4ba8ceff6281a4127ff70b1dd6058d69eefa29ce7a749f8decf887c8d734fd61

Analysis

max time kernel
2791439s
max time network
157s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
23-11-2022 19:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

4ba8ceff6281a4127ff70b1dd6058d69eefa29ce7a749f8decf887c8d734fd61.apk
Size

543KB
MD5

47d86bed6f9d6fe9263920d5fde8dd20
SHA1

adc84eaa0b6eaa06c33082af0cf645324a750b28
SHA256

4ba8ceff6281a4127ff70b1dd6058d69eefa29ce7a749f8decf887c8d734fd61
SHA512

89d3329f41a9f8268df04d80b5b8faae427bf0ad8eb3778a14f427312cdd569f1ccd5bc64a0939fb39242d0fc208d9b528b6b7d01dc5c225b5702494041a75ac
SSDEEP

12288:o2s74jNLfueV8vIVndJvzW7ZichckyyzJC2ZMeRMXJt8V:o9M5LfPVVnDi7ZiUhJC2ZM8V

Score

6^/10

ransomware

Malware Config

Signatures

Reads information about phone network operator.
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.c101411436836

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.c101411436836

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.c101411436836

com.c101411436836
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4092

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.c101411436836/files/b1/main/aknfile_standalone_ptl.dat
Filesize
11KB

MD5
6fe5b381d90c1371f58fcc548be1837b

SHA1
47f455b76a00c222e9f59660ea4417335036c87e

SHA256
4da3810607119716f38e6ee8377b42a957fd9a0eca4d606f9ca1c27dea720010

SHA512
5ebb1145bd1424e6b2eb581d0a3ad6fb74d3ff7c9edf954c1d66d81ea3c57d2e1273f038891f6cde9048d620b49dd3bf86dbe88515eacd2d0939d53569f4a8a7

Download Submit
/data/user/0/com.c101411436836/files/b1/yong.dat
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.c101411436836/files/dm
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.c101411436836/files/vs_filter.txt
Filesize
3B

MD5
3cec07e9ba5f5bb252d13f5f431e4bbb

SHA1
b4ef7df17d3dc74720cd2a8fe98a173f9576d007

SHA256
396f804443825586c1283a27fdcadf74abb82008bcd9b260a30912a26563f27d

SHA512
eb450a8f41e99fbb1afc8105850d3e20e87a7414786eda76a661cf780fe248ffd478921aeae70bfceecd9a8d8e0590d404a5113eb52c8ae0d768cc28443a1f2c

Download Submit
/data/user/0/com.c101411436836/files/vs_num.txt
Filesize
17B

MD5
8609477accb830ca1c4e8982e2401863

SHA1
a83798cfffbebe30c9a177ee31203fd6b07798cd

SHA256
03ec98f261fb0dc62143e5b513d15a63416746dbd9e0fa1578f87a407c18daa6

SHA512
bf947a189c383c377a7d92cb80b7b8a3b8280b7025ead8a5561bd64bd82c1372a5274ef4cfe2390fd261aa5112ff9eb9b4cd2950ecc833fe4f0312a3705eb430

Download Submit
/data/user/0/com.c101411436836/files/vs_ver.txt
Filesize
25B

MD5
ed5c798c5c6c94c087ed79a2b141bd88

SHA1
2418c85bbdf1f67623f369df2e1119e3bdd8ff5c

SHA256
22949bd68a90a4a558f08b9dff78dc0533e8c051602653f3fdf3cd465181fce8

SHA512
2af83e522f192775b66b1ca6e5dc1a07ab6ee2d05347a083dda7ffdbeaebe2b8da2208507399a6af6760dc21591984dce13156259282bbdaa77b1f7d641c9044

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads