Overview

overview

8

Static

static

7

420845a545...0a.apk

android-9-x86

8

420845a545...0a.apk

android-10-x64

6

420845a545...0a.apk

android-11-x64

8

Analysis

  • max time kernel
    2942880s
  • max time network
    160s
  • platform
    android_x64
  • resource
    android-x64-20220823-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20220823-enlocale:en-usos:android-10-x64system
  • submitted
    25-11-2022 09:19

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    420845a545d0e62c51ea4e5323bfc97f83c54d06bdcd500fc0042315e0bf770a.apk

  • Size

    7.6MB

  • MD5

    1dc8b7140dee61b956b5afecd38df9c3

  • SHA1

    e1c63236ec35ec81c0845618217a55bdd2349056

  • SHA256

    420845a545d0e62c51ea4e5323bfc97f83c54d06bdcd500fc0042315e0bf770a

  • SHA512

    39929c53928795dbd6878804ba5ce3e5b1649c2f6731949d847a643441c926548dd82180e86388142dd85ce7154c2c7a3e1b84d9be969692b296eab7560351d2

  • SSDEEP

    196608:H6i76DkJNqT6dX4jzG+feuQCEC7tLKUd0pb:2DkJNqT6do7l7Ub

Score
6/10
ransomware

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • com.qitu.market
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4767
    • getprop ro.miui.ui.version.name
      2⤵
        PID:4820

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.qitu.market/app_webview/.com.google.Chrome.eke1Jp
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.qitu.market/app_webview/Cookies
      Filesize

      88KB

      MD5

      a4384f45ca7206cf0f3072995a838780

      SHA1

      255d856ea8332aab3c7cd799495d252081a29c07

      SHA256

      fb7585996659415fdf40a3c65e68fcb98282889446238f877936eb65b7197b47

      SHA512

      088ef11c2a5ca9f4ac0320c4d71a1d80f4d062299e9d1bdf6b98cd22b74d5c9518d266ced36c1564c2f1ec5c54f108b4d924a4b9797e58b4b22fb776655eedd6

      Download Submit

    • /data/user/0/com.qitu.market/app_webview/Cookies-journal
      Filesize

      1KB

      MD5

      a683911ac13ac7e788c3cd8201f664a6

      SHA1

      06ec51ea34c7a9e2f1baef239962572f41ae9cfd

      SHA256

      f95050f001ab2f1654eb93a9309192dd35e556503b7b2291301e3e7110f63ba2

      SHA512

      7842d5a351682ab41795dc9cc075523368e9ad165f72d10c8f8002544d3973e31d8aaaa12bb59f1771ca053329277390f9c2d33bbff23f627d6717d12cfdf0d0

      Download Submit

    • /data/user/0/com.qitu.market/app_webview/GPUCache/index
      Filesize

      48B

      MD5

      6d7d499960179766cd4261d12dacc411

      SHA1

      e6f8553b0015e12b23cc551afe98763f3b1c9bed

      SHA256

      c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

      SHA512

      6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

      Download Submit

    • /data/user/0/com.qitu.market/app_webview/GPUCache/index-dir/temp-index
      Filesize

      96B

      MD5

      9ec319808dd00beaa591a1d9a31de575

      SHA1

      30a215e66b7eac52688a2b93bdee63f930dda543

      SHA256

      8b003c06fd1396e52a17ded1ddc0310c7cbf4d89bb56770c93992708b7790822

      SHA512

      621d8c46fe8aafe68ae2b0ab3ef33b4688dbb9440ff67a3ff3125b4ac2699e98306a9f51502b9ed907c6ac385471228d8f41984b28548da0b0aa86b081e84376

      Download Submit

    • /data/user/0/com.qitu.market/app_webview/Web Data
      Filesize

      112KB

      MD5

      b663831f8cc130493476d94f2d7a5330

      SHA1

      043a1956ab8e40821d67043f8a9110a8eb36fb93

      SHA256

      c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7

      SHA512

      e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

      Download Submit

    • /data/user/0/com.qitu.market/app_webview/Web Data-journal
      Filesize

      1KB

      MD5

      5a28529685db4250a2c82b9145e3a5ac

      SHA1

      748a884670eb82fb574f9f54b904ef585907e507

      SHA256

      4a2f29715ca8f0578093cd36d75ebe2d98d2e067ceea876a1902c06659bfd16d

      SHA512

      b5d4cff989f2f66fef1f2bbd796faf802733417b8bcf6f6d80dadbf0cb5e8d3607b2927e6029ea7cf30c65509b0be735d33554f1424d3a8f9f86e4bb65344470

      Download Submit

    • /data/user/0/com.qitu.market/app_webview/metrics_guid
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.qitu.market/app_webview/metrics_guid
      Filesize

      36B

      MD5

      bf591f8d33a722a521d665b9ea56ad3b

      SHA1

      925b49bdb004f9fa854ef38d882406d1738cd791

      SHA256

      bf8f2f387aed201287a318d930120f9fe418de1cf1e27660a8ef77987db464ee

      SHA512

      e4ed47eb3387faf9544e7737684fbc6f2d91b6e12dada24be57faf98db2e35cd9cb1b1e57ce52be1495ca2c94076c5588f1fa31f956f8f3d262d4a47d2190588

      Download Submit

    • /data/user/0/com.qitu.market/app_webview/variations_seed_new
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.qitu.market/app_webview/variations_stamp
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.qitu.market/app_webview/webview_data.lock
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.qitu.market/cache/WebView/Crashpad/settings.dat
      Filesize

      40B

      MD5

      ff04bab2a80d104a1d372a87906eae39

      SHA1

      51312c6e8dc90f1d65ae48d1d41a966cc28e8dec

      SHA256

      c0648236d1fa75ba7876c53dbe18a248bf6319fe8701285a98b54b308f250667

      SHA512

      c55d894b9e4856177f8ea3a5fd2db6425383f6ecd41724338735742a7d59dfc37c222afdea8041247fd6d025ddd7644b429c298fc9bda2f64c43b5422a9b6de1

      Download Submit

    • /data/user/0/com.qitu.market/cache/org.chromium.android_webview/Code Cache/js/index
      Filesize

      48B

      MD5

      6d7d499960179766cd4261d12dacc411

      SHA1

      e6f8553b0015e12b23cc551afe98763f3b1c9bed

      SHA256

      c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

      SHA512

      6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

      Download Submit

    • /data/user/0/com.qitu.market/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index
      Filesize

      96B

      MD5

      c5d72018daa1fb267d9b1a2f92189314

      SHA1

      6e8146487539eae83f855337f1d9a21c5b3a8fe2

      SHA256

      960f8ded25a0398eaed2e617ffea92c49eabf98f4c0c541fd0c6340a7fc59c82

      SHA512

      fbcd97e96e7198758010640e87e56ff2421199694e6b5b75ab656701f84735bd5b09b4ded8f82f93e9088cf0a743c5819f639774e4d2a6cc6522930905dd7db1

      Download Submit

    • /data/user/0/com.qitu.market/cache/org.chromium.android_webview/cb2403c4a0d19404_0
      Filesize

      9KB

      MD5

      bb94bf8d0449e57f55701a85370bcddb

      SHA1

      6df13b11c4301054e033ed7067d7fc671fc41b76

      SHA256

      08e9a8415f3540c5deccdc302ffcacffe6ef4c2c7e19a1451e24ba3fdda4720b

      SHA512

      db2f58cb6cb9a47bf23c41822cbc9f8bb96bb444fd6f0d9f5c23dd318b89898aa7f974a17b6ee420a4ea0a548ea10cc05ac31a0e93e1aafe91fb434293f5c419

      Download Submit

    • /data/user/0/com.qitu.market/cache/org.chromium.android_webview/index
      Filesize

      48B

      MD5

      6d7d499960179766cd4261d12dacc411

      SHA1

      e6f8553b0015e12b23cc551afe98763f3b1c9bed

      SHA256

      c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

      SHA512

      6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

      Download Submit

    • /data/user/0/com.qitu.market/cache/org.chromium.android_webview/index-dir/temp-index
      Filesize

      96B

      MD5

      30e0e53b7483a93133f19fe40871e91e

      SHA1

      f4504ca2eb0a6bc96445bfef876d70a04ac36594

      SHA256

      fa4ef73db28337e9e367de959d192fa751f510fa4499f0b83974cee83186ef43

      SHA512

      ec41eab4c513648bd3191d2682390861eb362bdc94d8a8fc9a208c3b2e4dadf783639471ac902777c099c2a22136a5de8331a11fe62d992bc8c49c04ed11fbe7

      Download Submit

    • /data/user/0/com.qitu.market/cache/org.chromium.android_webview/index-dir/temp-index
      Filesize

      144B

      MD5

      3b18b4a4aba716ee34b432a8c66415c5

      SHA1

      433d922905584eda00765fb38ab078bea1e48745

      SHA256

      452112913951b93d9667891fb4376ecda8c4d6d6a965f92ba2057bdd858a3357

      SHA512

      0c2732d0b0276c42982d27235868de7767c0e5e0ded4defe07bffd9787cd65ad9aef12eee3881a39520eda1a24820654e5facab9fa92eddaadd54bac8a9f5b39

      Download Submit

    • /data/user/0/com.qitu.market/databases/download.db
      Filesize

      72KB

      MD5

      1c7f447db748227bb78ed127f7ffc542

      SHA1

      a13f9c948b36688ac97ff7e07813e495729d7adc

      SHA256

      13eff51ae325ec8d4250cf9664f1a833b7bb15eb4ab15306b10af4a0b9e091cf

      SHA512

      3a7f99b2e1f178ca5a31d8a02b6613f57ae210004aaecf9821f3fff7c1e1aeb929ab3a9b24c0ca25c0cb65832a9def2359b1f0d02dc4e172a34d9afa7036a98f

      Download Submit

    • /data/user/0/com.qitu.market/databases/download.db-journal
      Filesize

      1KB

      MD5

      abf453a3880fb3dc8adb43879387d7ec

      SHA1

      1b9108437fa3de70cb5bf243510f9ff73672de24

      SHA256

      6f258641c67c5241ca674e80a2c48d527476e66955e08b9cdeeb070531afa41e

      SHA512

      d97c20a1d63e7b775bf4a2c14ae0ff3cad69c5a7d1a195b61159a2a5d4ce9a0b3cb9c2d37bf128d3ed582c42872aa1ae0f47a372ac386d15d46cb5af1adc2e43

      Download Submit

    • /data/user/0/com.qitu.market/files/libcuid.so
      Filesize

      109B

      MD5

      e89e081f9999d2334c83182fd003d5ee

      SHA1

      3c58e22dabe8b1dd4b5794df3ab53dbf7a61cf9a

      SHA256

      d6ffaddff256de728e7ab7471fe017c14e3c05dab958f1753ff3a4e29671a822

      SHA512

      ac87b98eb62b474af2cf01fc7c69fd2608115e8fe990611b16d5bb00f72ff941a33a2ebed0a8f6d8531c983648116fca003faec87edc154b598ec91b3c4c3abb

      Download Submit

    • /data/user/0/com.qitu.market/shared_prefs/WebViewChromiumPrefs.xml
      Filesize

      127B

      MD5

      6ef709b8536878951e87c29a1518fc2b

      SHA1

      24376c70b00152501b3d98df61fa7db435339172

      SHA256

      10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6

      SHA512

      96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

      Download Submit

    • /data/user/0/com.qitu.market/shared_prefs/qitu.xml
      Filesize

      115B

      MD5

      c982644d1bb901f7265b92a2bffaeba9

      SHA1

      99b4d0add311eb02ef369018763a5af3778ff119

      SHA256

      70113b13c4b1b2433688d66aa9aa5411d1c6ab5580a27f19e1a2fc8fb8e4f63d

      SHA512

      2c70c5eff3275db1f662d2229c6faaa53b5c614940d17e3bf706ed62e33ddb8ab2a195ce264c8f92f4fd86118cdd8a0840c89069e6dfc26359f55c634989f4bb

      Download Submit

    • /data/user/0/com.qitu.market/shared_prefs/savemodel.xml
      Filesize

      142B

      MD5

      37d14d99ccb767d98368a1ff20600749

      SHA1

      ce06e3691d6543f3922c508bdd2cb73064e2377d

      SHA256

      ee0b30d13dcfd9ce9c4478ea66627cabc4d8199a49ef551b1a01470313bf6e70

      SHA512

      9e0c4eb67bd3e6d7ee1d6b4198065c34b07d9b00d49d354ff13787dc260a05f3b37556dc8a2d38fa22bacfba17578eed755968e913925553b9de6bc4051e9f59

      Download Submit

    • /data/user/0/com.qitu.market/shared_prefs/setting.xml
      Filesize

      152B

      MD5

      890e3309ad9eff6c35e0e2f8ec2008d9

      SHA1

      57be86a77ee7be40c15f4342aa060fbfd6e4e9c2

      SHA256

      ed71e6d465b44c147c1e923df7a932df8318431ad473d951b1451de6ef02ca53

      SHA512

      5ac793fffb78f3b75074314017e177009b942205188479138bba031742a73ec4728f5b760497c5c1233cb24853a2f21a89bf517a9144c5b0a842a00e758ebbca

      Download Submit

    • /storage/emulated/0/Android/data/com.qitu.market/cache/.nomedia
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /storage/emulated/0/Android/data/com.qitu.market/cache/uil-images/journal.tmp
      Filesize

      31B

      MD5

      8c92de9ce46d41a22f3b20f77404cc1d

      SHA1

      8671a6dca00edb72be47363a7071be65cf270373

      SHA256

      68bb33ddeed9200be85a71f70b377985f9ee68e91578afbde8321463396f1274

      SHA512

      30f45fe9954215d6adafcc8f0a060a7ff41963a64f9b849a37f0d18fe045038d429ec13bf15226769c4ba78dad3c52f3d9e0dbbb4fcdea4828a1efe956e48f56

      Download Submit

    • /storage/emulated/0/backups/.SystemConfig/.cuid2
      Filesize

      109B

      MD5

      e89e081f9999d2334c83182fd003d5ee

      SHA1

      3c58e22dabe8b1dd4b5794df3ab53dbf7a61cf9a

      SHA256

      d6ffaddff256de728e7ab7471fe017c14e3c05dab958f1753ff3a4e29671a822

      SHA512

      ac87b98eb62b474af2cf01fc7c69fd2608115e8fe990611b16d5bb00f72ff941a33a2ebed0a8f6d8531c983648116fca003faec87edc154b598ec91b3c4c3abb

      Download Submit

    • /storage/emulated/0/backups/system/.confd
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /storage/emulated/0/backups/system/.confd-journal
      Filesize

      1KB

      MD5

      70918c50f9a1012a6ddf557a00e132ad

      SHA1

      8c203e7aa7fe5d4749c5a8ac59c92ba2786c1e37

      SHA256

      94580f8b2cdc652504fe4573e845404fb915ea2e398902d0f9a363af904c0ecf

      SHA512

      c843227d33750af1932ef061add50761a15f90bffeaaea4d84242dea8fdd67adb28f746597f39cc8bbaee1f620e14f9b242172d346df175d76f2634bf91da158

      Download Submit

    • /storage/emulated/0/backups/system/.timestamp
      Filesize

      25B

      MD5

      565fe7b1d149e9eb2134792b3795aa9e

      SHA1

      818637311f89dd890f35bf5a525e2d0f2ae2a872

      SHA256

      41289d39d223820c20e7a77fbdd03677cf77f1ef1511b11514d9cb78b6e252b6

      SHA512

      cfd5ecce583cf145ae61be245ec4d9596253bee445415684bb28b0fd36dae4300f6d5d83c9b8aad1b85ae104cc595844b5f36be2ffe582dd2cfa560fbaedc799

      Download Submit