ac1a3f73aab11a1b825df7cab1557dea86c7bc9528419bcea9dc4ae0a54579d8

Analysis

max time kernel
2998397s
max time network
151s
platform
android_x64
resource
android-x64-20220823-en
resource tags

androidarch:x64arch:x86image:android-x64-20220823-enlocale:en-usos:android-10-x64system
submitted
25/11/2022, 21:10

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

ac1a3f73aab11a1b825df7cab1557dea86c7bc9528419bcea9dc4ae0a54579d8.apk
Size

6.9MB
MD5

2aa074e1d188125061feebde6365ba5c
SHA1

1d7c8aacddfe000440813e6568f90ae7a782142c
SHA256

ac1a3f73aab11a1b825df7cab1557dea86c7bc9528419bcea9dc4ae0a54579d8
SHA512

45874812b70d9170b5f5c576f41a1a1636faed320b4bf7f8fe8d7dc1ea35b97722909097c298a410654fe3b918353a2c938d4866ee497b11a5e43529926d0a0a
SSDEEP

196608:rUMrx8qCxurWcgXMBKtsH/Hnx0byBW1Ze+Ivfk4H:rUiCxurWcgBg/Hnx0Osre+Wfk4H

Score

6^/10

ransomware

Malware Config

Signatures

Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs

ransomware

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.icloud.game.wrzjh

com.icloud.game.wrzjh
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4755

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.icloud.game.wrzjh/files/act0

Filesize
148B

MD5
3c20e189a6b6eff71bfbfe1144a5e784

SHA1
92a837cd9262d0c54215c0271e1dce907b2c3481

SHA256
26af77671ef59544884584fec4c3eb8c66c00f1466275c52fa22b479b8c59345

SHA512
1cedaf6b9721306ec0a43670527b252ea9353b08d884d057d94457d904b41731e29e7dcb1c3ebada0a17e73fec439d5285776a7f560e2b32633e3203c2f86f2f

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/act4

Filesize
314B

MD5
1db0008ee1b550509fdde8322bea2a10

SHA1
17de5ab635a0f5234e37dc55a129735ef6ad79ad

SHA256
ae3812b70b9ed97ad742d4939a0730e6444226bab52038abfd9905516140d0bd

SHA512
01597a8882649d0ad63aff240c3e2f212b4b098816fce6257c4ab2f0dd060b2fce9c26ff8f4ec46d6ecac4703c59966601777b8faac3d05b96a94b8de28f31c8

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/evn2

Filesize
199B

MD5
b0541cf184396435936d31d29c4b9a1f

SHA1
231845118b278c521cdbdff7373ba350477d47a9

SHA256
eaaebfc79796ab2a9a66de07eb836968f43f79562335f28f85f176726a45439c

SHA512
14e6f493bff52f45b2a647ce823511a8fdc416a2914eac85341398e9ae1d580876a7f2e1cd69c0b6d5b623921bdef21974757a9b6053b4bfae48b7a1792ca501

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/evn3

Filesize
128B

MD5
790aeb090b62b37920f22aa6532f1d09

SHA1
e3c6540813bda53bdf804e6b3ac853f0e9d7e9d7

SHA256
02b5dd3d36a3c4bb284b476552c21395bca38d599d5f5ea97a021962c360a8ba

SHA512
363da883ada6bb23798aece128b465d302154b1d6b32102c9f93c67ff1f8838fa7d5b4940c365ac8343e26a814eaa70fde5dc9b2913f4162ef2fe7557895dca3

Download Submit
/data/user/0/com.icloud.game.wrzjh/files/sys1

Filesize
509B

MD5
a163e82131ef1ab7e9ce200eaa503ad7

SHA1
e4c5d3c0d825534fc4441d17db9efa06aa8cbd5c

SHA256
c15b1a8eff2a5eb5f4f79ac258531d5670b67bfe0b427b8351fa8d894781bb29

SHA512
103a4824c6269d6c94f8b27806bc19366218550b1d012310668379beded5f0a5a191762f8ede76903bd6ebe9e4887e21ddf1194d36b748838eceda215e497a69

Download Submit
/data/user/0/com.icloud.game.wrzjh/shared_prefs/APP_START_TIMER_INFO.xml

Filesize
117B

MD5
e4834a3afd20edf47051a9e3a534d60a

SHA1
99025d6581b1ea1a59040b69f483d5d7e8f30179

SHA256
7999bb996ff53ea7a4c299af64234e68ff5ffa74d59072a3d9c623b3d18cdc0a

SHA512
fa8bc1492a603b095f66cd929d6f51b905a1d5df012e9d6bc628b13550980cca0dc0be8e07b9feb3ac1419e663b233b0808599a376f4465f548a4c0d0bea4405

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads