8f45831b1df8fe44111e35b05271f6ec1796b03c104a67cd6481bf93f2affe86

Resubmissions

08-11-2022 11:39

221108-nsawesecd7 10

26-08-2022 06:04

220826-gstvzagchk 8

16-11-2021 15:35

211116-s1c3zaedc7 7

Analysis

max time kernel
1460497s
max time network
169s
platform
android_x64
resource
android-x64-arm64-20220823-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
submitted
08-11-2022 11:39

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8F45831B1DF8FE44111E35B05271F6EC1796B03C104A67CD6481BF93F2AFFE86.apk
Size

4.2MB
MD5

38c44fed7fce6446c61858495cd473b2
SHA1

462eac7d79ea7c118aace51293d516873fca185c
SHA256

8f45831b1df8fe44111e35b05271f6ec1796b03c104a67cd6481bf93f2affe86
SHA512

f0772bd999cc5800315fb6ce2e91f566ef0ab6b70f69c9caa961821fced3fbf0bcb1117705365925eaf674b690e109c5b8314247bd5b469c04f2664df76e4283
SSDEEP

98304:RnMA8bYkCU18lSHGWVPxOBhwXOfb2mfaHU0/p73LCKVmKk+szyEPSytMzfrIhTA:RMykCw8lS7VPooXybNWUM72KVk+su+te

Score

8^/10

banker ransomware

Malware Config

Signatures

Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps). 1 IoCs
banker

Processes:

com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt

description ioc process

Framework service call android.content.pm.IPackageManager.getInstalledApplications com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt

description	ioc	process
Framework service call	android.content.pm.IPackageManager.getInstalledApplications	com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt

com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt
1⤵
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps).
- Uses Crypto APIs (Might try to encrypt user data).
PID:4569

com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt:BackgroundService
1⤵
PID:4609

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/app_webview/.com.google.Chrome.0luj8w

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/app_webview/Default/Cookies

Filesize
64KB

MD5
dfb2098ca7b3bf16d6f5f1e7d3839af5

SHA1
ebb7a8bc886062d77a4092bd306b77a0ce7a3e9d

SHA256
e4119d32577d7fc63b267cc23eb7a9bbfb12d238f23e08918c38838fe0181224

SHA512
fccec45399258eb98220b7f01b492a72b8b3d1254dec6e196e344d89a0376c6ee24534a31a6675c866d4a17256d3ac6823657eaf04e1d386757d0cbfc6597e50

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/app_webview/Default/Cookies-journal

Filesize
1KB

MD5
506ebd6e6b3e36536ff7004c546e76da

SHA1
d6d7b4206c7572faac75dc7f21f565b465d4dc53

SHA256
0ba3df1d416b982834b76246cf3aa96d371c4de1efffd9988dda3dfbb8993bc6

SHA512
86e3c997821fa083d970a50f8fbede3e5840262e244cd6bde9bd15b133d216d933f5eed5afa2850f61d90b6c7624a4f2941f24e902306eee04005ea90d0fa5dc

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/app_webview/Default/GPUCache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/app_webview/Default/GPUCache/index-dir/temp-index

Filesize
96B

MD5
e428a7c896db6492b3088b9fd4da9300

SHA1
7ff199520411669a77c442aeaced2652f956ff9e

SHA256
8802837786c20ca4d3e3145172826e7304c637d3dccd20dbf03626abb38e311a

SHA512
5d956971dad66ce7c947a2ed2dff58cb4b1b1e474e9e2c47a005fd9c941f0e81fd2271d5ba7ef1ffa987794f9b4c0e8b3180dc319910333b6f6d7e266310e45d

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/app_webview/Default/Web Data

Filesize
120KB

MD5
a48cd9324b1f8754b07f00d863b840f3

SHA1
11c6614775b35a58f440971dfc87c8aaac6d6173

SHA256
8859a216183793485d4699bf69d7ed96904679834188d07b9a70424d47eb1420

SHA512
35fa712f0af4a5eeed7e00e4e59ed5027dc6609d268462fe79d92043be9ae0c5961ce9e1d2f64b1a196c9b6aa6242b8b83817b3ee4c1058596c58a99c45478b1

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/app_webview/Default/Web Data-journal

Filesize
2KB

MD5
61963a5143e56cb850deec748f5906cc

SHA1
8a9df068cbb9501b785d6d76979fbcf8309a8410

SHA256
097f210cad05199d3749d0d740a0d89fbe75046bd266762aea3fcd72684e6ddd

SHA512
c4a8ee23560437b5e6e72d180e06ca38354feca3df0c720c751ee68f54e3c20542476d0c11a8eef87e280410b30a436ac78f32d257f5646b345156314352dda0

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/app_webview/variations_seed_new

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/app_webview/variations_stamp

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/app_webview/webview_data.lock

Filesize
51B

MD5
413f42a837e4a1a0682bd24a71e3dbe1

SHA1
7718bddceaf708855bad1704eadf93f419fdd697

SHA256
3b60501110509410ec6f77ef1061d10b1f14ce6d390bc4337337594d15b9cb88

SHA512
cfcc52305758dba7bf861c3758ed463ecd7bb7a0f17033529ab57106d9c07ce693bf557bca9c9120f168ebdc508a50f3447eb007b3911caac1d3b83ede5e6d18

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/cache/WebView/Crashpad/settings.dat

Filesize
40B

MD5
e9e316ad28d64c89bcdf27c0e5dd5037

SHA1
7f559f824f4046f9009f9eeef8b3cc0fe7be3c01

SHA256
f2bb9e996965046c552d7b46c37af69c2beaa3c1c33d48ed34a848a924514a68

SHA512
8734ad0a5216e009d66c8400d20b14629c8f7889983fc1f2de48ec45a3d14539b0f03d8d96dedad4b97e9080cc081c8783b63c0261fb64ad01d39eaf4a797ea7

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/cache/WebView/Default/HTTP Cache/9dfee4d9ff88acfc_0

Filesize
13KB

MD5
1d122eca68b4d3b7c94da7af391f5512

SHA1
5e5fcf9c1d4b2b14c8cc3f2644fa468c1445e843

SHA256
0745bdba3eb61bbf9161340b73bb5f05a2f74f30426a03e627ecd7694e4d7e99

SHA512
4156093208f0f5a3e029d0e958e4580f5c05bc60c2a874f8343dc7c720f1e8c1344b465a1cf88f73781902af22271aa4636e80a0a72288eb499c909154d9ed01

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/cache/WebView/Default/HTTP Cache/Code Cache/js/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/cache/WebView/Default/HTTP Cache/Code Cache/js/index-dir/temp-index

Filesize
96B

MD5
68d00cfa9aa2dc16d70d44201d5ed243

SHA1
24f2b77f8748c0fb938497f23d41e9fd493b28b4

SHA256
c27a44fbad8a22a86aab50da921f257d433b6eedf2005fb99c5644861a4e34c0

SHA512
7c058fd1d9d375130f759d9a84781322ff50fc79c1311684840f78e4a5f521673eb0fe562392cd72d3d77d36a4be2597aed08896f1cc533a95f49976e125f4c8

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index-dir/temp-index

Filesize
96B

MD5
9aa329fbf5881f4f1864c8cc80fc28cf

SHA1
cbd5c4b601d6d8138badfd0e703dba0474a6070e

SHA256
234fda7fa9a3f66c466ab4402b57e6b6a48fe822d341652fcfac00b0e519afbe

SHA512
573cf587804c2d5b278e9658203f2efa4beb796f17b305e105ce84feb93907338c54bdde317252830c9098aebd7ef1bdf62fe19dbc8915bc30ef7e4beb03cbf6

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/cache/WebView/Default/HTTP Cache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/cache/WebView/Default/HTTP Cache/index-dir/temp-index

Filesize
144B

MD5
b3b61af1fe581a5a61f771d7468de97c

SHA1
b8f6a7dd49f7a2386d53d1f2c4f2cd5fbb1765d3

SHA256
c6187d979f1978df355ffff18620691f963f3cf665c07a6041e6a379206227a4

SHA512
e20ec45441f585d2a869426c95c12ecf8d7c1a135f6fe0c788928e3f91649d6c399863abf402dc5cc2aa3611dbec5472ba44f2eeb18a82e77d2606fcb83f64e8

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/cache/WebView/Default/HTTP Cache/index-dir/temp-index

Filesize
144B

MD5
d09b9d9149787d021b3ebb1885605e6d

SHA1
61bb03ef5e52c233a3be4eca7cbd4259776357b7

SHA256
00f78a8fc8aa5000410d86f4ba0fe3d1315108d36f88bbe71479b82efb66114b

SHA512
d93a2733545a5dfe470dd5c80727653609cae0d78cb2e8d9b43c2f1d9eb0a126022341de916d87218cb5221160877c12008c92290c9d3541ede7369d249a26d6

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/cache/WebView/font_unique_name_table.pb

Filesize
57KB

MD5
f080fa2a56ab5479d58063e5ea871447

SHA1
4b3fd57a98916fa5784305b76ba30af26b5253d9

SHA256
0aa374bc456330fd1b5daf18d25b4bb8e2df1998dfa85466f2c31843ff56e815

SHA512
8aee3186a95b389d39882620b7c4199a29aa50580aa98a381b2931a934de6406943c89d4d00ebeabff21e2b03b4a4adcc01e37e32a2335c4838be24bdbf61936

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/databases/database.db

Filesize
400KB

MD5
07b27c2005b10f0168fa74c904009660

SHA1
84e955c6d754b85d0fb4fc62d8ebf6e828200b88

SHA256
917d58a07ab191dffd665517ad26c62357936ca97fd104ebdd8a4c19f7532120

SHA512
8b9085c91693bfe62f91924a60e89f999aa9cd5ce879f5c2e4fa0b8e9c20dd42a7dbd398f3463070db9f4b623f6c7352f2cc720847f35e8bbbd103673c91e8fe

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/databases/database.db-journal

Filesize
1KB

MD5
6274602593d34ad7a120bd473f9559ef

SHA1
5fcccb7097b60e6556e2ed64fa6ef134a088a414

SHA256
c7b34833535eb8f604728627c83f757ed5fce882963155738cce449561c78513

SHA512
b219d5e966077da6279e434282522928821ee2fcafc18ed0d4edb09ef5b6f424ff596787359bd5680d7b0905e8cd88d803df76260d88b9f4136d18efde09b999

Download Submit
/data/user/0/com.pjszefgcemwsqpcf.sugwoyqipjtlvqx1gceh2ozt/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
97ccd9a2b2063143df56b6937f961ca4

SHA1
5e78a91ae5df289ce83443cb7d5589dd3504fb5d

SHA256
248ff7928128015b1cfe3e6517c8f9b8c9511bfb8c8baf44fc1370640eac61fd

SHA512
86c05a5bb3d7eedea390664796966e9e5a5bf846c85808da54407788a76b3ee25b91428242a1e76d8765bfe51e1ba3636617fbab6e7dbb39fcc433e07c3fcd3b

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads