57dc08803f554d70c4f27765d0d30a4aa9b377fca5eae26142c0ebc66d2a7a34

Analysis

max time kernel
3697065s
max time network
10s
platform
android_x86
resource
android-x86-arm-20220823-en
resource tags

androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
submitted
02/12/2022, 01:47

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

57dc08803f554d70c4f27765d0d30a4aa9b377fca5eae26142c0ebc66d2a7a34.apk
Size

215KB
MD5

1c6e7fbaddc1a16bccd1a252105f07bf
SHA1

4409f9b401979a61850b9d37129476f00189902b
SHA256

57dc08803f554d70c4f27765d0d30a4aa9b377fca5eae26142c0ebc66d2a7a34
SHA512

5e20cf9019f47cfa135134ae6c893da42f80221e97af8fad9018f45440f044307aece457180432f226db72413ae9b8b9b1ea621d1457a03b99067a9609ab91cd
SSDEEP

3072:MX4zlE3eJ+wGquabbqPC5+kAMEJG8G/GF17ILeeHJWSNe2fXkHPbGDUFa9rYm:MIhQocUVfF86G16pDNPUHPs9rR

Score

5^/10

ransomware

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs

ransomware

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	afdejlql.facbbvhir

afdejlql.facbbvhir
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:3989

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/afdejlql.facbbvhir/app_webview/Web Data

Filesize
104KB

MD5
dc79f9ce5f3ab5270b33e61119dfc959

SHA1
1844bf222a5144b513dcf2fb50a18c011701c647

SHA256
47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65

SHA512
18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

Download Submit
/data/user/0/afdejlql.facbbvhir/app_webview/Web Data-journal

Filesize
1KB

MD5
a9efc747dfc53952145ccc881773bbc7

SHA1
29c4573e2017e1db5b8939580e0d58e2650a119e

SHA256
8fdcee2ed55eebe9fa5d08c6ff95f64de52180c1dc46d426ff123b8a9e6ad8fe

SHA512
2c82f86b36fda3acee447205b97aa993746662621091e4f6eec0f7ae638fb858b6f01f0ab1d1d337acbd1b7141742717ae7179864392e58b9572419d07500c37

Download Submit
/data/user/0/afdejlql.facbbvhir/app_webview/metrics_guid

Filesize
36B

MD5
790feebdc41c3ae42f1e8800e249889e

SHA1
96428b85ab16186c21069782bd0ee23527985f58

SHA256
d728535fb38807c1fb935f40fc058418b1cb99f728a4378a5d40817a764d5e35

SHA512
461dea06ad52abb269b2abd175a7ef7e0792c4998e148cfbc7e66d9fb687645874482e8a01ccb8248104fc290d210897173a3908ee36d6b46d2f2f2d16f1d7c2

Download Submit
/data/user/0/afdejlql.facbbvhir/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
21223e9184445fe043476484cd8cb1f9

SHA1
2b4813f849121d60ba35eb0889080668bb62c778

SHA256
bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

SHA512
be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

Download Submit
/storage/emulated/0/wss8.dat

Filesize
64B

MD5
22122066fd5244f8cd95bf30949a0fa3

SHA1
0d4264c97d61a1e0e02b20d36f8ee6d80924ecd2

SHA256
86c130702baaba34ce7a676330e4810c42aa1e253a486500ea6253b739ae77ef

SHA512
775b0ff987e233b4378c43e29f3d1509a5ea7f0fe2118912d3ca2afd483a9b116577f0ae982a6dcc7f2c519c41e102ba44e0330743b508f25c1c80b95017050a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads