Overview

overview

7

Static

static

7

f6ff18ccd1...58.apk

android-9-x86

5

Analysis

  • max time kernel
    3017722s
  • max time network
    147s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
  • submitted
    26-11-2022 01:05

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f6ff18ccd1c861da66b24b257b65ed30abcfab53b53c814531ca996fcf7abe58.apk

  • Size

    8.0MB

  • MD5

    d94689c13463baafa1ef6cd21be4d5c6

  • SHA1

    063694f47bd51860a63486c7b1899f8b3423b6cb

  • SHA256

    f6ff18ccd1c861da66b24b257b65ed30abcfab53b53c814531ca996fcf7abe58

  • SHA512

    fd61920ad218634bcf5c5cc45c1e437c4fad8465860cc943b36f34c5e9b20300d431516875012951238b0f28096a0099bb29f3da49800567f6fbeb9d144629b6

  • SSDEEP

    196608:seKtAzWVncb1F8pYNwM5vhnsNBldTUv05/5:s/2zWdc8qNwshsFWv05/5

Score
5/10
evasionransomware

Malware Config

Signatures

  • Removes a system notification. 1 IoCs
    evasion
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • com.shaaxifengyun.lty2.zjh
    1⤵
    • Removes a system notification.
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4073
    • getprop apps.customerservice.device
      2⤵
        PID:4241
    • com.shaaxifengyun.lty2.zjh:message
      1⤵
        PID:4210
      • com.shaaxifengyun.lty2.zjh:SmsIntercepter
        1⤵
          PID:4305
        • com.shaaxifengyun.lty2.zjh:milipay_sms_v1
          1⤵
            PID:4291

          Network

          MITRE ATT&CK Matrix

          Replay Monitor

          Loading Replay Monitor...

          Downloads

          • /data/user/0/com.shaaxifengyun.lty2.zjh/app_webview/Web Data
            Filesize

            104KB

            MD5

            dc79f9ce5f3ab5270b33e61119dfc959

            SHA1

            1844bf222a5144b513dcf2fb50a18c011701c647

            SHA256

            47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65

            SHA512

            18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

            Download Submit

          • /data/user/0/com.shaaxifengyun.lty2.zjh/app_webview/Web Data-journal
            Filesize

            1KB

            MD5

            dac844fd511a4001c2d191f068b06417

            SHA1

            50b68aefe226e9c8df69fc00a11ee315ead5405e

            SHA256

            df4b5720a07366e1866920078d652d0dc4a037cee56730140b89ea1d69130bba

            SHA512

            b7cb4b74e3bb7b0203b1100edfead40da0459b46f828f7ef4fac28aa8182e0dad5bffa1a5a967f4efa32cc6f5b5070d5364d4d970f778b378f53a782f40bc673

            Download Submit

          • /data/user/0/com.shaaxifengyun.lty2.zjh/app_webview/metrics_guid
            Filesize

            36B

            MD5

            a53853f3419536b99d9e7204a23499a1

            SHA1

            3ac563cdb5f1eb7855d6b153326154af5557129b

            SHA256

            54123659ef780cd87e5d5c3937c70ce779b0f64a30b769383e5428f5302951e3

            SHA512

            39b138e0bd412afd6e39bf32d7b8b6bf704f615a3cbbd20f314adad078fbed1fb8ec4ec467616d3601ba2f797a8b8044e2fec605b8fa64b244828b8ef95f0b1c

            Download Submit

          • /data/user/0/com.shaaxifengyun.lty2.zjh/files/clientinfo
            Filesize

            57B

            MD5

            3a07989c5a026e04b145b4d8d8e9c9eb

            SHA1

            2048624109d0589cb2010da7b8ff66c80b64dcaf

            SHA256

            3ca0c20f281c8a66f15b8d8044303134c056ec4abf5a034ba6a78178a539990f

            SHA512

            79400b9698601cc9bf1f0d9bdb78d4dd4eae81e5536c534197e6931c6711432b2ca157bb917d7dac5060cdffd3bddc090c34c8e4bb4bf7031f70241208f8a5ac

            Download Submit

          • /data/user/0/com.shaaxifengyun.lty2.zjh/files/config.data
            Filesize

            178B

            MD5

            2a73de5e3a77717d90344ece8541dc95

            SHA1

            50873f100d648a82ae0482021d83420177c69157

            SHA256

            9e16bfd09538c348d867097d823a5aff2800e6489f37d82268430c3313665743

            SHA512

            3f0914687bfce68ac9979aacc94267c46a5ed76682f10b63028182fee8b226eae4deff4e3335384c8371c23130aaa8451f085cdd7407c0bb5425fecfc4c40ac0

            Download Submit

          • /data/user/0/com.shaaxifengyun.lty2.zjh/files/payinfo.info
            Filesize

            2B

            MD5

            c2f3f489a00553e7a01d369c103c7251

            SHA1

            a0509b7780628bd9d9abc7eb8a2163477341053a

            SHA256

            23794d91c53ae875c8e247d72561e35d9d06ee07c70c9e0dbcc977a6d161504a

            SHA512

            0f446282a46dfefa3995e9e78443c907aca544aff495badfcb632b9df2457f8491babf852d8ebbe7ecc9392461b559e9e242960f13e624e79dbcfca44a6e5de1

            Download Submit

          • /data/user/0/com.shaaxifengyun.lty2.zjh/shared_prefs/WebViewChromiumPrefs.xml
            Filesize

            127B

            MD5

            21223e9184445fe043476484cd8cb1f9

            SHA1

            2b4813f849121d60ba35eb0889080668bb62c778

            SHA256

            bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

            SHA512

            be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

            Download Submit

          • /storage/emulated/0/android/data/com.letou8.game/privateData/clientinfo
            Filesize

            57B

            MD5

            3a07989c5a026e04b145b4d8d8e9c9eb

            SHA1

            2048624109d0589cb2010da7b8ff66c80b64dcaf

            SHA256

            3ca0c20f281c8a66f15b8d8044303134c056ec4abf5a034ba6a78178a539990f

            SHA512

            79400b9698601cc9bf1f0d9bdb78d4dd4eae81e5536c534197e6931c6711432b2ca157bb917d7dac5060cdffd3bddc090c34c8e4bb4bf7031f70241208f8a5ac

            Download Submit