Analysis
-
max time kernel
2791439s -
max time network
157s -
platform
android_x86 -
resource
android-x86-arm-20220823-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system -
submitted
23-11-2022 19:01
Static task
static1
Behavioral task
behavioral1
Sample
4ba8ceff6281a4127ff70b1dd6058d69eefa29ce7a749f8decf887c8d734fd61.apk
Resource
android-x86-arm-20220823-en
General
-
Target
4ba8ceff6281a4127ff70b1dd6058d69eefa29ce7a749f8decf887c8d734fd61.apk
-
Size
543KB
-
MD5
47d86bed6f9d6fe9263920d5fde8dd20
-
SHA1
adc84eaa0b6eaa06c33082af0cf645324a750b28
-
SHA256
4ba8ceff6281a4127ff70b1dd6058d69eefa29ce7a749f8decf887c8d734fd61
-
SHA512
89d3329f41a9f8268df04d80b5b8faae427bf0ad8eb3778a14f427312cdd569f1ccd5bc64a0939fb39242d0fc208d9b528b6b7d01dc5c225b5702494041a75ac
-
SSDEEP
12288:o2s74jNLfueV8vIVndJvzW7ZichckyyzJC2ZMeRMXJt8V:o9M5LfPVVnDi7ZiUhJC2ZM8V
Malware Config
Signatures
-
Reads information about phone network operator.
-
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
Processes:
com.c101411436836description ioc process Framework API call javax.crypto.Cipher.doFinal com.c101411436836
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/user/0/com.c101411436836/files/b1/main/aknfile_standalone_ptl.datFilesize
11KB
MD56fe5b381d90c1371f58fcc548be1837b
SHA147f455b76a00c222e9f59660ea4417335036c87e
SHA2564da3810607119716f38e6ee8377b42a957fd9a0eca4d606f9ca1c27dea720010
SHA5125ebb1145bd1424e6b2eb581d0a3ad6fb74d3ff7c9edf954c1d66d81ea3c57d2e1273f038891f6cde9048d620b49dd3bf86dbe88515eacd2d0939d53569f4a8a7
-
/data/user/0/com.c101411436836/files/b1/yong.datMD5
d41d8cd98f00b204e9800998ecf8427e
SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e
-
/data/user/0/com.c101411436836/files/dmMD5
d41d8cd98f00b204e9800998ecf8427e
SHA1da39a3ee5e6b4b0d3255bfef95601890afd80709
SHA256e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
SHA512cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e
-
/data/user/0/com.c101411436836/files/vs_filter.txtFilesize
3B
MD53cec07e9ba5f5bb252d13f5f431e4bbb
SHA1b4ef7df17d3dc74720cd2a8fe98a173f9576d007
SHA256396f804443825586c1283a27fdcadf74abb82008bcd9b260a30912a26563f27d
SHA512eb450a8f41e99fbb1afc8105850d3e20e87a7414786eda76a661cf780fe248ffd478921aeae70bfceecd9a8d8e0590d404a5113eb52c8ae0d768cc28443a1f2c
-
/data/user/0/com.c101411436836/files/vs_num.txtFilesize
17B
MD58609477accb830ca1c4e8982e2401863
SHA1a83798cfffbebe30c9a177ee31203fd6b07798cd
SHA25603ec98f261fb0dc62143e5b513d15a63416746dbd9e0fa1578f87a407c18daa6
SHA512bf947a189c383c377a7d92cb80b7b8a3b8280b7025ead8a5561bd64bd82c1372a5274ef4cfe2390fd261aa5112ff9eb9b4cd2950ecc833fe4f0312a3705eb430
-
/data/user/0/com.c101411436836/files/vs_ver.txtFilesize
25B
MD5ed5c798c5c6c94c087ed79a2b141bd88
SHA12418c85bbdf1f67623f369df2e1119e3bdd8ff5c
SHA25622949bd68a90a4a558f08b9dff78dc0533e8c051602653f3fdf3cd465181fce8
SHA5122af83e522f192775b66b1ca6e5dc1a07ab6ee2d05347a083dda7ffdbeaebe2b8da2208507399a6af6760dc21591984dce13156259282bbdaa77b1f7d641c9044