4f1822817690d89943e7e57468ab4366e360772c0adce67bf74a7224b3732dee

Resubmissions

08-11-2022 11:39

221108-nsq8eagbfj 10

26-08-2022 06:04

220826-gst6qshce8 8

18-11-2021 07:55

211118-jr5l7aehg4 7

Analysis

max time kernel
1460450s
max time network
140s
platform
android_x64
resource
android-x64-20220823-en
resource tags

androidarch:x64arch:x86image:android-x64-20220823-enlocale:en-usos:android-10-x64system
submitted
08-11-2022 11:39

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4F1822817690D89943E7E57468AB4366E360772C0ADCE67BF74A7224B3732DEE.apk
Size

4.2MB
MD5

beae001d3bbdcf7a05c053e6773f9796
SHA1

126733f5903afb06a47a59600366fec2dcca45db
SHA256

4f1822817690d89943e7e57468ab4366e360772c0adce67bf74a7224b3732dee
SHA512

0885d5887b59e6d151b570647ae40b5dd3504facd65d73d4ba66098ea7d731cabed36593b06297c5f100bd8b87e695528c2deffa9066ae5b6b20862d161e5f46
SSDEEP

98304:RwYcdN9tr46+WcK3Ts22fm95RmOnn6iFPC/yNhzfrPEt:SYeN9tr4Xl+Ts2B58Onn6i46Nw

Score

5^/10

ransomware

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.esqftazog8dbotp2fx.fihbgevw2svjeq0d

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.esqftazog8dbotp2fx.fihbgevw2svjeq0d

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.esqftazog8dbotp2fx.fihbgevw2svjeq0d

com.esqftazog8dbotp2fx.fihbgevw2svjeq0d
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4830

com.esqftazog8dbotp2fx.fihbgevw2svjeq0d:BackgroundService
1⤵
PID:5044

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/app_webview/GPUCache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/app_webview/GPUCache/index-dir/temp-index

Filesize
96B

MD5
d5b01e73f88c29ebf85fd8e44d4e6234

SHA1
7dc0d5034c17dd341b3460a209969d9a340cdb01

SHA256
9bd5f469e99b59237c76a06d927529a080f9b509f6b86a42245902206dfe4930

SHA512
10f1eeba98ddd3bfaa6422b890eeb956c3a9199dc3838c39a8b09568ffa2a3dcc92316877fa942f3f935b09224069f1d2866a2566ae52d4470bb1e335e82b371

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/app_webview/Web Data

Filesize
112KB

MD5
b663831f8cc130493476d94f2d7a5330

SHA1
043a1956ab8e40821d67043f8a9110a8eb36fb93

SHA256
c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7

SHA512
e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/app_webview/Web Data-journal

Filesize
1KB

MD5
b52286863881744ca0875828414e849a

SHA1
8c720f274117c9127e57a0f88c6e7f7d6f1e5b96

SHA256
474a8986bbc49608a003409e2772c965ff95b5537a472b5795eac24d5f2f9034

SHA512
c3907f4bf74e69cf5e6b71a97496373d649d445588686a325573fc4d028af903bddccad5548024aac86bf7fe3bf25a9e7c9070c09aaa6a24521d6ece4f9bc388

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/app_webview/metrics_guid

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/app_webview/metrics_guid

Filesize
36B

MD5
000345b3b3223d9218be9553073c70d9

SHA1
efbf8cae2a52670b06cf6f06d6c61049f1b53ed3

SHA256
9613a9068c490b85b048701096352162fcc3ed07aab0c7d610fbf2fcdbc7b23f

SHA512
c88266679d70474e843a0c5cd8b735ba3a7a7d1379da807cdfed71a1a27246db3e1a22bbc491c839977f0b2a38207b177838807df50ae1936001d02571c99c58

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/app_webview/variations_seed_new

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/app_webview/variations_stamp

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/app_webview/webview_data.lock

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/cache/WebView/Crashpad/settings.dat

Filesize
40B

MD5
ea845166b637aeece72d130563812742

SHA1
6ed56de5b354eec585ac1415fd0278b75d2c3da1

SHA256
f57bc4d64b811ccfd60eeb7a60ab25c410569acec5736dd7dd474529088676bc

SHA512
693b0af4aba24e1eee7de3e73cc63fc3fcc8c5e0cf8b7c02a32192f98f1fc3a716ba426c82ab5420276b1b1c8b8229b8f922dd92a7ca037b1ee577d98d3a8c1c

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/cache/org.chromium.android_webview/Code Cache/js/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index

Filesize
96B

MD5
5a5be10820379799db5dee9288a6f0a5

SHA1
61e276d68ac84626c7207200680c5e8d3adcec3b

SHA256
42d322a17354725cca3b9ae4b49c9c2e43178db8237bb53e413df6ef168f50a1

SHA512
def7ff36231c6d80b5a65a5dab3a8c6ea6c57fe10294a9bc62ae66caa8fc006eca16af3bcfea8e28c1e472ce37f47d5aec0d62ef7169b888296e64bf213adbab

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/databases/database.db

Filesize
112KB

MD5
115a929832734b0ed8be193b4fbfb444

SHA1
57f149ff6efff4954d3e0e355dc2a969eb41fa89

SHA256
8b0fd0649c8ef9bbbcc1266de11f1ca4f8adcee082dbef482cbec91a6886ef24

SHA512
adf7886a15b40fd06d82f58ee90f5b6534313820e19ec66e82c7ff571c6064879c26a9764067fbdadf530b2bd3dc7fab8af604565fe6f63487df16b4965bbf53

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/databases/database.db-journal

Filesize
1KB

MD5
4057a7b7f9a3a17dc6f4892305bfa04b

SHA1
a6d526ce370a531e546baac8c10d0f2970767824

SHA256
2f44da09f004110d6cb9926d5a7e2da61b820296d08b2946aca49c3c480ae316

SHA512
5cbf01cfe96cabd38453ebcb6fa95b8e1f9fde58fc68f85f185cd953bd748089cb8b239d59fd097f8a48fdc9afc45857bbeeef80d7b7cb89277b1bf8617f624b

Download Submit
/data/user/0/com.esqftazog8dbotp2fx.fihbgevw2svjeq0d/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
6ef709b8536878951e87c29a1518fc2b

SHA1
24376c70b00152501b3d98df61fa7db435339172

SHA256
10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6

SHA512
96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads