Analysis
-
max time kernel
3075829s -
max time network
162s -
platform
android_x64 -
resource
android-x64-arm64-20220823-en -
resource tags
androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system -
submitted
26-11-2022 14:38
Static task
static1
Behavioral task
behavioral1
Sample
b835381226f2b5cca13b5d5233c745ed0e95e7b0684ce7927a10a1625397c2a1.apk
Resource
android-x86-arm-20220823-en
Behavioral task
behavioral2
Sample
b835381226f2b5cca13b5d5233c745ed0e95e7b0684ce7927a10a1625397c2a1.apk
Resource
android-x64-20220823-en
Behavioral task
behavioral3
Sample
b835381226f2b5cca13b5d5233c745ed0e95e7b0684ce7927a10a1625397c2a1.apk
Resource
android-x64-arm64-20220823-en
General
-
Target
b835381226f2b5cca13b5d5233c745ed0e95e7b0684ce7927a10a1625397c2a1.apk
-
Size
846KB
-
MD5
0b0f9d00040fc45bb833990f737b6dd1
-
SHA1
2b176dad657900832be9d9d6f6dd99d9e8ff238f
-
SHA256
b835381226f2b5cca13b5d5233c745ed0e95e7b0684ce7927a10a1625397c2a1
-
SHA512
be7a5120050bc7ad8c444247c7ea345769cebcb47849cda855bb724ef4118c1696cc492c986d0510d6f693d90cf0807ddac60c7495ba4eb9de1d8b6fb1296a9e
-
SSDEEP
24576:FLbu/1oKSzk8LSleuckw9ULMGhovF0y0PIIu:BbuoVSle1kwiLyaQr
Malware Config
Signatures
-
Reads the content of SMS inbox messages. 1 IoCs
Processes:
tel.a52z.yzdescription ioc process URI accessed for read content://sms/inbox tel.a52z.yz -
Reads information about phone network operator.
-
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
Processes:
tel.a52z.yzdescription ioc process Framework API call javax.crypto.Cipher.doFinal tel.a52z.yz
Processes
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
/data/user/0/tel.a52z.yz/files/.um/um_cache_1669523140761.envFilesize
550B
MD5533d99ffd7fb4e1d366d471c98d079c9
SHA1d654007eb6cdc0f72d7ba8e6364ce1a275c56cc4
SHA2564b0701ebeae1ea722431b1898da4b79767ccd16e73fa19d87f87d5b677340e3e
SHA5121d6855095e7fd0eac18f2ace14ce0f782770f093f5cb8723c2e78883dde16773545bc83bda4d4a8e9b46ddd887531c9fda00b22171fc9cb5fb0aa5872b7780f5
-
/data/user/0/tel.a52z.yz/files/umeng_it.cacheFilesize
245B
MD558fdd0b4c2309b6f0cf27bb457a4adf5
SHA16b3162e898a701edea5a149ee64b6ecd80ea61b0
SHA2567b26a44a0bd950de6f9e9dcda962fb8330acb87f83e170e3c0f63084dedf556f
SHA512acfcd56eb63e46bec896ce1f85c6af1e151f6b651761eebca3fe052c8fe627ec362d07993ad7dc60b5732a3079f589b2fcb23cf461d78572f58ce4cd66c288bb
-
/data/user/0/tel.a52z.yz/shared_prefs/mobclick_agent_online_setting_tel.a52z.yz.xmlFilesize
124B
MD53d156f8eec8af82d0a8194b46bffd7c6
SHA175f87f4e29ea3ce45e625ad226456b983614e6e0
SHA25693a9f6ea94dc0c28e3f811219d8065557edd8541d4fa8f24167d2331477aaf2a
SHA512e9ae99643581685b606d688a4f704b95ee60bf6ad8f0bfa557fdd454b68345babe29377af5526e1dd64259b4ec6f80c17e33434d17991c06643357b89a4153ae