
      Filesize

      16B

      MD5

      4ae71336e44bf9bf79d2752e234818a5

      SHA1

      e129f27c5103bc5cc44bcdf0a15e160d445066ff

      SHA256

      374708fff7719dd5979ec875d56cd2286f6d3cf7ec317a3b25632aab28ec37bb

      SHA512

      0b6cbac838dfe7f47ea1bd0df00ec282fdf45510c92161072ccfb84035390c4da743d9c3b954eaa1b0f86fc9861b23cc6c8667ab232c11c686432ebb5c8c3f27

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/no_backup/androidx.work.workdb-wal
      Filesize

      217KB

      MD5

      b7f9f3bc5ecf0e03c2f0ef645ffb311d

      SHA1

      114f1d805207dacd4349f4464adbf48784c52257

      SHA256

      de8658bee0f54cdad4eacf9e4787f557211b80213a549761ef43501fd80c9278

      SHA512

      c4c8dbebed08e5d547087b68a9c40894e7a4dac61302997766af2cf2decc5aab8bf3a0e0eb086cfe304b2c5c55638feea8cba07ec0a7875b2fece3840b8aea2b

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/shared_prefs/com.pagnotto28.sellsourcecode.supercleaner_preferences.xml
      Filesize

      129B

      MD5

      9241a2083c06792bc8412d0d148ce12d

      SHA1

      61f12d0a61f1d7d1745d151b877faec37d1a0f93

      SHA256

      4069ddb967c12b176bd6e0c645cd857fa90df1e1983b405bee9b1599a6425fc1

      SHA512

      a93b98b1bfaa74c0a9b96d37f49265c8ec4fe76c81d9d07cb5e76cefc1be420220af81cd1da372416044bab20a50ee4233d016b071aebce1468556c48936f603

      Download Submit