Overview

overview

7

Static

static

7

b835381226...a1.apk

android-9-x86

7

b835381226...a1.apk

android-10-x64

6

b835381226...a1.apk

android-11-x64

7

Analysis

  • max time kernel
    3075829s
  • max time network
    162s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    26-11-2022 14:38

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b835381226f2b5cca13b5d5233c745ed0e95e7b0684ce7927a10a1625397c2a1.apk

  • Size

    846KB

  • MD5

    0b0f9d00040fc45bb833990f737b6dd1

  • SHA1

    2b176dad657900832be9d9d6f6dd99d9e8ff238f

  • SHA256

    b835381226f2b5cca13b5d5233c745ed0e95e7b0684ce7927a10a1625397c2a1

  • SHA512

    be7a5120050bc7ad8c444247c7ea345769cebcb47849cda855bb724ef4118c1696cc492c986d0510d6f693d90cf0807ddac60c7495ba4eb9de1d8b6fb1296a9e

  • SSDEEP

    24576:FLbu/1oKSzk8LSleuckw9ULMGhovF0y0PIIu:BbuoVSle1kwiLyaQr

Score
7/10
infostealerransomware

Malware Config

Signatures

  • Reads the content of SMS inbox messages. 1 IoCs
    infostealer
  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • tel.a52z.yz
    1⤵
    • Reads the content of SMS inbox messages.
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4591

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/tel.a52z.yz/files/.um/um_cache_1669523140761.env
    Filesize

    550B

    MD5

    533d99ffd7fb4e1d366d471c98d079c9

    SHA1

    d654007eb6cdc0f72d7ba8e6364ce1a275c56cc4

    SHA256

    4b0701ebeae1ea722431b1898da4b79767ccd16e73fa19d87f87d5b677340e3e

    SHA512

    1d6855095e7fd0eac18f2ace14ce0f782770f093f5cb8723c2e78883dde16773545bc83bda4d4a8e9b46ddd887531c9fda00b22171fc9cb5fb0aa5872b7780f5

    Download Submit
  • /data/user/0/tel.a52z.yz/files/umeng_it.cache
    Filesize

    245B

    MD5

    58fdd0b4c2309b6f0cf27bb457a4adf5

    SHA1

    6b3162e898a701edea5a149ee64b6ecd80ea61b0

    SHA256

    7b26a44a0bd950de6f9e9dcda962fb8330acb87f83e170e3c0f63084dedf556f

    SHA512

    acfcd56eb63e46bec896ce1f85c6af1e151f6b651761eebca3fe052c8fe627ec362d07993ad7dc60b5732a3079f589b2fcb23cf461d78572f58ce4cd66c288bb

    Download Submit
  • /data/user/0/tel.a52z.yz/shared_prefs/mobclick_agent_online_setting_tel.a52z.yz.xml
    Filesize

    124B

    MD5

    3d156f8eec8af82d0a8194b46bffd7c6

    SHA1

    75f87f4e29ea3ce45e625ad226456b983614e6e0

    SHA256

    93a9f6ea94dc0c28e3f811219d8065557edd8541d4fa8f24167d2331477aaf2a

    SHA512

    e9ae99643581685b606d688a4f704b95ee60bf6ad8f0bfa557fdd454b68345babe29377af5526e1dd64259b4ec6f80c17e33434d17991c06643357b89a4153ae

    Download Submit