1a89482cdd1e8d609b57d62a7c3b59029578e3df0c21defa6b5bbd6d1a798284

Analysis

max time kernel
2712337s
max time network
164s
platform
android_x64
resource
android-x64-arm64-20220823-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
submitted
22-11-2022 23:26

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

1a89482cdd1e8d609b57d62a7c3b59029578e3df0c21defa6b5bbd6d1a798284.apk
Size

7.2MB
MD5

6dfd521922e106cc4b2d058eb617c3bf
SHA1

6996184d3026cf8e791843fb572270bc176ba5ad
SHA256

1a89482cdd1e8d609b57d62a7c3b59029578e3df0c21defa6b5bbd6d1a798284
SHA512

db32a2e6e21505d69aa651300c027a65859e034bbb354fb389700e0a7017dfba7e37ea9b7223bd03b80f0ab5cb47273503db3553161748020fc6ce60d9ec0465
SSDEEP

196608:VJw5rZUia5W1WcgQBKNYZ1Lj08gUJkyZTSqjRcMiXx:VJwHa5W1Wcg0Kizv08gUJ3lxyMiXx

Score

7^/10

ransomware

Malware Config

Signatures

Acquires the wake lock. 1 IoCs

Processes:

com.icloud.game.wrzjh

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.icloud.game.wrzjh
Reads information about phone network operator.
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.icloud.game.wrzjh

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.icloud.game.wrzjh

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.icloud.game.wrzjh

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.icloud.game.wrzjh

com.icloud.game.wrzjh
1⤵
- Acquires the wake lock.
- Uses Crypto APIs (Might try to encrypt user data).
PID:4268

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.icloud.game.wrzjh/files/act0

Filesize
148B

MD5
2fecbc2d01ef403b4375425cdd1a972e

SHA1
4d51f6bacbd7b3412076f12dd6df28094fa00d9e

SHA256
51472a26781558b1328622045443c7b6c0167772a9cc5a7b21ac097b8d0523f9

SHA512
22b2af5b8055f16c263899323a8de45bc308d16997bf52756f948313682220ab89c6e3ec2a884f577507ff41ea46fbff5b2d2549183112781c35d46316c26cad

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/act4

Filesize
314B

MD5
89b8b19e265e712f603b042361a358d5

SHA1
5201a03927a3201a58e5ea9f2833f60cfa3ce997

SHA256
9b997286de85b5ced21cb858807f8666be6e131f972155f5bafccc856860c7df

SHA512
bc3c8ab180edfd109d5e5f78c9c93d99f5761a3a2f9161d8bc4244ad65a7dfa82b224e3c623d02ad495ac4ff394951d9248fb24519c2f821c40d63deffa9bcaf

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/com.skymobi.pay.opplugin_V2009.apk

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/evn2

Filesize
157B

MD5
5b1a88e11a6682469626a31079172cd4

SHA1
bc473f215fd80a6e59eb47d9b72f23b60fdf67e8

SHA256
e4b4e670e2a044345616517df2f8a9d4ddb8be86593d7ca327b104ce4fc8bc9b

SHA512
cc86c3c1110d6adb6a6ce354edb4a6c5631a8ddc1a13cfa265e8af49b44f56d6a7f276f8657a6a1aa9a1b02d12e3922aade39b90fde71eab1a8ae52cedf2582b

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/evn3

Filesize
128B

MD5
40dc920637593ec56d4b13726f7823a7

SHA1
8cccfe7dcc916a0091541537e9295534846a1631

SHA256
ef1444e915b91ac50186f728e561ce5c0bcb2e5a3e2d48e185baadb111ca8340

SHA512
3d86a51d2cb61a361455cf67d2473b99fda12b6caecd2901606267ce517c4b3bf73aa4a710777325084a936c8ebf497f43d5fcebce2149b16f0f6e35d6fe89d8

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/sys1

Filesize
505B

MD5
983b500e604addee72fe6767f21983ba

SHA1
f8a117ffee5764c45e33215b04bba47ae384c482

SHA256
fdb229d6cd978c7033cd760072bf9543602c332f58c34648dd23beb29ceca284

SHA512
f5f34ef0fadd3b88d23193a3c7a389334aa973a7f5281276f458c37251fd6b69e2d077d7bc1fbcee187fbbdcd9413ec58b0970a6efbbe8576b4d26590272e906

Download Submit
/data/user/0/com.icloud.game.wrzjh/shared_prefs/APP_START_TIMER_INFO.xml

Filesize
117B

MD5
fd4ff61099e2037253f49d8c780b5ad9

SHA1
461a43433a27620de8cfa20952baff64da7856f6

SHA256
b781baee6b7ae81c2cdd89112fec3423109a73e40d5485e0fb8fc8a7691ab354

SHA512
8cb8a52bcf343e715cb5437267f89ea12912b46d635533eec3f1bc3264225d54670fef0ebb780e461c09247ff3e9891d61221bd6e977b98f7b3d8124822d6c32

Download Submit
/storage/emulated/0/wrzjh/com.icloud.game.wrzjh/zhajinhua/log.txt

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads