ad8646ead951d17bc25e7966b4c2f5599492717bf962b7fbb4af50f852650bdb

Analysis

max time kernel
3148324s
max time network
153s
platform
android_x64
resource
android-x64-arm64-20220823-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
submitted
27/11/2022, 05:06

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

ad8646ead951d17bc25e7966b4c2f5599492717bf962b7fbb4af50f852650bdb.apk
Size

2.3MB
MD5

a3ca4d30368631fd6395cbffd78335c3
SHA1

c7d0f6ae86ee61ba605fb7ee6598a2419d26be9c
SHA256

ad8646ead951d17bc25e7966b4c2f5599492717bf962b7fbb4af50f852650bdb
SHA512

9ab1197b2fbdf8a7bf992a4d0216d605f0d4a2a24fce1646e4ec661bcc3785c763278f3fc02a0ae0df70143625a0c7509909a65827e1d93435a569e89fa6c62d
SSDEEP

49152:vdZJPXzkfYiMSOThlo2GyUhNCudIOdyqMsNW55T4nHNlS6Ea39+:bJ/zkfYivUUhNC8IObMsNWbTcNlS6/U

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 2 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/net.lazyer.frozenbubble2.lt/app_lyhtgh/plugins/com.lyhtgh.pay.ltplugin.apk	4404	net.lazyer.frozenbubble2.lt
/data/user/0/net.lazyer.frozenbubble2.lt/files/uu_data/TfwdHX6qHv0AkshSW_kmmg==/app_code/com.yt.uu.apk	4404	net.lazyer.frozenbubble2.lt

Reads information about phone network operator.

net.lazyer.frozenbubble2.lt
1⤵
- Loads dropped Dex/Jar
PID:4404

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/net.lazyer.frozenbubble2.lt/app_lyhtgh/plugins/com.lyhtgh.pay.ltplugin.apk

Filesize
222KB

MD5
b5fd12a9cae0b3e769b9e7f1c19d3e06

SHA1
e72fb4efcba19e2d01711468083d7b4a11fafb12

SHA256
4cf8cbddcbb64e619287834a0c7ea8bd881542f15162fbf63e600be46f276aeb

SHA512
58c0e5e3db059cc3b0b213d248df7c9c11cc26f195af3dd4c5593e74ab71c0a9f295b65a5e6bbf12541dfee68e52f38a364048ccc6ae1e6f16e98f3b4a1c296b

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/app_webview/Default/Web Data

Filesize
120KB

MD5
a48cd9324b1f8754b07f00d863b840f3

SHA1
11c6614775b35a58f440971dfc87c8aaac6d6173

SHA256
8859a216183793485d4699bf69d7ed96904679834188d07b9a70424d47eb1420

SHA512
35fa712f0af4a5eeed7e00e4e59ed5027dc6609d268462fe79d92043be9ae0c5961ce9e1d2f64b1a196c9b6aa6242b8b83817b3ee4c1058596c58a99c45478b1

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/app_webview/Default/Web Data-journal

Filesize
2KB

MD5
6db3fe44c702f487908363267cd02991

SHA1
80cd3e85287166a0a1b9dccdcbcbf7ab1013ece8

SHA256
613a4c39a133f79679b6992f6e8605b25ff9783266f48f1d876915a0cb58251d

SHA512
993aa3f9558fa6804841350eefc916843d1b8f414eed662470c8f63f831a77cf28d749f79e4d803b0154ac1df0c0c4b860a3c8677682d47a2bf12f86f3bc5b6d

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/app_webview/webview_data.lock

Filesize
33B

MD5
0ebf4686d5c45b75f7f3648c8c1cddd2

SHA1
e7cda78894962f9284990eea6932eb035f5b7969

SHA256
ddd968623048760a2503a4d6165c93964713be8170e0fe718723bda5baee7d2b

SHA512
aa0e16ab56f013e0c0a4baab90f6e4c63c590e9a285d3bc4556e18e7fb39975893cd2db3b7623bec1fe2507ed2362dd53faf4af48f2d809b0500a1d86acadb47

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/cache/WebView/Crashpad/settings.dat

Filesize
40B

MD5
79d227250933122e2a762748f3608c0e

SHA1
b61e1b2e15db7a777448b1ebea380d18434e7d24

SHA256
5964c8ee3f05fa6740b48fc5080cc382d17fcf8e3d104adb8235ef8e158f7c9a

SHA512
c7592d65b49041f228cf24ebea5b281ec3e5b3f6f05b05885fb02cf37d4ac9c83533c542e86475a4341c08c771f62f23badfc7c9147e5adae757ebf98128fe1c

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/cache/WebView/Default/HTTP Cache/Code Cache/js/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/cache/WebView/Default/HTTP Cache/Code Cache/js/index-dir/temp-index

Filesize
96B

MD5
4efb6a2efc9590c76f4b03dc864f6921

SHA1
0154105b005edd1ab915290aa219eaaf8ef54c20

SHA256
829984c4384d8ec4969145d15a8241e355517e9a4d5cd6bbe1a627594d88e97e

SHA512
c8c889049254f95518ebf71b120321e6e8b0febdaf2aac893f9e0129457d6f6c5ee519f55ea7c1f04b098438cdeea2fdb919e6d1f806817810c95c3c8a762111

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index-dir/temp-index

Filesize
96B

MD5
a6ac4d485877758c926fcbd2b2d6cb01

SHA1
3e0f402f50998abd224c013dc38f38e9805d17a4

SHA256
9fcea51f20498ca92b1876b71326565530e40bd8c50da47b06db3564badd239c

SHA512
2849214cd94a9afb715a589449a1eac6b52bcdccf360a90f30f946a78326e6fa41122c2dcc9de6599b9961e6b0d27d691412e7fbc4251b05de2fa085b22b5423

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/cache/WebView/font_unique_name_table.pb

Filesize
57KB

MD5
f080fa2a56ab5479d58063e5ea871447

SHA1
4b3fd57a98916fa5784305b76ba30af26b5253d9

SHA256
0aa374bc456330fd1b5daf18d25b4bb8e2df1998dfa85466f2c31843ff56e815

SHA512
8aee3186a95b389d39882620b7c4199a29aa50580aa98a381b2931a934de6406943c89d4d00ebeabff21e2b03b4a4adcc01e37e32a2335c4838be24bdbf61936

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/files/uu_data/TfwdHX6qHv0AkshSW_kmmg==/app_code/com.yt.uu.apk

Filesize
288KB

MD5
09da68a60e91186b07ef3fa9454e8ae7

SHA1
f69895f441fd176d732e8287d9e8ce09dddf2067

SHA256
c6b972c61e266c09727156292809a38d55d73e00a9d19127c19c525986a465f5

SHA512
059ae4e4ed457cd779aa086dbc523f8bb4dc891e0e76d4d7b6108269dca4bdcb25bc409089c3ae3fdf2166b78366cd77823e3067651a83cd90e20b57120ce2ce

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/files/uu_data/TfwdHX6qHv0AkshSW_kmmg==/app_code/com.yt.uu.apk

Filesize
393KB

MD5
28a543bb8aefc7e8030301213b9cc60b

SHA1
2264761aa3020c5851e0aeffacef92e363e89840

SHA256
a036b60aee85c8375f5c40857e9e3eb0c5f77b4d022a7e7897ddc5404df0280c

SHA512
463a5ef28a122637e84f1b570916a33c5f093e05579ef4bb7a45d1c4834c164b70e4b57b3869c391e658481f2c57ae51435969245ea41eb5070867666fa6cee4

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/files/uu_data/TfwdHX6qHv0AkshSW_kmmg==/app_code/lib/libuu_xx.so

Filesize
11KB

MD5
39b6ac5154df77bcc92c9cb4c76560d0

SHA1
b985bd345461490ee6c62548a87d648413faccda

SHA256
ab50dcbe107ba99a5065f674f1b4b48bf3d83ff3f0b256e68c502ae483dc72f3

SHA512
cb1dc48f50d9ed016f75b03917e9a66d2a2a9ac751e069063a9cbccc8c76f5c32223795c77aeadfc21989d700fcedd718c9c70e878a8a3962e1152bbce005e02

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
97ccd9a2b2063143df56b6937f961ca4

SHA1
5e78a91ae5df289ce83443cb7d5589dd3504fb5d

SHA256
248ff7928128015b1cfe3e6517c8f9b8c9511bfb8c8baf44fc1370640eac61fd

SHA512
86c05a5bb3d7eedea390664796966e9e5a5bf846c85808da54407788a76b3ee25b91428242a1e76d8765bfe51e1ba3636617fbab6e7dbb39fcc433e07c3fcd3b

Download Submit
/data/user/0/net.lazyer.frozenbubble2.lt/shared_prefs/uuid.xml

Filesize
189B

MD5
d5158c1f3f2c4867f7c90aecab009895

SHA1
ab1f32c7e975c6ecd32963946c6962fd8b5f05d7

SHA256
375870403ff73ca6b8012f4c13ad7c566535edc888de1b0701f119fac44fad00

SHA512
e5ecac1a0594bd5e97311adaf5b8d5a75c605b4f2e5e8ed6922509b20b4b5812d3edd00a75649e0c5ec967d5ed4cfce6ded3ef425000b29aed1d3426392daec9

Download Submit
/storage/emulated/0/com/android/system/uid.sys

Filesize
85B

MD5
65ea58603983866fc0e46a4a4b1c4b99

SHA1
119ff80357392e4660825f9ae56f9b35e2adf1ee

SHA256
e373e874aa972c2d371b08d8af863ba031a6f2a4f2f5317e7e60a7efd5891752

SHA512
abe40f880ac6df8fdf4d797fb930e0a9d2017a4a5168ec572b1d10063d98625da36625eac573a87d5543e5a9fa4718787dd1a5d2845d80d567b2f1f5b561c29c

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads