Overview

overview

7

Static

static

7

35fc14eaec...5d.apk

android-9-x86

5

35fc14eaec...5d.apk

android-11-x64

5

Analysis

  • max time kernel
    2942492s
  • max time network
    149s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    25-11-2022 09:22

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    35fc14eaec8239b7f6f5803efbd9a95a632b1f2e63050c8d1b4fe81204dac55d.apk

  • Size

    3.5MB

  • MD5

    2df4253f3810fe295b4f37897f249792

  • SHA1

    15eeedbea75b2b5eeea07c71d827ca9d72f078fd

  • SHA256

    35fc14eaec8239b7f6f5803efbd9a95a632b1f2e63050c8d1b4fe81204dac55d

  • SHA512

    6d89337a9716bc4957dfd84accb1c49022acf05f717d475dd3a1b51b50c06bea158c5d99c5893751c51f7ed5e7ae61b3bb6b1985fe17f27b6c15d7cfb84ad40a

  • SSDEEP

    98304:ViMS3fRvlvjQVgylWlRZdFWHRZdFRAygzF:ViMSvRdsncvFUvFRAyY

Score
5/10
ransomware

Malware Config

Signatures

  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • com.GuoLeTan
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4613

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.GuoLeTan/app_zq/z.so
    Filesize

    17KB

    MD5

    55acabef61c918aae3cae7a315823d78

    SHA1

    365811a7e77c4d23846c40cb1886fd11c3aadaa8

    SHA256

    0c324fc008adcdf3ad65eccc85a4e42b51d97adc7ad2ae1a22225ffa21352e3e

    SHA512

    e9619de32b3916329046b7d9a79e3a5a5b3b673aae68afeef6a4d6b0647a9c587680d07f6593736cbf9fddc5dbf9f30696cc17917e653ab94c179433ddcbe5c4

    Download Submit
  • /data/user/0/com.GuoLeTan/shared_prefs/bmob_push.xml
    Filesize

    65B

    MD5

    9781ca003f10f8d0c9c1945b63fdca7f

    SHA1

    4156cf5dc8d71dbab734d25e5e1598b37a5456f4

    SHA256

    3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

    SHA512

    25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

    Download Submit
  • /data/user/0/com.GuoLeTan/shared_prefs/bmob_sp.xml
    Filesize

    65B

    MD5

    9781ca003f10f8d0c9c1945b63fdca7f

    SHA1

    4156cf5dc8d71dbab734d25e5e1598b37a5456f4

    SHA256

    3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

    SHA512

    25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

    Download Submit