Overview

overview

7

Static

static

7

da14372d16...59.apk

android-9-x86

7

Analysis

  • max time kernel
    1408287s
  • max time network
    165s
  • platform
    android_x86
  • resource
    android-x86-arm-20220823-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20220823-enlocale:en-usos:android-9-x86system
  • submitted
    15-02-2023 08:18

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    da14372d16a99fa6c4870182c41b3b0149be78f146bc5fd3384b3bc2186bdd59.apk

  • Size

    15.2MB

  • MD5

    bb0d68eb4cd7d8bba8e434f9e52dd3c5

  • SHA1

    77f523d20f242c9008258e01785e57a919dd9b7a

  • SHA256

    da14372d16a99fa6c4870182c41b3b0149be78f146bc5fd3384b3bc2186bdd59

  • SHA512

    10211df4f042a0b2e94f1e9ce831ce47d70a21769276796f11b0162de5913e590271b056e7db90206a8498c5042d398af8d4222a4650c10d1dee92b374ee2ca8

  • SSDEEP

    393216:Z8qTfLRfwzXdf2RD+YqKwzZ6wYEOr9IUKK6OjlS0V/AWz841:Z8qbLR6Q9pwzs9EOqlK6gwE7A41

Score
7/10
ransomware

Malware Config

Signatures

  • Requests cell location 1 IoCs

    Uses Android APIs to to get current cell information.

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • com.vtrvw.xkfus
    1⤵
    • Requests cell location
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4238
    • chmod 0777 /data/user/0/com.vtrvw.xkfus/files/tmpagent/.getRandomChar2d/easyagent.apk
      2⤵
        PID:4397

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/user/0/com.vtrvw.xkfus/app_webview/Web Data
      Filesize

      104KB

      MD5

      dc79f9ce5f3ab5270b33e61119dfc959

      SHA1

      1844bf222a5144b513dcf2fb50a18c011701c647

      SHA256

      47e65f4de08deabfd52ecdb8b0a29c61c482188b92c36182e2112ca0a8f4ff65

      SHA512

      18b8894a7f35df516f423bbdebf1e05ce09eaf4345b139e59e603cadb81f8d1fa20f793438c28e8fd9a64e64f0684223d90ce6f10d3f93cb0c781049a8cff03e

      Download Submit

    • /data/user/0/com.vtrvw.xkfus/app_webview/Web Data-journal
      Filesize

      1KB

      MD5

      9992fd916599d500e7cf15ee3a39f95e

      SHA1

      97c232d8534ecccceb7b423bf0b777d2d961e2fb

      SHA256

      b70cf144a9f36f63ed20dd4b0c0e0e99e05a4d3ae51f02a3448113033b74091a

      SHA512

      3a3baff85894f1acc9c36a6ec9c30c8c4f7fc1517ebc2e9791f91b6003c9c171edb2127f8c3a44bc1e9bae9a0044b485273aa1c050d3840956b382895624f993

      Download Submit

    • /data/user/0/com.vtrvw.xkfus/app_webview/metrics_guid
      Filesize

      36B

      MD5

      6cae2446739800bb38de41d2f4e7d8b3

      SHA1

      485c1047fd9cd4a70477a55b3ae723ebe401f03c

      SHA256

      3743670f45b9f932aa57a91f8c8cc9b34ba451820372d76debd0ba85295e16b7

      SHA512

      4bea5ba23a1408f37ba95db2ea1cb5442ffdc893fa1c58882a88c62d3b86050d2660f1eba7265794f866b1b6a3a345d6327fe12f3e1c9f89795c823165f79b3d

      Download Submit

    • /data/user/0/com.vtrvw.xkfus/files/TDCloud_Control_Cache_Param1
      Filesize

      10B

      MD5

      a7c3f95b6aa07e4d696dd12a4c491a7a

      SHA1

      f592c91942fea284b4803676f8cac2f9511137c9

      SHA256

      999c7b7ce4603a6cd32752a9e12f58bc567c54221884f9ef8b409bc79afad1ca

      SHA512

      cfd78a42cd9617ec81e96af3b1b07e80486dd8497d86ba8decad557531f1064272a3e997c5117c03579108ea8874c8cf175f6730a9238c1c445224ed194af713

      Download Submit

    • /data/user/0/com.vtrvw.xkfus/shared_prefs/TD_app_pefercen_profile.xml
      Filesize

      144B

      MD5

      c5eea404879daf8ff73392524f3cd396

      SHA1

      fd239e8eeb04c5921ebf7774937da586d69e5a03

      SHA256

      c6fbb9511f19e7bff9fb33b515b6a4410afe0c99c0879b2b248f7a34f84aaed6

      SHA512

      1171b169897bc1b3204594330c0ed8ec12f4f6d77e3477aa3331db53a538c5fe633581a81cdc17eb5a4bd013753852db93b1b283a695ba06dc4a3cd93ea301c2

      Download Submit

    • /data/user/0/com.vtrvw.xkfus/shared_prefs/TD_app_pefercen_profile.xml
      Filesize

      197B

      MD5

      34715ce6b3dd6619bc2f20789aafb0cb

      SHA1

      b762736256fed4c238dcf195e82cef65478929e1

      SHA256

      863d41fca05404c500d185ee7995ab34d037e9f5537afc992ea1a51b3a5ab506

      SHA512

      3a704e4897c8a7efd2f5984a10a5a0d55a271aab43c66d1b69db5557235e74de4356e48adfc89b5967272363939157313f20435fa435dabceaeb341d222b955f

      Download Submit

    • /data/user/0/com.vtrvw.xkfus/shared_prefs/TD_app_pefercen_profile.xml
      Filesize

      265B

      MD5

      61e02552cd0d1e10391b0d2f1715e128

      SHA1

      f7f14d40055364b116a370c069a7a3c222837c97

      SHA256

      d3d30b2a04c77e264b5ebc8977dcf163df06cbd2e747e046d8e2b441458ac257

      SHA512

      998faba86e9394ea65f8c0ee92c1d3c1f6a004ae338cc1794c1e722c170178d57fc5ba717e62c2a851e39572ea42830956b5cb0b31573607713513a7b27b637f

      Download Submit

    • /data/user/0/com.vtrvw.xkfus/shared_prefs/TDpref_longtime.xml
      Filesize

      135B

      MD5

      310ceacea331940926a4e0e07210ef59

      SHA1

      5737deda8f5c90855fbbc533363f412af82e7c1d

      SHA256

      228128f32319d46a348213d186989cc23f3799431d69efff02e4ba4157735779

      SHA512

      433d09a9208935c70754175119784833c994ed9896ff3b4928754daa2faa009085a5587f80942c620789fbb969f45d1dca25081816ad199e86c507c7ab95aeb9

      Download Submit

    • /data/user/0/com.vtrvw.xkfus/shared_prefs/WebViewChromiumPrefs.xml
      Filesize

      127B

      MD5

      21223e9184445fe043476484cd8cb1f9

      SHA1

      2b4813f849121d60ba35eb0889080668bb62c778

      SHA256

      bb61b7c087c2ae2de93a7740ff75707342940557146366e92b840284cd9446af

      SHA512

      be21408de0cc643650e5d9ab9057a8f9de88e37fbdc6417cfeba160402ec4cd14fccbc82cbbfd941ecfc0bb3d4056ee61ac199efdc99d647d53e65818835fd48

      Download Submit

    • /data/user/0/com.vtrvw.xkfus/shared_prefs/com.android.launcher3.prefs.xml
      Filesize

      128B

      MD5

      20837fd8daf2a2de8d6c4ccd8e90653a

      SHA1

      7ac08617bd4585151c239325aea243d9eca586f7

      SHA256

      e05f0ae0ee70ef2efac07e999da273b5f506462b67549f9080f6cdf469d70cec

      SHA512

      a4fd7ac1ce847a84fe4f47c2e7079f00b16b86213fe840b70e3a55992a043da99ca6fe1c9a723e709e2ee3985ed3b7c5a299d1cf5b29e8228f3f81d3cbb6876a

      Download Submit

    • /data/user/0/com.vtrvw.xkfus/shared_prefs/com.android.launcher3.prefs.xml
      Filesize

      198B

      MD5

      5cb0f79f329d68334f33e63750d88a49

      SHA1

      85428f62ef95c797f08ec410ba4fe84c91e817d1

      SHA256

      d79335b3b09224ffbb05b0a7d45d12d4bc1f2e7bd9263a7e5377fe3c1bc3604b

      SHA512

      039caa2de53e409b5b0db890149a612fc84bb726c9479aee85027838607d062feb6894fb0e24a2eb400b3917989ebf644153ad4fe83b0bd4632d74d3dac1569d

      Download Submit

    • /data/user/0/com.vtrvw.xkfus/shared_prefs/spUtils.xml
      Filesize

      117B

      MD5

      5e1bba69c1c3be4d667fc79b3bd6c7e0

      SHA1

      3bdf69b0051399fcf8ad0e1a89555a7e2eb6cd95

      SHA256

      cc8d347b44db1d6254d48270bfefbe43c4846fddb6f407fd47840b6e823b9227

      SHA512

      ed9b9afcb810c912b05dd64af7835ec97baf590f014081b41d6cf9194c5f105ea82f6cfecbecc297a3f748c7f663963a545935cf00436a67b01939e73ddfdca1

      Download Submit

    • /storage/emulated/0/log.log
      Filesize

      87B

      MD5

      56abcbffb9f82b452431a899af1b4782

      SHA1

      69383c9031824f8dde432d6b1d8dcc301e21abfd

      SHA256

      07e280fbb4c53d294d5216f248e9cb8a4cccd1cd31376745800d87a9f125e712

      SHA512

      bac1c7db79ccb6f22096d0a3a4b6ee71e63f78b049e198089c8754b0b599d76651491d4fa74460f336e6ce473f35a5d43503782cdd49699b111bd8de2677092f

      Download Submit

    • /storage/emulated/0/log/2023-02-15.2
      Filesize

      432B

      MD5

      694209f0adcb0c1cb7b21894b080293b

      SHA1

      f17f84035cc807c0076181b5fd95ee12455a71b2

      SHA256

      2f3d1214bea4162b440b1efe62be24cd72f536b148ace933eafc137d99ddb0d5

      SHA512

      393a1c5a1902324791369333ae8d0a0c4254b5928833a0bff8f6cef722953b4fc0923e899da8402228b52b97bf59ab1a9a5db522172c8d7d77e67f14477df5cf

      Download Submit