0f4d9c85961d26f23db05baafa14f6882f621a5440ce20ebc12da709be59d22b

Analysis

max time kernel
3703486s
max time network
154s
platform
android_x64
resource
android-x64-arm64-20220823-en
resource tags

androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20220823-enlocale:en-usos:android-11-x64system
submitted
02/12/2022, 01:47

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

0f4d9c85961d26f23db05baafa14f6882f621a5440ce20ebc12da709be59d22b.apk
Size

225KB
MD5

3da609d88fe839a1b018c75bcda3b3a3
SHA1

60268488e200fe1180d910f431f187c324b92fb6
SHA256

0f4d9c85961d26f23db05baafa14f6882f621a5440ce20ebc12da709be59d22b
SHA512

eba08564ce10adfc9526fec41d74c8801b6b37730337fa9ef79727d0d2ca3db15b637ee529e4c5b62609decfd0ed391116ae90733dca02991cb4f9236e340d18
SSDEEP

6144:4kBZ2zPIe0t4VfF8b/Tp/ezOM4im4m7mhmP:4UZ9eDQ3809vKEP

Score

5^/10

ransomware

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs

ransomware

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	ngjvnpslnp.iplhmk

ngjvnpslnp.iplhmk
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:4401

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/user/0/ngjvnpslnp.iplhmk/app_webview/Default/GPUCache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/app_webview/Default/GPUCache/index-dir/temp-index

Filesize
96B

MD5
d0a801b4149a398689e6bb768823801b

SHA1
34873d6589dff844b626d2c283c3747a52342d40

SHA256
cfb00662bab58bc3ef8c25199df3a750dc775c353c2d8c760d8cefbc26d853eb

SHA512
01539bb7a1e6f74fc8c9d588056b6b4fef038d7a241b77d550b0d3995c4d923a826429f4a2a58ab1a6949bc27693da368f384f7688bd66ec5813343e4484a580

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/app_webview/Default/Web Data

Filesize
120KB

MD5
a48cd9324b1f8754b07f00d863b840f3

SHA1
11c6614775b35a58f440971dfc87c8aaac6d6173

SHA256
8859a216183793485d4699bf69d7ed96904679834188d07b9a70424d47eb1420

SHA512
35fa712f0af4a5eeed7e00e4e59ed5027dc6609d268462fe79d92043be9ae0c5961ce9e1d2f64b1a196c9b6aa6242b8b83817b3ee4c1058596c58a99c45478b1

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/app_webview/Default/Web Data-journal

Filesize
2KB

MD5
21aec6bd2e559584b46dc742f675f024

SHA1
f6b9d180d391446c726b7a75cbc2fc5dccdb8098

SHA256
67c474361d81f19d3b87b4d30509464b90e4aefb01e14812c374aa65bf4e0f38

SHA512
dd442ff99b5394448c140c35a2a4d825d5ed51069971bcafa0afc6e1508480fa6d3b48efe9515c98585bb78d656424a81bddaef3d77240862d4b8d2165ee687b

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/app_webview/webview_data.lock

Filesize
23B

MD5
70bc0e9d3796b5327f196b27b95e2117

SHA1
acb862994fdd66f25add234f94b4713cd30a6f35

SHA256
66b466c428f5f29275f6e8ac1a8df26390f528141e15b305783cb41f2731c15e

SHA512
0381f067196b1cef1793666b42a9e6c2506ea9bcee399b11380fdb6aef73857e205bed94fa29ab6d6e986a33f1015b5206f442b548516d2d29718de1afd8e612

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/cache/WebView/Crashpad/settings.dat

Filesize
40B

MD5
99d03aa2a2032d9a31fce49b3810cd93

SHA1
9586851f1ff1991df4bc14614585c6fee0e4f655

SHA256
d2880d23132e721482189a8f8ac49c02d47f0b791fca711290cc62bbc828c9d2

SHA512
2b668944ecab4243e21c6c6bb9f57e444f9e82280294c7b3c120376f9c6d011ba6aeac46a1eb3b6e1b9710a0220467064813f73debd8548daebe9b8e124262a3

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/cache/WebView/Default/HTTP Cache/Code Cache/js/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/cache/WebView/Default/HTTP Cache/Code Cache/js/index-dir/temp-index

Filesize
96B

MD5
08dda7ebd80f280d150fc955aff31c6b

SHA1
58d2bf29e00955561be1da340799ff36a30e303c

SHA256
8e5ca19845561d2505e2a146f433ea076e181280b282eeba13c02c7bf5c2a0aa

SHA512
b4116f5a7c62c2e02d2aaeecb94767adf51c22484fb7388c52e1d458e8892a8cbe7d9a4737a103422e8faa37e614fe2c2e0139baf80b09385bfb14bd88b57385

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/cache/WebView/Default/HTTP Cache/Code Cache/wasm/index-dir/temp-index

Filesize
96B

MD5
c2a5efffcf3c80765c692ecc6e210430

SHA1
aefc8b3dbe442559b77577f5bd748b76235694d2

SHA256
a4093b1cb080be3f3bd5d4a278d6b0579d1dc0da6acfbf25e3e4d755760338f3

SHA512
496b2818fca72ae5f0b526538f546edfa3a41cb248cb12790d8b3b4e811b23da2274a6fa1b25cf43be27967f425aebbf3e0d56e03610c407d2db68075d4b2044

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/cache/WebView/Default/HTTP Cache/index

Filesize
48B

MD5
6d7d499960179766cd4261d12dacc411

SHA1
e6f8553b0015e12b23cc551afe98763f3b1c9bed

SHA256
c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

SHA512
6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/cache/WebView/Default/HTTP Cache/index-dir/temp-index

Filesize
96B

MD5
b1df8aef10c26ba3e270c3d7e8453eca

SHA1
312d010fe8ee58f17eacf6dd6764ad343c042f4a

SHA256
74fef10b6ff06368fc8599a5fd1eca8e67faa3c3e9817d843d21a4b283cedd9a

SHA512
e65cfb631ea60ffe588286b0f6cac1b3eb610ecb489c42d55167140c3ccaeb25c50466623601121a671095de9ce92abcf3b2391d62bea3aae221f0f933ea7a4c

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/cache/WebView/font_unique_name_table.pb

Filesize
57KB

MD5
f080fa2a56ab5479d58063e5ea871447

SHA1
4b3fd57a98916fa5784305b76ba30af26b5253d9

SHA256
0aa374bc456330fd1b5daf18d25b4bb8e2df1998dfa85466f2c31843ff56e815

SHA512
8aee3186a95b389d39882620b7c4199a29aa50580aa98a381b2931a934de6406943c89d4d00ebeabff21e2b03b4a4adcc01e37e32a2335c4838be24bdbf61936

Download Submit
/data/user/0/ngjvnpslnp.iplhmk/shared_prefs/WebViewChromiumPrefs.xml

Filesize
127B

MD5
97ccd9a2b2063143df56b6937f961ca4

SHA1
5e78a91ae5df289ce83443cb7d5589dd3504fb5d

SHA256
248ff7928128015b1cfe3e6517c8f9b8c9511bfb8c8baf44fc1370640eac61fd

SHA512
86c05a5bb3d7eedea390664796966e9e5a5bf846c85808da54407788a76b3ee25b91428242a1e76d8765bfe51e1ba3636617fbab6e7dbb39fcc433e07c3fcd3b

Download Submit
/storage/emulated/0/wsset

Filesize
18B

MD5
4e0b88cc6c011977206b91d1170d0d86

SHA1
7c1fe55b144c23d588ee393bb9a64a5f632cc648

SHA256
0d2103c21aa02c206bba61f07d8b1109899f84fa5bbde3c5c0bd6a0142d15df0

SHA512
ef7d49a623be7a49c168d3388a9d1af845bc37531bff616452ccc71dad75b936b9973a93dafa8c83df1d95439b3bbdb10f7ff2b92cc9dbeb258ab1d206424534

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads