Analysis
-
max time kernel
3075353s -
max time network
144s -
platform
android_x86 -
resource
android-x86-arm-20220823-en -
resource tags
androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system -
submitted
26-11-2022 13:53
Static task
static1
Behavioral task
behavioral1
Sample
3cc00608c8f654218216a38347e8a3a1272a4bda501811f1566791ed4211fbff.apk
Resource
android-x86-arm-20220823-en
Behavioral task
behavioral2
Sample
3cc00608c8f654218216a38347e8a3a1272a4bda501811f1566791ed4211fbff.apk
Resource
android-x64-20220823-en
Behavioral task
behavioral3
Sample
3cc00608c8f654218216a38347e8a3a1272a4bda501811f1566791ed4211fbff.apk
Resource
android-x64-arm64-20220823-en
General
-
Target
3cc00608c8f654218216a38347e8a3a1272a4bda501811f1566791ed4211fbff.apk
-
Size
149KB
-
MD5
1a831fbcdb541b3532dc0b6e8dfa5108
-
SHA1
d02a15a500c5f03f4c3dc8e86b4d237af898917e
-
SHA256
3cc00608c8f654218216a38347e8a3a1272a4bda501811f1566791ed4211fbff
-
SHA512
2709f058620557a7fd8b5d9b259ca691b64ecda93cf9a6dabc67db8469e162fb4afcf5e8b7b603005bdca9ede17716c8b8f0710fa69aa9be139cf469e1d82539
-
SSDEEP
3072:Tu40zouZ3wwD1/3zgmLe6YnDR0mqpCxM4NqFQW:K4cRZ3wS1/jgH7DR0mqqDdW
Malware Config
Signatures
-
Reads information about phone network operator.
-
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
Processes:
xwz.bklge.hhdbfdescription ioc process Framework API call javax.crypto.Cipher.doFinal xwz.bklge.hhdbf
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/user/0/xwz.bklge.hhdbf/shared_prefs/storage.xmlFilesize
115B
MD5b8506999debc2160100a652427256527
SHA1fe804e599291c04257f973317a9ee4992ebe39f3
SHA256f00d5a18773eae29b59fe718073b60d6b2a308c26ae6a9515f2b12ed77d732d1
SHA512d18dae46f06b981078f450bf028eb73b6c2756294a0fe23b36dd1586b69ee502ccb664be93ef450995d3c9a4d00753a62953de383564fd8e59f3791a62c07a13
-
/data/user/0/xwz.bklge.hhdbf/shared_prefs/storage.xmlFilesize
168B
MD582fab60b46635c0fe3751e395dd85ba1
SHA12bb6cd45a3bb9714964cb8f4af51f762b57a5c12
SHA256fdc08e2dd87d345b7c6b53d5da3e31acfededa3ac50343be618ef473706591f4
SHA512494c5357e6e3b30cc4a606a76caa23b7208ba5f515b67e772eb1fff41f706b63a536af2c428003ab31eaf8692a1e21bf2bddb620ad5325f6fac28770e6afc458
-
/data/user/0/xwz.bklge.hhdbf/shared_prefs/storage.xmlFilesize
221B
MD5c7be61c0f77f4718eae726763d466c66
SHA186179f5c1c9367447b0e39ef2343e5e53472088e
SHA256ce35cf1afcc3547d705486d5d70a5885b5c3b822ac9f30c0aa02a0a2f991c9c3
SHA512503805d34d56b6a2dc3f00ac9d0b86cb6d4143bfa4d1cbf5cb7c6b16c765eaac6c58e58dbde28fd5014624b7f4a06bf4e6535d4dc161ca4a4ea2303e8b9808c7
-
/data/user/0/xwz.bklge.hhdbf/shared_prefs/storage.xmlFilesize
264B
MD5bade2fbd742786d804048976c7cc61e0
SHA14afecf96f25632574f0c7e685299cc23c82cf4f1
SHA2569f71e0664ce9b8b4c16233e6a6414cb8211c6756b106b9b1386da17449e5df65
SHA512fdc8e695b6bef019c3a6ef36b42f9affcb42822e600c63e029bab0c3486e448bbd5ea29412b9722442cd05d7ab1dccfaa32b1e6c4c95c4bfbf55731b1f6fac23
-
/data/user/0/xwz.bklge.hhdbf/shared_prefs/storage.xmlFilesize
299B
MD53214cefd25d9c74a03f794ebaac0f1fc
SHA180bc7cd58a78b33a0474a8e7bb86a5a7807dcf2d
SHA2563acbe7c0c2313b2d7cb0fe288b8490578903b693dd5ca0b9a563ece2c74d579b
SHA512527b4879db62ce5c834819d755f488d314bc8f7b1db1f102194f82b3ae2815c37b5175d73902728ce825483bd26298828c8f22f9989748d20003fc72d3b0f2c8
-
/data/user/0/xwz.bklge.hhdbf/shared_prefs/storage.xmlFilesize
338B
MD5084ef1a6c67a5258793c35c6ab13a536
SHA196f4c47263c4dd9472f955051fb750d06b0afbab
SHA2563fc3a148109c1e2c51023f9e30e4a23ba97f9d0b24d80e78fbbbf3998a5e7a94
SHA5127651715bcdb0d1c4cd7af9b48f5253906fca4a78cf33bfd6fe49b7653f7a8a39b5e6ffeacc541b80271fcdd6b8c55d2837ba380bc8288e904bca12fb34caa89b