Overview

overview

8

Static

static

7

8b8ff64964...0e.apk

android-9-x86

8

8b8ff64964...0e.apk

android-11-x64

8

Analysis

  • max time kernel
    3175580s
  • max time network
    150s
  • platform
    android_x64
  • resource
    android-x64-arm64-20220823-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
  • submitted
    27-11-2022 11:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    8b8ff64964045f57dfd28acb57d2676db095479e1fd307ab676eb83fc3bafc0e.apk

  • Size

    1.2MB

  • MD5

    51db43dbd78b0670196b28a1ea66d8c2

  • SHA1

    ea10c6ca0eeb560a3e19af14c8e913273bc813be

  • SHA256

    8b8ff64964045f57dfd28acb57d2676db095479e1fd307ab676eb83fc3bafc0e

  • SHA512

    0c1230077993127c0d652d0da9a32c4a773ef222592f49474a33bbb3f532b438c86725baedac5ae8aa70b8418889d77b967e57b9ef698286bcb090089299b9ff

  • SSDEEP

    24576:oGwAVERDpXhtCUhS0e2NA0z8xx1vFfWrKVR/uFYcNYH+5B21RuxyLApCSXeI34xA:o3AaD/tnc0e2NA0z8ZvFerK3GFYhe5B9

Score
8/10
ransomware

Malware Config

Signatures

  • Requests cell location 1 IoCs

    Uses Android APIs to to get current cell location.

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • org.mygson.videoa.zw
    1⤵
    • Requests cell location
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4602

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/org.mygson.videoa.zw/databases/access.db
    Filesize

    36KB

    MD5

    a71971cb90080e23789540aca2101c78

    SHA1

    5cf212ed2c48948d76363fa155ed01d4a2f41b7a

    SHA256

    539ceb1f6510923e2b56773cc7ed5cf9210f1c8e9b30c7ad453b16b49d1fe2e3

    SHA512

    9579c2391bb6de084429ff9efcd6ec5ea954462847f3b2d668ec353c8d47d8e38f6712b4389988f9b2d8b60ed1ee10315cd6fc42a6c4c9e5975253cc8ee931d5

    Download Submit
  • /data/user/0/org.mygson.videoa.zw/databases/access.db-journal
    Filesize

    524B

    MD5

    132ee7d1efb8c89004ba484ffc00e67b

    SHA1

    26ceba48007706a47a9eefca23c4b3c61abcc5d5

    SHA256

    ac5ea7eeced09b534f5b5abdec3ebfe147ecc0d8e1d071a297b47f827c4e13f5

    SHA512

    b3924a18ad782e8cdd37a9eb1bdcaf83d61d0166bbc23994fd0aba9837251f338baf0b51e43027b9b1ee45ce259f0ebd5c5ee745248930935040140d1d3e0b4c

    Download Submit