201d1e0492232be2f34bf699a08e516bd4d433a1071291f673a15b846216a7ce

Resubmissions

30-08-2023 14:03

230830-rc5mmsfg85 10

24-08-2023 14:38

230824-rzwcgsdb55 10

Analysis

max time kernel
670861s
max time network
172s
platform
android_x64
resource
android-x64-20230824-en
resource tags

androidarch:x64arch:x86image:android-x64-20230824-enlocale:en-usos:android-10-x64system
submitted
24-08-2023 14:38

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

liveWallpaperPlugin.apk
Size

162KB
MD5

91d33062e74043bb0bd9d5f66b343f3e
SHA1

aa3fab31cf6d5bc7fb1c012ada2b77ffe242a7c0
SHA256

4c3720917d9920cdec450cc85fe2fe3db39bc48cff4fea270914b475fc79f08a
SHA512

be5eb5cdab9e3348f3228fee40172b351a07d2d39ddd9d085593e3d78c13259be62425b4993a40696542902c452f7213a7b92410baf06192051640607389b80c
SSDEEP

3072:QV8ZyGg6GYtzqWn1Vmkv7YVQi5cRVl/51SGHHkmjVw:w8ZLGYtrv7O09bSGHHkYw

Score

5^/10

ransomware

Malware Config

Signatures

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
ransomware

Processes:

com.tencent.qqlive.wallpaper

description ioc process

Framework API call javax.crypto.Cipher.doFinal com.tencent.qqlive.wallpaper

description	ioc	process
Framework API call	javax.crypto.Cipher.doFinal	com.tencent.qqlive.wallpaper

com.tencent.qqlive.wallpaper
1⤵
- Uses Crypto APIs (Might try to encrypt user data).
PID:5194

/system/bin/sh -c getprop
2⤵
PID:5284

getprop
2⤵
PID:5284

/system/bin/sh -c type su
2⤵
PID:5348

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.tencent.qqlive.wallpaper/app_crashrecord/1004
Filesize
235B

MD5
3efa84b0f914f97888aeb29f3d6a4e8c

SHA1
ca51cb60d5bc6d78138a2127769418163f1b6f6b

SHA256
fa50e501aa150ddd9cbe7f1dc30f25954325ca927c06a7a337477ddad1c3a9ed

SHA512
4a4ec4cbe3cf37e919124384d4a5c0e340daecc777300d6616dd094fddd73f86220a382b650afae9482cd05257925672de23f262b5284773885dccd527222fc4

Download Submit
/data/data/com.tencent.qqlive.wallpaper/app_crashrecord/1004
Filesize
58B

MD5
0d210bfb2a0e1f1b4c082a6a0f79de07

SHA1
bb8ed9e364db79d1d9f2fcde3f15091893222faa

SHA256
988722c23d78a46021d0e7ca9deee7aa8bb83288269174ffacb7316f381cca1d

SHA512
536e9867b0df29b15b789f8949be6ab37fcdeccb9d39ded981da7dc2052c9533d0ec0e6f9a5444132977605d372e1463d91bdde41b528ff2ca3f65ab152325c1

Download Submit
/data/data/com.tencent.qqlive.wallpaper/databases/bugly_db_
Filesize
52KB

MD5
d7db8184c73ba0a4c3e10de16ffbc03a

SHA1
842e6a112569d8fe0f8c3e549a93e46774fba9cb

SHA256
29b7b0599f81ec9e9a197b8bf427a8163c0097179037e5594a60f85b10c55610

SHA512
41df396978ae5a50265e9659f36f7494546e2fdc2890ffe3c6d669afb6c31c0497f97210801835b3e40e150f0e97b7c0b872f5bf586f09e2303da20f6bc9ae53

Download Submit
/data/data/com.tencent.qqlive.wallpaper/databases/bugly_db_-journal
Filesize
12KB

MD5
2462785bb841e62de1d008b1af9c0323

SHA1
518601a1af37f30ef082d1240033958d8c2eec90

SHA256
2dd857207b21334305721c4a5ab3dcbac515d75353a3248e6a54078b9e24f016

SHA512
b64032254eb98a69ae21b73f461c5788b085094c222eb4d8142dd96ac444238e796a45a19f3bb16bc61f607cb15a111c706f34532cec9949bbeeb166aa104ff7

Download Submit
/data/data/com.tencent.qqlive.wallpaper/databases/bugly_db_-journal
Filesize
512B

MD5
ca4c4909b951dfc6ba802b3d3d79f4fb

SHA1
5824f2d0715d7eb015224b6f8dbd27e54ec785b9

SHA256
817f2117c732babd071a85f9e57d56d9d9568aad086091ff044b5ebffc7171d9

SHA512
6722d853d8215487b203d08277c395544084bcc6ea348a1c98138a48782978fc625735bed37bca4a573817b6cb753eb9bd60035e4d250be8b46c8e00836c659b

Download Submit
/data/data/com.tencent.qqlive.wallpaper/databases/bugly_db_-journal
Filesize
8KB

MD5
f8ea851719c0b685febe07acf6b9200d

SHA1
874e8f93c83ac614f5ecf3e162754c635533fbd0

SHA256
a0dbc3ca1d2b8a243e292394e9d42e778f13b31c574c9615ac14fbdcb79e5da8

SHA512
adf327d144c9c014a98eec268bdcbecf1733370a13cc22362c588b48834fb150f871b91d7ca3b3299a21e603ed33532a2bc9527da56bcac7e438fa90a7232ca7

Download Submit
/data/data/com.tencent.qqlive.wallpaper/databases/bugly_db_-journal
Filesize
8KB

MD5
5f7799acacc939b973e8e7a7e0c70b03

SHA1
df8574e763b09c0efc61d9ed8bc21a8c502614e9

SHA256
4f48eef47e4e72fea3d814c3baf6e5bf866a84eaea43d11e2270932159c11cfb

SHA512
0b3e4be46fa8cd7a1d0c6dc7fd2b289a5ceee1bdf806753cce465c982b839bb2f7e2ab181557ab8bfa37fe074a48bc74eafba51b24279df5a5762f915767123f

Download Submit
/data/data/com.tencent.qqlive.wallpaper/databases/bugly_db_-journal
Filesize
8KB

MD5
47ef2a4ca122ea7998d010361fe60593

SHA1
938cd393f13cab6630d511670a3007a1f620fa3a

SHA256
eabcb07676346258687b77082c84133ca4beefdefdebf715325714d2491c509e

SHA512
f03f822cbfe2e65a69b5f3dcce9ca36559fbc56c8af9b841ead13ff15f92d18e824684549302d14b58da2ca200c4775be169f63155c3b677de16715b421eaa4d

Download Submit
/data/data/com.tencent.qqlive.wallpaper/databases/bugly_db_-journal
Filesize
8KB

MD5
1ff339de97a78c0fc0ea5d300f9c6298

SHA1
757eead16c623af501c7297040d65364a967d4cb

SHA256
5bfd0e4c53c6a119c01a9edf0c9bcb852057d043cb096bd00130cc26f059e355

SHA512
d6bc8930de9ad00270562311bfba0d2dd8a88bde95cc62db8fa35914552de74f6e4fb39f4654ef5cefb3c92e1507208a61745d5971478e7281df9b2bbb85b254

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads