e719e41b5cf780cd6b01e9fac9a271c784cbb16641d2a25a8e80ea07f251c0f1

Analysis

max time kernel
2824502s
max time network
160s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
24-11-2022 03:03

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e719e41b5cf780cd6b01e9fac9a271c784cbb16641d2a25a8e80ea07f251c0f1.apk
Size

2.9MB
MD5

8e1b7b85ed4f8bb09b443fb26bf0d662
SHA1

34cd1c302cb236a64d6e629a5cd8607635e5177b
SHA256

e719e41b5cf780cd6b01e9fac9a271c784cbb16641d2a25a8e80ea07f251c0f1
SHA512

0d3acdfbcd95b83cfbf00ad7ed44abecdf9d91c01203bfbb2c0231026c2489db47c30592a106ed97f6a08515de22d65b9acd6f1f175286f38f058c2d81f777b9
SSDEEP

49152:W8GTkIpRVqFJ/qedfviwcE8A+zBnKMpdMHYkwkTkkypVEF8RNtw2LBNl7KqyBfGz:W8GV6d3v58A+ZKZHb1TBGEF4tpFNxlae

Score

6^/10

ransomware

Malware Config

Signatures

Reads information about phone network operator.
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

org.thoughtcrime.securesms:remote

description ioc process

Framework API call javax.crypto.Cipher.doFinal org.thoughtcrime.securesms:remote

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	org.thoughtcrime.securesms:remote

org.thoughtcrime.securesms
1⤵
PID:4032

org.thoughtcrime.securesms:remote
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4233

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/org.thoughtcrime.securesms/databases/test

Filesize
24KB

MD5
1501f43a860c5c895888f75048968a80

SHA1
7566c624585feb4412ab0730ff1b01ae9271e877

SHA256
7e58e36ee66c6d86131c1d9f7df0fa365464e874a20cb08ce733a18d8e8c8e25

SHA512
8cf54725ba34a1a62a856c38675b166c8d72e226e31cc1def26d48a20f6261ad9a928735fba999461afc458ede9ec5367eccf141634befd5bcdd66015e8dd2e9

Download Submit
/data/user/0/org.thoughtcrime.securesms/databases/test-journal

Filesize
524B

MD5
70f591d0904c8f44b84f5919e0385b60

SHA1
a701450d395a82bc09b6469debd7ff665542912d

SHA256
71371b89cb75c6f4d87987da89348348c0cc25c9f82004debca2a6faa68c7327

SHA512
7ff1f2dfaa0baae35f9188779ecf09c523df2cbd24a621372eedaac46bbce817e0825d3d4eb341627406d96645f8de137d7018b0e6e0a376cad6a9438de25bbe

Download Submit
/data/user/0/org.thoughtcrime.securesms/databases/test-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/org.thoughtcrime.securesms/databases/test-wal

Filesize
32KB

MD5
5003a80b380263a018f30a4b0e52c785

SHA1
6e752657d6243b0a352339cdfb957cc060d362fa

SHA256
adb609dbbb211464918e6f6f78c91f7406ae8ccfa63261b9f74c4be7b67df089

SHA512
1de67615df0b9e6cad82451a6b322d1805b377c2c0773cc4c3e78bb62b06489902909a09364fbff8d0bcd182d01683e0ff4a93297be566496ffbb06f63638479

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads