7f335faf40b1e130e4baa81f2eb408968da73c020e5b86d9034c87fd6faccdbd

Analysis

max time kernel
3171866s
max time network
154s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
27-11-2022 11:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7f335faf40b1e130e4baa81f2eb408968da73c020e5b86d9034c87fd6faccdbd.apk
Size

2.5MB
MD5

e8a5ba4d5a2f988d4298dbd8920cf422
SHA1

2b7ebebfe9721203aa5ec18e291360bad696531d
SHA256

7f335faf40b1e130e4baa81f2eb408968da73c020e5b86d9034c87fd6faccdbd
SHA512

5d1a5b7872d7110a798a094b0f66367f2f775bd2b17ae155248af1ff41d0352d411bf7627c556310d4b1d4e4138cf5d52d36f67398a09a41737bce12013d9295
SSDEEP

49152:TNTjtXZyPppEFXPE0gKyqaaXdgPPFIV+5LlJ/V5UkBlswPVPWTJhpB9:ZbZRCqaao5LlL5vlxgfB

Score

5^/10

ransomware

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs

ransomware

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.xmf2.spmc.zhiyou

com.xmf2.spmc.zhiyou
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4109

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/com.xmf2.spmc.zhiyou/databases/Data.db

Filesize
32KB

MD5
e73f073de87ca2da6fcc8ef8d4e0ae22

SHA1
ee7568f5a3e9a3c5b4083e36937606ad41fde384

SHA256
44e9e789d3f7e63950690d0586a88abe9780bdfaac76d88c6ae558031355fa82

SHA512
c2d8ade86639662484f4a273e3864c372352e10417cdfbcd18560a168efaaa6b28f1d5300be6f72d120fc4044366bfc4fbd536f1fb06ab925ce688a2a691f343

Download Submit
/data/user/0/com.xmf2.spmc.zhiyou/databases/Data.db-journal

Filesize
524B

MD5
edb097d09d73273b5b883ed0af1f42c4

SHA1
c1b1b04ba7388534b2030414010aeacefb5386ef

SHA256
a1f4a11c69909b94edea583b0b85d21b991474def48acd84442c09f4c9f69277

SHA512
be140826082d495936d9b99be140e30c9f00fc1571d415bf27a02a92fff8b53d7122f7e70cd30a893b92b62a612c666c065a7727e46aa55b4199b6a5e93c0d8e

Download Submit
/data/user/0/com.xmf2.spmc.zhiyou/databases/Data.db-shm

Filesize
8B

MD5
7dea362b3fac8e00956a4952a3d4f474

SHA1
05fe405753166f125559e7c9ac558654f107c7e9

SHA256
af5570f5a1810b7af78caf4bc70a660f0df51e42baf91d4de5b2328de0e83dfc

SHA512
1b7409ccf0d5a34d3a77eaabfa9fe27427655be9297127ee9522aa1bf4046d4f945983678169cb1a7348edcac47ef0d9e2c924130e5bcc5f0d94937852c42f1b

Download Submit
/data/user/0/com.xmf2.spmc.zhiyou/databases/Data.db-wal

Filesize
40KB

MD5
5006f1833eb68ce667d6bfccc4f2e96c

SHA1
ce125ea518b147087a7d9756f1e302908c05b143

SHA256
e99317fce1939f6c99263576827c1fda17c62bbaef49145596e66ad13e8dabcd

SHA512
45e0cc1a0e4b8371b35a731b485ded11ac0d363dbd492f1b73315dc575af6b23b9f5c3a37611f99aceb4f9c1583108a0290167a5083328ce95afaa39780a7449

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads