3085c01d7a73786735ac9099c9f762751048cc86fd78eebce1dea39d15586c42

Analysis

max time kernel
3076758s
max time network
132s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
26-11-2022 14:23

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3085c01d7a73786735ac9099c9f762751048cc86fd78eebce1dea39d15586c42.apk
Size

7.9MB
MD5

0fb2ea9decf830a08bb1d7901ddcf1f3
SHA1

65163d66937433f4c908e0f3292d8ded421e1794
SHA256

3085c01d7a73786735ac9099c9f762751048cc86fd78eebce1dea39d15586c42
SHA512

5e73c7c76536f9369daa338eae704bfaede7e39b3487f5c60c1760351e82a5d9d0506e3b5ed8cf85e8075b9593fb1f160f0c03868b1edb95e14927a7f61ea811
SSDEEP

196608:nk18NvRn9ZJ2Bnjy0Fmej0hnNvG+Tu9fqnMxaf:k4nQBnBTIh8+q9AMc

Score

7^/10

ransomware

Malware Config

Signatures

Acquires the wake lock. 1 IoCs

Processes:

com.fun.dis2.zoo

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock com.fun.dis2.zoo
Reads information about phone network operator.
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.fun.dis2.zoo

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.fun.dis2.zoo

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	com.fun.dis2.zoo

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.fun.dis2.zoo

com.fun.dis2.zoo
1⤵
- Acquires the wake lock.
- Uses Crypto APIs (Might try to encrypt user data).
PID:4087

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.fun.dis2.zoo/files/.imprint
Filesize
852B

MD5
45f4eae556265e27a57b790d3c8982e2

SHA1
9d7d13ebe6b61c8e74ffaca0ca3daa228bd39f6b

SHA256
e6cb6e6b8ebe295ad386ca67cc65d988db737fad126f094e3dae9b6f942cf108

SHA512
6643d8b9810cb9cd46c03eb07b23aafcb773cfcd558eaa99573c8d869a2db977fa105930ab852ba488e61219e87e6405efaad23a3bb7f60b3da9d178b14d24d1

Download Submit
/data/user/0/com.fun.dis2.zoo/files/umeng_it.cache
Filesize
294B

MD5
2c2057436301019e4cd84323bbd26cd9

SHA1
554a329bc5041c6a7f2c978b738bae4e2c45ded4

SHA256
6354f497e9a34bfd43b2a15c684d88974509d3dfa5f14aabf2468da02c32a01b

SHA512
ffd9c620acf6ade395f507f600650e8385b13378744e8a6ec0d95026a0a43c67e97940d1e293b5012505f8379c9bb7f1d5517217eee0631fecdd2e31150fe28a

Download Submit
/data/user/0/com.fun.dis2.zoo/files/user.xml
Filesize
1KB

MD5
ba8c7aaa0cfe5ce93bbda7eedfc9dbc7

SHA1
17bb190387cae9ba391aa9964788ae238fcd2ee1

SHA256
19ad6b156d2d1942df6292b062da43851ea2f93d2e8fd711b7d02c0f252d3119

SHA512
a2083732bcf4b65f7661c195efa5587567328ba8e1906c95deaa31d932f8a1ab9a80008115bcc4f82dafbf8650808a2b8334cc7b6a4e61663172d0e0e5af77c4

Download Submit
/data/user/0/com.fun.dis2.zoo/shared_prefs/AppStore.xml
Filesize
142B

MD5
e53f1c498689d8cf56351815fd4d47a1

SHA1
5b50201c1af08c453dffc26ef2d1935ab15a8b7f

SHA256
21255c211b3c19d3bb5262c427f9231245ce0cf857483d3608a74025b771e12e

SHA512
65e646a53ff388dc6c7625eb1a92cbea9979e8a398a22ec2e37b5f9b57dcfd2a219d48b07ea07f700ba78f11a9f10224fdec0e0028ee7fb70d93a87db8e739dc

Download Submit
/data/user/0/com.fun.dis2.zoo/shared_prefs/AppStore.xml
Filesize
185B

MD5
9ed2898846beda1fa25153a7c41a3900

SHA1
159b3756b9e3a7313f7802ab73ac59dc9e7c7310

SHA256
d6b9600f9918fbc83f7318c61cee54e7e0b6141c848068ad4cf4716f0b14b998

SHA512
2c97b1fe8799b5dbc7c91adcdbe6f3d4b32eb780fa179949c0522a0089d3337f22e2abd8c0164bae709bffceb0c31d7f9d3c276228e6d36aadee3ed9b7c1a666

Download Submit
/data/user/0/com.fun.dis2.zoo/shared_prefs/AppStore.xml
Filesize
376B

MD5
c774b045c699ec922242e861c0afb5b4

SHA1
60caee25c346592063381d364d1801ff6724a1a7

SHA256
f81e156ea769135edc53313844ab628452e550c2e7cf32550f6b0e16d75c67a3

SHA512
da85ac8106ab73dc83bfc2b06216dcf52ed3ba19ea8a89375dbcb63110d0e4cf0140b9b63c5d09352a85a0f8607ca9871edb8ffdeef078aa1a89904e62bc3cfa

Download Submit
/data/user/0/com.fun.dis2.zoo/shared_prefs/AppStore.xml
Filesize
425B

MD5
d201f6eb218809bd6da8a6a776ffa657

SHA1
9145745ca11856aac1bf982e87fb4f1eafd1e4ec

SHA256
98d7ac87c1b5990525bf9440fd9b865fd9acdc4af9004605e59183de3b1d4d74

SHA512
c41c4069b6cfa509aa349dba50225156ac008e1d5e05f8095be3c7a3b92272b985fd4bf3cf92be3aeb28bd96c6816fb711d6134551876642db506a30582b6cdc

Download Submit
/data/user/0/com.fun.dis2.zoo/shared_prefs/umeng_message_state.xml
Filesize
119B

MD5
964952e3177f9dc329d5482f36020040

SHA1
b5528e133be52fc4c5aa40b2b62c7bc8885442d0

SHA256
9a1c06d8a43dd0a4cc8ff6de73a505ab3ae01e724c4cbd04f4ea6d5b297c209d

SHA512
917212f46559acc0d4eceddac7c8e98485316f5a71d22f4c7036530781d6b98b672397a5f3f1e4bf0afd7903792586973a8d9d14c6b69eb6caf67c2629d1dda1

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.DataStorage/ContextData.xml
Filesize
111B

MD5
835ea4a8f80bcfa3aa18c3767472ca1b

SHA1
89a49be51229c4745b334d04ef2fb3dd250af095

SHA256
8166f70087fdec3ae189f5205e169b72e0908fadba88298eb6521564218cdce6

SHA512
93f8aa2e131db8a649e2db3ebe3f7e534310f207c377d1ce8e2f4cfd05465c378d3dc2152c89a986d8f4684ec8ef6c830451c517e8f7dc1dc30bf76c64a4a076

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
65B

MD5
9781ca003f10f8d0c9c1945b63fdca7f

SHA1
4156cf5dc8d71dbab734d25e5e1598b37a5456f4

SHA256
3325d2a819fdd8062c2cdc48a09b995c9b012915bcdf88b1cf9742a7f057c793

SHA512
25a9877e274e0e9df29811825bd4f680fa0bf0ae6219527e4f1dcd17d0995d28b2926192d961a06ee5bef2eed73b3f38ec4ffdd0a1cda7ff2a10dc5711ffdf03

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
111B

MD5
8c96be221e9e39b50148d1c77bac78c5

SHA1
75f600d2f8b8f11641fb402dcd0a3d7d60938e1b

SHA256
7fe09a21fa1f3f00e1aaf10ddeac102efebe0ac7866abe52090f3be79faef3ce

SHA512
62ed0cfc0e09a0cd15698cfba7f2852079cc39606947f7df9ed4e4fe2002ec3dbbc0cd4bfc2ac6e4fbee5bb61afb782ce4b8e19fd55cbceaa36fc8351e2be215

Download Submit
/storage/emulated/0/.UTSystemConfig/Global/Alvin2.xml
Filesize
381B

MD5
e54c753d33286909b49e9b493a8880cc

SHA1
938a3e749dad315987d624572609ab3c57bf940d

SHA256
a984dd919e20a72b6baa299587e8e6bd85ee5abcf99245146a2c54d2ca647b85

SHA512
f3452aa9c7ca49984fd305907cbd72ec326cfeca849f5caa6796d382e8d7c781ca80b808f251258c31764754ea19170ba39c6fc576a6580409ee265daa005d94

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads