Overview

overview

7

Static

static

7

4d96e21b96...54.apk

android-9-x86

6

4d96e21b96...54.apk

android-10-x64

7

4d96e21b96...54.apk

android-11-x64

6

Analysis

  • max time kernel
    2824725s
  • max time network
    147s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    24-11-2022 02:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4d96e21b964e29c8fb24495fa784fd2f26d063c65c331547e395a1e71bbd0254.apk

  • Size

    177KB

  • MD5

    4c1173f90356c70daa9ebe87c5ee3aad

  • SHA1

    504bccafb7e4660784e73cb6b741ce7ac4353836

  • SHA256

    4d96e21b964e29c8fb24495fa784fd2f26d063c65c331547e395a1e71bbd0254

  • SHA512

    f1118f700df04e45d08a7eb8571666936b4770c933c1a81f60d9ac5dc92c9e61ab62feff02e3334f310abf1cb7d69b41523714dd9679012a6440d2fe97f2f927

  • SSDEEP

    3072:7zFJPj/wBLiFLgMGgPC5+kAMEJG8G/GF17IHBGTU6A7WpXsi:dhwipdYfF86G12bxg

Score
6/10
ransomware

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • glwlbb.eyfwmaung
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4639

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/glwlbb.eyfwmaung/app_webview/.com.google.Chrome.2UA3M8
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/app_webview/Default/GPUCache/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/app_webview/Default/GPUCache/index-dir/temp-index
    Filesize

    96B

    MD5

    3ab9c4e9d727f7568dcc9acdc50cc76e

    SHA1

    9454ed87cb9354c54b6a10afdbe34577f39e5d77

    SHA256

    135f562bbb0915144a3bdcf0ceddd8e56219da1c86a490b24b27027f8f84ab3a

    SHA512

    40cfc44771baebe7e9afbf25d4da49f247ec7f5551ccadb3ccf9f55676aaa8abc4b44a2be877d23fe5d3315e7a7806c2d0c73bf0ff6b5adfd14f427546f0a18c

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/app_webview/Default/Web Data
    Filesize

    120KB

    MD5

    a48cd9324b1f8754b07f00d863b840f3

    SHA1

    11c6614775b35a58f440971dfc87c8aaac6d6173

    SHA256

    8859a216183793485d4699bf69d7ed96904679834188d07b9a70424d47eb1420

    SHA512

    35fa712f0af4a5eeed7e00e4e59ed5027dc6609d268462fe79d92043be9ae0c5961ce9e1d2f64b1a196c9b6aa6242b8b83817b3ee4c1058596c58a99c45478b1

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/app_webview/Default/Web Data-journal
    Filesize

    2KB

    MD5

    c73e17cfc88108d57112cb1477ef2494

    SHA1

    1abe4e907d7eea0bbe157faabe7e80b8d203a916

    SHA256

    de5afc50ac5e782638a0621a000c0fcc03fd300831e290cfdeb981c6f97fccb9

    SHA512

    fa210fa4b90bcae86d3fd4aac7f661554294f8bfa8f84c80d63c47e6a5ddb753130c7dbf5e35f9f17f2372e234917206db9eff847f55714623a8c91896b13c55

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/app_webview/variations_seed_new
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/app_webview/variations_stamp
    MD5

    d41d8cd98f00b204e9800998ecf8427e

    SHA1

    da39a3ee5e6b4b0d3255bfef95601890afd80709

    SHA256

    e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

    SHA512

    cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/app_webview/webview_data.lock
    Filesize

    22B

    MD5

    0f7fc389ce703969f41415347cbdcd9b

    SHA1

    8f4df8ee1f2c225bbbd38fdd13b66a8671df958c

    SHA256

    c7dd3c2f12804f699d14bc83cdfc74ff3b512fa45dcb364af41a81f17ed053f9

    SHA512

    7811f346bb276eb0447182964a7575fe8d27252a08524d2f9fd7a2031289c62b320733ac953c47befa4b1c436372725b39750754e3e0509cbd7abb54ce10b84f

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/cache/WebView/Crashpad/settings.dat
    Filesize

    40B

    MD5

    333d5b89ab51a45293de2a3a3add9167

    SHA1

    8ed9c524edca7d0569d56bb6ad5aaefd992bcd2a

    SHA256

    089f486cc7fc9c812386d39b6ea88dc2953aca93e9486a8c45387783dfe0eb38

    SHA512

    454d34ba5de5fdd2b88c8acedafeda24fc4f37b06f4d964ee108bea52750247daef8b8d4edf54014a2c31a93d165e15ebe6e1d20dc4a31278d85bd8594e86640

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/Code Cache/js/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/Code Cache/js/index-dir/temp-index
    Filesize

    96B

    MD5

    30e9bb530f8f5428c4861d5147026dd5

    SHA1

    ee8d10d710e5920ccfee14e26ea7636221198577

    SHA256

    d506aa5c1a54f12425330a984baba762f6f74d06ba3e23f578d696fa2810f718

    SHA512

    7eafe5d6a9cdd5d42db7d184b3b1c167370d073f926b3e3b39ee4c5c16091da91c956d673f45ebbcd549feb32e5ba18b237ee2f6d73a53df036535fbc2ac11c0

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index-dir/temp-index
    Filesize

    96B

    MD5

    cbefb94db62926b16f9c542018cfd58a

    SHA1

    cac6cd39de93bbbe1d6a4269e722cb18dd50fce9

    SHA256

    7be6ffb60e71b260da290c61dc82cf023110fdaf21dd73357a3fdc6eecd2a7f9

    SHA512

    d0fd2bbea1885d5785644ba3d70d919072aa5572eec5b719129c2972292e90fac73712bc64296a2fc62032f533e9195f3e0e8cd5c2688271d71f6395b20f1620

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/index
    Filesize

    48B

    MD5

    6d7d499960179766cd4261d12dacc411

    SHA1

    e6f8553b0015e12b23cc551afe98763f3b1c9bed

    SHA256

    c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

    SHA512

    6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/cache/WebView/Default/HTTP Cache/index-dir/temp-index
    Filesize

    96B

    MD5

    6d6565b66a2eca8f96760e4d1eabe376

    SHA1

    c582a3a1deb6a362a5a61ff2e19f47432ccae9d3

    SHA256

    d65cd3b461d3eb5d02e38c73e334828e23480217ee9e5b6e87594896351e2c70

    SHA512

    e1814f568ace44833601dea5ced2a6bf74097431b57111b00f01bacc2bc710a23da1df6daf879f307281ec8049bb42895d30b3ae6a992d4261ce86af02acb819

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/cache/WebView/font_unique_name_table.pb
    Filesize

    57KB

    MD5

    f080fa2a56ab5479d58063e5ea871447

    SHA1

    4b3fd57a98916fa5784305b76ba30af26b5253d9

    SHA256

    0aa374bc456330fd1b5daf18d25b4bb8e2df1998dfa85466f2c31843ff56e815

    SHA512

    8aee3186a95b389d39882620b7c4199a29aa50580aa98a381b2931a934de6406943c89d4d00ebeabff21e2b03b4a4adcc01e37e32a2335c4838be24bdbf61936

    Download Submit

  • /data/user/0/glwlbb.eyfwmaung/shared_prefs/WebViewChromiumPrefs.xml
    Filesize

    127B

    MD5

    97ccd9a2b2063143df56b6937f961ca4

    SHA1

    5e78a91ae5df289ce83443cb7d5589dd3504fb5d

    SHA256

    248ff7928128015b1cfe3e6517c8f9b8c9511bfb8c8baf44fc1370640eac61fd

    SHA512

    86c05a5bb3d7eedea390664796966e9e5a5bf846c85808da54407788a76b3ee25b91428242a1e76d8765bfe51e1ba3636617fbab6e7dbb39fcc433e07c3fcd3b

    Download Submit

  • /storage/emulated/0/wss22.dat
    Filesize

    64B

    MD5

    911cfa658cfe811ee0cb22b18d17ea3f

    SHA1

    54d10f81135888d2735e26c0efc4310c2827277b

    SHA256

    ca6d53e48ab6eb9aa864061e09bbf695e0e8537e297c3dadb5d0863772a82967

    SHA512

    92a917f96446e784d6ef5c2176b88e097fa1a80f02ae229e912e766ae7ffd1760b9c4a22d47c15a943f2e12f86fb20d77e3832c081bd27d0904c0266b2d322f6

    Download Submit