Overview

overview

8

Static

static

7

0b72c22517...ed.apk

android-9-x86

8

0b72c22517...ed.apk

android-10-x64

6

0b72c22517...ed.apk

android-11-x64

8

Resubmissions

22-11-2023 16:15

231122-tqbyladf25 10

06-02-2023 11:15

230206-ncz6dadf55 8

01-02-2023 07:34

230201-jd4sqsec2s 8

Analysis

  • max time kernel
    199757s
  • max time network
    159s
  • platform
    android_x64
  • resource
    android-x64-20220823-en
  • resource tags

    androidarch:x64arch:x86image:android-x64-20220823-enlocale:en-usos:android-10-x64system
  • submitted
    01-02-2023 07:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0b72c22517fdefd4cf0466d8d4c634ca73b7667d378be688efe131af4ac3aed8_unpacked.apk

  • Size

    7.2MB

  • MD5

    ec9f857999b4fc3dd007fdb786b7a8d1

  • SHA1

    3fa48a36d22d848ad111b246ca94fa58088dbb7a

  • SHA256

    0b72c22517fdefd4cf0466d8d4c634ca73b7667d378be688efe131af4ac3aed8

  • SHA512

    51d9965e08fa3f5cd8850df3f2dd8503c47ce9f3668b2ae90d3560cc16acd0d4d1b3bbed651d957bc41ea7595a527a00b9c600b3726faa6095af380019e3d1e0

  • SSDEEP

    98304:vDdInEpAOdLl2DfGjOmP34z09nmw3xAZMV8JiDQeZgUGdh0fr33dmh++0oEHi6Pz:5gE7tf3u09nmiOZmDid9h+CFZMXmwfXR

Score
6/10
ransomware

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • com.rduzmauwns.jieliysagr
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4725
  • com.rduzmauwns.jieliysagr:remote
    1⤵
      PID:5062

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.rduzmauwns.jieliysagr/app_webview/.com.google.Chrome.vLwQIY
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.rduzmauwns.jieliysagr/app_webview/Web Data
      Filesize

      112KB

      MD5

      b663831f8cc130493476d94f2d7a5330

      SHA1

      043a1956ab8e40821d67043f8a9110a8eb36fb93

      SHA256

      c109aa8bfc364d5fd0756f1c9d35ee3d6df31325061ac70d8469f28cfc882ab7

      SHA512

      e8ee923192cdf16318febdc23362f3eeaf5c914b923f80cd3a91a2e83e94bced54460d4ef1e54accc26a7d54b89e2e10c00097e60002cf6427298dc5f18fed16

      Download Submit

    • /data/user/0/com.rduzmauwns.jieliysagr/app_webview/Web Data-journal
      Filesize

      1KB

      MD5

      3c60787b74b8537ed2ae29f7d12ea684

      SHA1

      226f23446001cafff3f0122f2582a3dec6b50f2d

      SHA256

      5625d23599a125e8b1d73f374ebb71623d8904d597488d6569a485df569fb751

      SHA512

      90dc7c9b7e1744cb3470bf5f235c1a767d199a6d3ecff054f47e04a208d2bac0d0097e706477445b0a2e21c014e1cefa8d95ed449d1022f57371fb5043705dc7

      Download Submit

    • /data/user/0/com.rduzmauwns.jieliysagr/app_webview/metrics_guid
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.rduzmauwns.jieliysagr/app_webview/metrics_guid
      Filesize

      36B

      MD5

      3fd6ab58db33dd7f062e4f04fe03779b

      SHA1

      ab3f3fe1a551aa70edbc9985926d7e07b0c7fcfb

      SHA256

      1c43b3debf82d9e0dbd847de965c82b8da23d3173770e7b11441d72e250cc92a

      SHA512

      1785d22d233eefe1437fdaabfd5883aa8e24d3986d9ee65d78b5680db9a896aa95634a230796d887ce53bd8e504ddf7e4bfec2fb4d0ab63a4e0be7ac02cc2109

      Download Submit

    • /data/user/0/com.rduzmauwns.jieliysagr/app_webview/variations_seed_new
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.rduzmauwns.jieliysagr/app_webview/variations_stamp
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.rduzmauwns.jieliysagr/app_webview/webview_data.lock
      MD5

      d41d8cd98f00b204e9800998ecf8427e

      SHA1

      da39a3ee5e6b4b0d3255bfef95601890afd80709

      SHA256

      e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

      SHA512

      cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e

      Download Submit

    • /data/user/0/com.rduzmauwns.jieliysagr/cache/WebView/Crashpad/settings.dat
      Filesize

      40B

      MD5

      0fae76bce54cebfdba760ccb6b3cdf28

      SHA1

      78ea14c627b6945688124856d0c81e376831da15

      SHA256

      b8685a3b4f77183631bd6c214d94116d5ced0a5a16272a8bb2a20f8e15560b4e

      SHA512

      974fa5751b13afa86f2f9c191f416f483709ad2b7853c9e8057bd77ec9d9351996b5b94a0e40b670b1cfe32ca8747442c4b99f5a1d1e12ddb46298bdb118b511

      Download Submit

    • /data/user/0/com.rduzmauwns.jieliysagr/cache/org.chromium.android_webview/Code Cache/js/index
      Filesize

      48B

      MD5

      6d7d499960179766cd4261d12dacc411

      SHA1

      e6f8553b0015e12b23cc551afe98763f3b1c9bed

      SHA256

      c96ac03cfdbc6f4c1bdcdf764f1a6573f852e7aae5ef405969516b93ed271182

      SHA512

      6526c668477a01a850b8757b77dd3e7be27ad1991f5cf777685efcb03a21f31b71f6eae00f326931599baae4b16360e33e3d0f2894f1b2c1753391df02a14547

      Download Submit

    • /data/user/0/com.rduzmauwns.jieliysagr/cache/org.chromium.android_webview/Code Cache/js/index-dir/temp-index
      Filesize

      96B

      MD5

      1f046550535ad40de5d391a5371a9489

      SHA1

      e746ace8b4e76911bdce82a031de6d9c4d510b2c

      SHA256

      217fdd4304f47487801db0f31f2b2d7fa512f57454897dd9c6cb750efc090c60

      SHA512

      248ec6ca314ce9ab83b489978169d3d9a2d8581bd99caf87a345f8d9cf95dcbabad92541819f28d4ede801cff2b7aa306c59659edbbc7959e974a03f4d46f0bd

      Download Submit

    • /data/user/0/com.rduzmauwns.jieliysagr/shared_prefs/WebViewChromiumPrefs.xml
      Filesize

      127B

      MD5

      6ef709b8536878951e87c29a1518fc2b

      SHA1

      24376c70b00152501b3d98df61fa7db435339172

      SHA256

      10b13d894f36d4391fcc31313a244d5f6cd89c8e8c03347282e281c4af13c0a6

      SHA512

      96547eff6779251a5c4941e812ec56ed273e9270265005723e1f2864688b04f3b852a90145fba4ea0ddf1e02b39d99e33d28f761b07a04d46e0e4257d8909ff9

      Download Submit