8b171c39a4b4d6b5eda5c260a1de8d03f0a8f570e8aa27bc38bada831b31684c

Analysis

max time kernel
2850882s
max time network
136s
platform
android_x64
resource
android-x64-arm64-20220823-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
submitted
24-11-2022 09:54

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

8b171c39a4b4d6b5eda5c260a1de8d03f0a8f570e8aa27bc38bada831b31684c.apk
Size

7.2MB
MD5

10a36cc772649b05d09cb9c5ba586c94
SHA1

0b0b693a213cb8aa6affd0ad2ebe195a92a1d01f
SHA256

8b171c39a4b4d6b5eda5c260a1de8d03f0a8f570e8aa27bc38bada831b31684c
SHA512

0b028c261b2b46a83d39300b232ebd49cf6c2e21dd14431d9471a28a479614fb24c24ab500ca9ae64d467b7318969d8891f957a53823e3b1e7d74ebb240bd658
SSDEEP

196608:DJLarZUia5WzWcgQVKxYRbjYC8ggyWyZx8qjNqNJaH:DJLga5WzWcgYKeNkC8ggyFbDgNJaH

Score

7^/10

ransomware

Malware Config

Signatures

Acquires the wake lock. 1 IoCs

Processes:

com.icloud.game.wrzjh

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.icloud.game.wrzjh
Reads information about phone network operator.
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.icloud.game.wrzjh

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.icloud.game.wrzjh

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.icloud.game.wrzjh

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.icloud.game.wrzjh

com.icloud.game.wrzjh
1⤵
- Acquires the wake lock.
- Uses Crypto APIs (Might try to encrypt user data).
PID:4657

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.icloud.game.wrzjh/files/act0
Filesize
148B

MD5
a8381af8247ffe290ce20fd545f231c0

SHA1
3d4386b11b91d2c1b70e60c68270f583c3878834

SHA256
f6352920ee531f87b5424b8b204d8ad0cb135feb669a4c5e53b03e85ae85e154

SHA512
b2a89b887da465515bd8df1d336cfea731c1c554e08b471eb6885841e5062f6626f36d97ca756e98a7471c8d02ee99346413c4024e72ea44922bb7e3dacbdbc9

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/act4
Filesize
315B

MD5
67d82a617cedd7aa93dbce4773d2c7ea

SHA1
4fc12056f5b9c575f04a9f1e76f829861218615f

SHA256
fc8c2b707d2aa6f0483383d1b7c54f98c4743a0955a64261477aba6ec1d0f712

SHA512
8e1afbf28e4342114a2ce450a43e17b8dc8a6e64860b76d8f7eea7305e62b322743b5a4eb0b6922b8956ed4f6bf9f237879a3e465b6424558fdf87fb280d4ac2

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/com.skymobi.pay.opplugin_V2009.apk
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/evn2
Filesize
157B

MD5
c6f85cf6431029ef1c629669a21200c6

SHA1
230ac812f0dc749d0d859272f0aa336470b5d52e

SHA256
815fc249cc4aa3ced6f06f5dd6e75285b9090a3dcdae4c9152efbe1224175e88

SHA512
0ccf9c59aaf4c7b8fe81ff18cdce0b3d042ecb01a5a0759469388f760e29b7f16df100747e86311865f4e701a8b4999e9385f30e86a0a14b23b233aa42b7db41

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/evn3
Filesize
128B

MD5
89e7c8d2152306ed14097a18809bb6ec

SHA1
c4d4a463df0eb923c4f01ec584cccd6b7c4cc670

SHA256
67b9fde9ce76c5d1bc183348c12939d51042217e34bdd6377569f2b310c716e9

SHA512
3e459fee9a58c4db7fabc814ebde97898ca9aae4b07b4b5b7a0d3358befb5a6148e9da59a908296b578e866e4e7c98be4c256c1a3ee9f9eaf7310ffd724af0f3

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/sys1
Filesize
505B

MD5
9f0d7fe431595da7335468ded5aa1ec7

SHA1
742efef5c9117bcd0eb1b30c85cc48761bb4b878

SHA256
a17d15eda9280837a6142864d61d2c8c2130574eff818fc5d775838d7c5e746a

SHA512
66b912fa5c4b716b68a7de2a2e8ca5758872f66ab803e517ac2d917329016e1673188eb5be9945860b41e036cd3aff609648f11c911ed9cc273e65071f062bb3

Download Submit
/data/user/0/com.icloud.game.wrzjh/shared_prefs/APP_START_TIMER_INFO.xml
Filesize
117B

MD5
20552a46193c5466d86e757255725927

SHA1
ed7608f145a253c0b4aa73cb3c840b37621b6a05

SHA256
e016e4333cfd875bcfed75bdd89447906413f571075311212ecad2a981418975

SHA512
648a0e5ffb270b2358908fd22f271e46e4be445bbd7110f02d7a06024072cb4b1420a1f3d26b0343ac129ed255dcf3905b5841a9f6828bce08096642fb1d23a7

Download Submit
/storage/emulated/0/wrzjh/com.icloud.game.wrzjh/zhajinhua/log.txt
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads