Overview

overview

7

Static

static

7

d4a7d6305c...3d.apk

android-9-x86

7

d4a7d6305c...3d.apk

android-10-x64

6

d4a7d6305c...3d.apk

android-11-x64

7

Analysis

  • max time kernel
    3105421s
  • max time network
    132s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
  • submitted
    26-11-2022 21:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    d4a7d6305c35ef12f294bb8ef3b60d61e65c301907c4b9a91d96bea61156783d.apk

  • Size

    1.0MB

  • MD5

    9f60b79afd2519abe75eca9cc6773164

  • SHA1

    872f08f2a6c349cc7e7efd05ca7f54729f124245

  • SHA256

    d4a7d6305c35ef12f294bb8ef3b60d61e65c301907c4b9a91d96bea61156783d

  • SHA512

    bd8063960f1d5a393add88c4a7e5f17cfa365262cd6b09d9a53d9b76e32e91eb7f283e6ee398f92732a217c9bf37597c2150abd17f528a76f72015f6c87c7ceb

  • SSDEEP

    24576:IxiU2ke4EJuFRRyQfl2m88HmC+fiIEemzzbkHfEezQGy:GiLkerJ8Nd2gmC+fiIEekbSMezVy

Score
7/10
ransomware

Malware Config

Signatures

  • Tries to add a device administrator. 1 IoCs
  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • je.wyddmbiq.ylthk
    1⤵
    • Tries to add a device administrator.
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4003

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/je.wyddmbiq.ylthk/shared_prefs/cocon.xml
    Filesize

    151B

    MD5

    4dd4993b83e0754d269d0624156dbfa8

    SHA1

    7c30565a96b65c71a59dcfd5121a6e9b56b0ee92

    SHA256

    d0a16f9bf232f6d27d33a6b3e77267bc82aa6bb25f1ac10fa43322b7e7c67d60

    SHA512

    2664986c83c783db2b77ef05d0c16b0346ab83a3a67fde5626d1b5f673c90b98c90ce0f0b823fb71a14d43f526ae6450ec187bad92a742689e6c5f0720f12968

    Download Submit