3da4334aeaa3a768f841d85b51690c74f3f338f403760c58d0effe07f9f2957a

Analysis

max time kernel
3099881s
max time network
130s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
26-11-2022 20:09

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

3da4334aeaa3a768f841d85b51690c74f3f338f403760c58d0effe07f9f2957a.apk
Size

121KB
MD5

81923b1a6d43f535b27c2f6726a873a8
SHA1

bcf3c6da1c2d54f90639a1a3bb474e4e25878420
SHA256

3da4334aeaa3a768f841d85b51690c74f3f338f403760c58d0effe07f9f2957a
SHA512

8c203f5496046ce20f9c13b4989eb2d270e15ca5b5008d4baa63fe7df3c113753bf832eb6715e457667408086ced9447a703a63cf19ece4bd22d86a5a381ef34
SSDEEP

3072:LwOG7rYJC0yLPkFHwDLdq03H7HhWCVCW0jQrd:LwffYJC0yywNVbHhWzsrd

Score

7^/10

evasion ransomware

Malware Config

Signatures

Acquires the wake lock. 1 IoCs

Processes:

content.objectives

description ioc process

Framework service call android.os.IPowerManager.acquireWakeLock content.objectives
Tries to add a device administrator. 1 IoCs

Processes:

content.objectives

description ioc process

Intent action android.app.action.ADD_DEVICE_ADMIN content.objectives
Removes a system notification. 1 IoCs
evasion

Processes:

content.objectives

description ioc process

Framework service call android.app.INotificationManager.cancelNotificationWithTag content.objectives
Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

content.objectives

description ioc process

Framework API call javax.crypto.Cipher.doFinal content.objectives

description	ioc	process
Framework service call	android.os.IPowerManager.acquireWakeLock	content.objectives

description	ioc	process
Intent action	android.app.action.ADD_DEVICE_ADMIN	content.objectives

description	ioc	process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	content.objectives

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	content.objectives

content.objectives
1⤵
- Acquires the wake lock.
- Tries to add a device administrator.
- Removes a system notification.
- Uses Crypto APIs (Might try to encrypt user data).
PID:4015

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/content.objectives/app_webview/Cookies
Filesize
64KB

MD5
cb7543c4df600f2af58097cce0e334ba

SHA1
83cc92f38c27fdb4fa519b1ce2f37912f24af1f0

SHA256
64c022ae708f94ffde986e105d88f708884de325720bfb9925c4160a6d417233

SHA512
ad51cad0472327bd68aa2d791341cfafed58971752352537bb603ed18b15a3f9185e9150983a28ecd09606e8dcaef6d1c9d93213dd246ef7720f39842eb3d980

Download Submit
/data/user/0/content.objectives/app_webview/Cookies-journal
Filesize
1KB

MD5
b0f554d5b50c121933f8735d329f424b

SHA1
0332933fb3c1f0c330dd6de6c97cbd1085d5feda

SHA256
da24cb9fa571d69c263fb73f997ffcd437efb4d7b8c4eeb55fb332e0fd8836d8

SHA512
ae5ed5a4cc8dcf040cbe2126ae03688bfa85127272ff3a82a97e2e5d126261a1d1b046bc1db768fae8bcc41149adc736974728a89bcd6f4b2f4daac749bcbe3e

Download Submit
/data/user/0/content.objectives/app_webview/GPUCache/index
Filesize
20B

MD5
93027d42b314432c4216e6cfca48b384

SHA1
43448dd8102979c3926828182579691945eedd4e

SHA256
3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

SHA512
a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

Download Submit
/data/user/0/content.objectives/app_webview/GPUCache/index-dir/temp-index
Filesize
48B

MD5
147f14ad75ac3105c99b37683c1ecace

SHA1
741657c7ede0a59f5f1c176adcf0bdd896d22572

SHA256
acf614ab8242369531380984272e88c2126464c337030b0d57241a03f41680d8

SHA512
cb1389ddb7363692c4f011147b952c95226dd43d937cd705443da71b186f6129930dd0e74143dd564d84c3a96c951382ea349b3f61444c58c23f0d602a006114

Download Submit
/data/user/0/content.objectives/app_webview/Web Data
Filesize
104KB

MD5
dc79f9ce5f3ab5270b33e61119dfc959

SHA1
1844bf222a5144b513dcf2fb50a18c011701c647

SHA256
47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65

SHA512
18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

Download Submit
/data/user/0/content.objectives/app_webview/Web Data-journal
Filesize
1KB

MD5
e1570b4db6bd32c50a9146d4e2d69eb0

SHA1
a42ddbd7767622acbbb10c819287277fb8dec8b4

SHA256
54778e69f87dab540ead7bc9b1802b179c9d8b7004aafeeb16a667d687452c9d

SHA512
1d44893fcf0ebae605f4844e59cde71d0cc6405ffd0def909f6e784ad67e461326e9d6257aa03a731f188e0f546ed71e03d9757377f2b1b459f7e71ccd18faa2

Download Submit
/data/user/0/content.objectives/app_webview/metrics_guid
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/content.objectives/app_webview/metrics_guid
Filesize
36B

MD5
3ff08c2c75a3d27a6abc6d85c8e414a0

SHA1
0c94f82ad4a266ce2d25c2d6f2eb4cfa4dd56d56

SHA256
e8c1f00e68605d45dab06ac5a04ad7948fbfcb491d07d728a8bb3695b94538af

SHA512
7dac7c381bbc8b54b4c66c70cf437e230f3b0916bd7b59e261c44b2865d26e6be122933b5ed51e2bc1d8a441b00c554158e28f1c3e5bb1e851cc3c69d5c3f316

Download Submit
/data/user/0/content.objectives/app_webview/variations_seed_new
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/content.objectives/app_webview/variations_stamp
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/content.objectives/app_webview/webview_data.lock
MD5
d41d8cd98f00b204e9800998ecf8427e

SHA1
da39a3ee5e6b4b0d3255bfef95601890afd80709

SHA256
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

SHA512
cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

Download Submit
/data/user/0/content.objectives/cache/org.chromium.android_webview/fc44eb5ee27b788a_0
Filesize
942B

MD5
fbb6f2365bdb72fb976de202fa1003d8

SHA1
89d853f1e9b41d5095308b429bc0070a6e8e2cde

SHA256
1bc28d94ed468875b621f3ca57412fb447efadb0b0d901cf115c0612e8a5a5bc

SHA512
92e01146f1d0e5687083277987e704be65e7b1aca276568922b8b222f7e30b57eede26388bb1718949db9f78cb5abf4a1c84b808de1840b3e36fe1581f260171

Download Submit
/data/user/0/content.objectives/cache/org.chromium.android_webview/index
Filesize
20B

MD5
93027d42b314432c4216e6cfca48b384

SHA1
43448dd8102979c3926828182579691945eedd4e

SHA256
3cda72e67c62e52a342309c44f2cb3b6c1019c7b11822e2f628e48e254e2b41c

SHA512
a52d13cf7f5be196d1e2f135b8a010f80558c5d35e90e7792441d1c976517d55cf1c9587949db69ebef294cc6ef79529a65e7d779964793016efecacd152f70e

Download Submit
/data/user/0/content.objectives/cache/org.chromium.android_webview/index-dir/temp-index
Filesize
48B

MD5
28950a9f4be8565891d728faac109fb4

SHA1
12ffe632565095931922a51ea21cd63a66fbc9d4

SHA256
919f75b7cf556ca25de9e7de783307f61dbf74d65de359ff3b16f111cba07b4c

SHA512
b453c4c35c6401fd7e8f93a36cd2d388c8832ffc1a30d890253d9d58c2a3ff1bad5d2404d501fcb980e7237507a6b242165195a1e88a04c3f24b7c6c0031f5f2

Download Submit
/data/user/0/content.objectives/cache/org.chromium.android_webview/index-dir/temp-index
Filesize
72B

MD5
ceffb926dc31330bb769cb88f0c8b0d0

SHA1
951fa9f082bc976c429d59e0fda3121ffb2040bc

SHA256
30725fb11e850f99d77af184bbdd31e6463340ccb1601f55a2f638bc1e2f3b2e

SHA512
643fa3620fc81932443c0a389341063be5838c96ea6997efaa3b0daab469f041bbf63bf63b2c7a068b6d585b5b1a4d5e929ac521e6850718255e9f39fc8da515

Download Submit
/data/user/0/content.objectives/shared_prefs/WebViewChromiumPrefs.xml
Filesize
127B

MD5
21223e9184445fe043476484cd8cb1f9

SHA1
2b4813f849121d60ba35eb0889080668bb62c778

SHA256
bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

SHA512
be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

Download Submit
/data/user/0/content.objectives/shared_prefs/reactions.xml
Filesize
111B

MD5
3b0598c094f9cc5bb03f56d107aec7f6

SHA1
ca7748d37208b74851cec0d2d249d14a3f3e3890

SHA256
41dd3d2647596a8cb2a70248a931d72da68e836a6b315152db9437eb4a0c4d3d

SHA512
b89ec4ca4adbe3956dec99868e0ec6089de150c4e81e34d4ace237a2a6a44164ef98305620fa9a6ccbf4fe0563871220aeb35f61a7451f509e76024b5b62ae34

Download Submit
/data/user/0/content.objectives/shared_prefs/reactions.xml
Filesize
154B

MD5
f5172bf467b066f9270a36e585ad8b56

SHA1
15eb7340ee8e76dd1b83c33faad7cdf554911f0a

SHA256
d88bcc58679e7a51f84e3436d9b2e747dd11196028f9eccf96cf201bfece58ca

SHA512
cdcc6d63ea17fae08f60d49646bcde967a68f98529f92067bfde69aa4b518f8acd73d6d116d929c29ea2be0efa281b5e73d8bdf48a5984d43d4f888361368c8e

Download Submit
/data/user/0/content.objectives/shared_prefs/reactions.xml
Filesize
197B

MD5
1cea4e8215887dfecf696f6d586e899d

SHA1
1bfcadc8f40767c3b38bfbac3d7de8d4a4a659ad

SHA256
d504b5d5307f2f196bc74483941d2836b5c22678c367381e84ee809a40bb6906

SHA512
fa48103ed07af36f85d7be98f94ba824832fbb067af244d5d4cfe0a4279d667037da1d975920631a2b50a6ba7b332f23692579a1c18cbbee1ae3b908d501a96d

Download Submit
/data/user/0/content.objectives/shared_prefs/reactions.xml
Filesize
267B

MD5
46a2eda87c5106f0b1051a3e7ba866b8

SHA1
b88fa36bc3ddec73b778dab77c6a6c96acddc7d9

SHA256
47635f12ca18122e7081ae6e8d06f964709d8696d53f07d24aaf751ad259b00d

SHA512
e82f8b05f9ac8ec81e8b185857fe8a185747e5b30fdbc212a1123732c94d2da7ecce2ceb1f4ee7d6f59caff7830c5a1f9b76522b3e7e1fb215ff19b7555dbdd9

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads