Overview

overview

10

Static

static

10

SharkBot (4).apk

android-9-x86

8

SharkBot (4).apk

android-10-x64

5

SharkBot (4).apk

android-11-x64

8

Analysis

  • max time kernel
    2829671s
  • max time network
    180s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    24-11-2022 08:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    SharkBot (4).apk

  • Size

    13.5MB

  • MD5

    fbbce12a67330ab04ae6f774e71a8f24

  • SHA1

    54334b07761041f00953cb0048a5b1ef96b6fdc1

  • SHA256

    7f55dddcfad05403f71580ec2e5acafdc8c9555e72f724eb1f9e37bf09b8cc0c

  • SHA512

    e1dfe3a9c023290de819aa93e2835cca1acaeada3959c99efce2eac4cea8e734e7ce6aaf019002c49d31d1ea1215c753304e7ce8da383e5243681953d0017c5d

  • SSDEEP

    393216:BH5macX7X52NWdXJq2TNhMfw6zpMrfum7H:BZqgY5b2qH

Score
8/10
bankerransomware

Malware Config

Signatures

  • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps). 1 IoCs
    banker
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • com.pagnotto28.sellsourcecode.supercleaner
    1⤵
    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps).
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4287
  • com.pagnotto28.sellsourcecode.supercleaner:BackgroundService
    1⤵
      PID:4520

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/databases/dbytes.db
      Filesize

      96KB

      MD5

      43dc299a241e04ad6f9cb8d7483ef60d

      SHA1

      6f5142fc2bddc2f26cc69912253f7d5c06f3ac34

      SHA256

      d2963e6ab07f76012007e7b18e453979d4534252c3246e0f66332dcbebbcc8f5

      SHA512

      3b08838b177c58ff80a74dbe71cd35267dcf856a7829039ff71959df4d2affb4a70020aa9162012e9b90c3505f7b8d2129c3bf7e149c5e45c45e70528fd0b505

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/databases/dbytes.db-journal
      Filesize

      1KB

      MD5

      db4127ba0bba0abaa31f653020884f37

      SHA1

      7589d2942d510186269099c0c026ea4d76cec73f

      SHA256

      2374b30230df06f60a7c9420b66a21bc5ae7a4dc8018a2d71f0f61e7aff53bb7

      SHA512

      1ffd3d7ce0b685fa56741bd2682695579c47a0471eb909ffab2d60af727ee1662dc9685b4382ae1f8b161eeb41e0ccb2029da9cfbaf22d7c6a757316e3ca3f6b

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/no_backup/androidx.work.workdb
      Filesize

      8KB

      MD5

      e579a6b00eef1318f9166352228eba18

      SHA1

      76988896854f0139083e77862eea1a4846cf039f

      SHA256

      4b34cf505050facf47aa7936e4e7667e1969105665c632b3eefe7ecddf9a6935

      SHA512

      c47632e957d87727bf6504a82ca7a44d8da24d30cd997a0f449a96e4f97c656a1b4d9da3fcd827e2a48c59677688da0b872358ebd0f9369d898d1b8ec18d5699

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/no_backup/androidx.work.workdb-journal
      Filesize

      1KB

      MD5

      acaf9d6baac2d38e7bd3205129c23a67

      SHA1

      3d319adc4725c237b32c84821e936e7274b412bd

      SHA256

      2ce063a69990a83df84d5dbd376e0132be79368b586a133eaccd0b54c4cf7215

      SHA512

      d23146799f303914b133742e19de324ce11700e271f2802b4bec2ab2d0bd78b51148ac0a376cb17f815177da8571359e53223caeed5e672fcd4d2b20d0cba190

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/no_backup/androidx.work.workdb-shm
      Filesize

      16B

      MD5

      4ae71336e44bf9bf79d2752e234818a5

      SHA1

      e129f27c5103bc5cc44bcdf0a15e160d445066ff

      SHA256

      374708fff7719dd5979ec875d56cd2286f6d3cf7ec317a3b25632aab28ec37bb

      SHA512

      0b6cbac838dfe7f47ea1bd0df00ec282fdf45510c92161072ccfb84035390c4da743d9c3b954eaa1b0f86fc9861b23cc6c8667ab232c11c686432ebb5c8c3f27

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/no_backup/androidx.work.workdb-wal
      Filesize

      217KB

      MD5

      a33083cbce599766e7361efd8a4a932c

      SHA1

      f5919838dd0d1229fb1954c448b16ed04453a8bd

      SHA256

      fe30480a62c090de5e3ffbdc99fa8fa9d708cd25a581f31b6e014f3a830832cb

      SHA512

      ad43e26406676e6ab99cafd8d9dd4a57fb8085b6f68500be55422abd9dfa6498a512bbf293ebcc3163951bcbe7f692086b52c80a5f82476860dfee846f2dd56d

      Download Submit

    • /data/user/0/com.pagnotto28.sellsourcecode.supercleaner/shared_prefs/com.pagnotto28.sellsourcecode.supercleaner_preferences.xml
      Filesize

      129B

      MD5

      e110942dd18421c1892192676670e852

      SHA1

      dc34a6172d973475dbb5d3b06b7e3c25f4b5d481

      SHA256

      b5d5fd03a2e98d2989ac52ffd72f1e6c79eb55f7a47f6b27248c7fef1a6344bf

      SHA512

      be9141e302973b0a7648704e0fbdace821906d73c3e6239e01fedec05abf7a814920aad7932452e171474118001fc93684e09014802c4684a43035df847b6d6e

      Download Submit