c02a12531918d7d27f24dd7c5c7ee4440f37e851ec296b33d02095e0670abe72

Analysis

max time kernel
2804063s
max time network
132s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
23-11-2022 22:42

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

c02a12531918d7d27f24dd7c5c7ee4440f37e851ec296b33d02095e0670abe72.apk
Size

9.7MB
MD5

d6ca3da9055d0c4cf1972db6e6e45502
SHA1

c8f59d625aa8fcbe2b4f9c39b7c891343936f483
SHA256

c02a12531918d7d27f24dd7c5c7ee4440f37e851ec296b33d02095e0670abe72
SHA512

6403b45da614e07a34aa83b459dd9cc2b85159288da74538566e28383f801046e67a6f6a34b3591b7b48f3db7c1d0ce7fdf2181314647bef3c9aedeadeda599f
SSDEEP

196608:nYOiPpIgigS5BSCaigPIarb/KernJb3C6sqX+eYkKO/uO04/VKOnbz8Wvj:FFgigS5B5pgP7K6hQy+eYkKO/uOFPnbb

Score

5^/10

ransomware

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.gnnguu.bingopang.gb

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.gnnguu.bingopang.gb

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.gnnguu.bingopang.gb

com.gnnguu.bingopang.gb
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4056

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.gnnguu.bingopang.gb/PopUlar.sav

Filesize
3KB

MD5
c65fb9502bef4fc7760bc231b9a41a9f

SHA1
78f86d9a4d532c76230cd4a1352902d231ad76ae

SHA256
ed2f8a1e582b58a30d603b4ad2843daf44e845c75a98b5dccadeed8efbc15036

SHA512
292ced03732f940297887e5430243b66b7013ff8b00557940cccebfd06536dfc9340005435eb1a52d20fa26bedc7330f7d2241f8afc4a38000b76a6d0f4f2c8c

Download Submit
/data/data/com.gnnguu.bingopang.gb/UserDefault.xml

Filesize
41B

MD5
4a8226e4211ccb4cb79f54d4ee35a55a

SHA1
7144e993ff784e4458c4d53d6f9f29930cf13fb8

SHA256
8d5bfd20db452314b315192d7160e28bce53c777c98a31aa6df7c93345a692eb

SHA512
7d7480da93b3363306438c7cc08fb913e29098eb19c4f6ac40ac5282329ecd8eae77fed695822955183a4b7084d18da89c2c937af5fcdf43b3f1bd7854cc7041

Download Submit
/data/user/0/com.gnnguu.bingopang.gb/shared_prefs/APP_START_TIMER_INFO.xml

Filesize
117B

MD5
8e30a7a2e04cc40c9d9ec2a8ee4cd5af

SHA1
47a132e828de83f09138b59e50bb8ff058417847

SHA256
77402913970b68101baa9bd273114208a32adfb246bb208520c7e2464b5c9c0e

SHA512
469c75c06332c6c9344e32e2f79c195b981f2a016584aa9331e04490c1ed9114e104735464d0d659222e4ae44f30c247406668272c3b0fb60f8cfbb67f3b6b25

Download Submit
/data/user/0/com.gnnguu.bingopang.gb/shared_prefs/setting.xml

Filesize
134B

MD5
25570f6ce7dbe3715c3655a51f2742b3

SHA1
5828ae7f23090a024b08b670bc90a8b29eb1919f

SHA256
6aa524cdb8c1b1635f5b99f761da4caa0d95509ba6229854e53df05ee7f69a6c

SHA512
cdf6a6c38b7f3bbcc21b955d8ee20ed828c9483755e9e85aee7c463dcee48477f7a34fbce1bca7ccf3bddc7ed9eb7e26fb07ecb182548ae04518c09ffa8fe6bd

Download Submit
/storage/emulated/0/Android/data/com.skymobi.pay.app/plugins/com.skymobi.pay.opplugin_V2014.apk

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads