Overview

overview

7

Static

static

7

b835381226...a1.apk

android-9-x86

7

b835381226...a1.apk

android-10-x64

6

b835381226...a1.apk

android-11-x64

7

Analysis

  • max time kernel
    3077371s
  • max time network
    140s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
  • submitted
    26-11-2022 14:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b835381226f2b5cca13b5d5233c745ed0e95e7b0684ce7927a10a1625397c2a1.apk

  • Size

    846KB

  • MD5

    0b0f9d00040fc45bb833990f737b6dd1

  • SHA1

    2b176dad657900832be9d9d6f6dd99d9e8ff238f

  • SHA256

    b835381226f2b5cca13b5d5233c745ed0e95e7b0684ce7927a10a1625397c2a1

  • SHA512

    be7a5120050bc7ad8c444247c7ea345769cebcb47849cda855bb724ef4118c1696cc492c986d0510d6f693d90cf0807ddac60c7495ba4eb9de1d8b6fb1296a9e

  • SSDEEP

    24576:FLbu/1oKSzk8LSleuckw9ULMGhovF0y0PIIu:BbuoVSle1kwiLyaQr

Score
7/10
infostealerransomware

Malware Config

Signatures

  • Reads the content of SMS inbox messages. 1 IoCs
    infostealer
  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • tel.a52z.yz
    1⤵
    • Reads the content of SMS inbox messages.
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4078

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/tel.a52z.yz/files/.imprint
    Filesize

    1KB

    MD5

    e59d7b960634ab447a3f6d5f465d60f5

    SHA1

    adce29b0c36f80eb3443ae8ea7cc4b42b818c4e9

    SHA256

    41bd9fdfdf2fe24e495d8b57fb86c001c2f850e1cbcf6dc7d08b408a1a7007dd

    SHA512

    802f8d5e898e5d9e1d093b819e378d5ad8dcc9fd17aaf03cade1b579f0ace8b32efd130f6b0e7a96eaf583e2e75e6c08f655bdc3a8180d675d94f2dc3bd3b051

    Download Submit
  • /data/user/0/tel.a52z.yz/files/umeng_it.cache
    Filesize

    310B

    MD5

    6fe240675e9e8142342eb2dbd55da64a

    SHA1

    3ce2ce730b272b3460e1071e8034fac9ccbdd3f0

    SHA256

    eebce200476853bac28e2401df1c278d90958608c16f24f9555246cc2caa7a81

    SHA512

    af4cca6e405c6922f03f3ca23c7b47ba664166d0d8f1a0e1a24973a7313dc5ac5bbd490a2e011b21e9e0dae5a408b743c7bdc3a0d4737a065597da03ff83c004

    Download Submit
  • /data/user/0/tel.a52z.yz/shared_prefs/mobclick_agent_online_setting_tel.a52z.yz.xml
    Filesize

    124B

    MD5

    4546d2fb7ad6400a833a64d1e16128fd

    SHA1

    ec084ef851ee1fffa26192d345906899e19dcf8e

    SHA256

    2605a480f6756c2c2317c2b2a3cda5b5fad8a199c6daee2a2df5d7f4d6440ea3

    SHA512

    927dbb75ddb5aa220e8ca7696e38e5021dc1d4f741b7e13d5111f5362f047b75c9d60f49a8ef0ce001aa984e33b49ac152486749d2cc5cb6973a0ff103b314b9

    Download Submit