be0e3d671dc856acb128b6aeefc16d2aa8a2850cec6f1a46f76a95e7f3adb2ec

Analysis

max time kernel
2804154s
max time network
124s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
23-11-2022 22:43

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

be0e3d671dc856acb128b6aeefc16d2aa8a2850cec6f1a46f76a95e7f3adb2ec.apk
Size

11.5MB
MD5

b025ea485dacc1cc5b9efd46e65df69d
SHA1

740ae3eb1e1dfc2361632a5ce8f552d6f8457a3b
SHA256

be0e3d671dc856acb128b6aeefc16d2aa8a2850cec6f1a46f76a95e7f3adb2ec
SHA512

9405a48c9e6e4199920eeaa7668a59ae959e16a3a2393d75aa5257100dd745befe5cc0bb18b764028c97ecd6b6d448c346d081dfab5417073c7b3599ed586335
SSDEEP

196608:yM+i0Pg6wtYjnoD4hOuWCJLqxwevqzKgv9fDYbGnnDP/nCtHkQflOV1euyvs6QZD:yv1yYjnok4uWCJLqxKzfWGDXQBdOV1eG

Score

5^/10

ransomware

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.kk8.phz

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.kk8.phz

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.kk8.phz

com.kk8.phz
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4007

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.kk8.phz/shared_prefs/APP_START_TIMER_INFO.xml

Filesize
117B

MD5
82e6a8301405f47146b6b95fb5d9a184

SHA1
1f4e817a505a91f48d41626327acbb4830a19cf8

SHA256
c401baf5a6a94c4f909f4a9c573b6dd16c1d979f68c1124e4a47bae62331d0b7

SHA512
61e0157291596bb22b6dafbcfc706eacac83fab76fa24143b7a5e72cf4230e29546c96cce64c10ddf9cec059db584c31947859887aa18f9c2a562d8c6f8bbe9c

Download Submit
/data/user/0/com.kk8.phz/shared_prefs/PaySettings.xml

Filesize
177B

MD5
35560abb6bad81cb52258d71c59124c9

SHA1
75bfdbdd31b0eff1a321970beec548c04ff91cc4

SHA256
32948d790d4f03f5a3025de39a818a983bda56a02c4316de8f2005338a409c59

SHA512
2b4aacb715b8e6bec263a1969625c452b7acfc96a83f854d4ebd64a5d1bdf47810d34911de64e5d4f6533319c380c85cb4add29d323b709ec6f66ff48014137a

Download Submit
/data/user/0/com.kk8.phz/shared_prefs/run.xml

Filesize
112B

MD5
2e8016255006bd1fbac295af67d37b82

SHA1
8afdbc8a8316cb009c2b0b7c32620cbacaf738e0

SHA256
a2a0bdd509be2de899c09f2f477539b4be0eaf9ec8abf07015f68c8e5793984b

SHA512
fceaa2f70445ff3a61873d3f3c57d07601416ecdc341a4572679def8b7c47ff49eeacd36438c3f54f196c8aae815a1015ed2b33181631a834dcf5f3ff3625780

Download Submit
/storage/emulated/0/Android/data/com.skymobi.pay.app/plugins/com.skymobi.pay.opplugin_V2009.apk

MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads