Overview

overview

10

Static

static

10

a8b3bb8cd8...JC.apk

android-9-x86

6

a8b3bb8cd8...JC.apk

android-10-x64

6

a8b3bb8cd8...JC.apk

android-11-x64

6

Analysis

  • max time kernel
    17526s
  • max time network
    156s
  • platform
    android_x64
  • resource
    android-x64-arm64-20230831-en
  • resource tags

    androidarch:armarch:arm64arch:x64arch:x86image:android-x64-arm64-20230831-enlocale:en-usos:android-11-x64system
  • submitted
    05/10/2023, 18:13

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    a8b3bb8cd8e48cbad66a3fb77f9cbeaafa23c6881187aa46a7ddf11313cbcbcaapk_JC.apk

  • Size

    3.0MB

  • MD5

    265353259d76ca55a91ef55c9f75334c

  • SHA1

    02b2f6203983ba9eefd719b4b2a30c302e15c6a0

  • SHA256

    a8b3bb8cd8e48cbad66a3fb77f9cbeaafa23c6881187aa46a7ddf11313cbcbca

  • SHA512

    4abcc99435e085941cf566b384fb53bfc32c4c6afda832f761f9eadcbba0803962c1844c6b7af6fbe7e1a671541c8647c62fcdf93bdee1a772006d1203f915ea

  • SSDEEP

    49152:LoHqCAe55e3Fd3RP16lDdVP1RDuHdZGJqnfGNm2LTG6/9tBX8pvIHVayXfmZBC6v:3e5YVd3RP10DHP1tqGJqnOY2LTZ9X8vj

Score
6/10
ransomware

Malware Config

Signatures

  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware

Processes

  • com.lydia.route
    1⤵
    • Uses Crypto APIs (Might try to encrypt user data).
    PID:4660

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • /data/user/0/com.lydia.route/files/PersistedInstallation1196490756660891216tmp
          Filesize

          90B

          MD5

          3b8fd33b91a960e0a11ef70bac1c4cae

          SHA1

          482919f7a4250a75dd5a35fbc6d7005b1d7aec33

          SHA256

          929efbe8bbe9322c62e5dcd8ed99524fde4f85a222688b5bf2274e590c93f177

          SHA512

          71b061f50e9c4ae26d8532e1df20273295725aab1cd57ce084d4c318df43dd56c7ba586b93d8fec35cfb2237364293776efed6af5bd628e9475cd0f105236207

          Download Submit

        • /data/user/0/com.lydia.route/files/PersistedInstallation3926735191381035277tmp
          Filesize

          569B

          MD5

          b1e1071d5bdc33440537c1500ec24c68

          SHA1

          8e6a69460cdf93115f92bb59122f4c130eee24a0

          SHA256

          bf19a726a353cd3583db5777c7ee65d2040ba850ea9bcdfa72c96089b3b8c6a8

          SHA512

          6ca157c014c7296f821c26e8a37e2b1f3d110105397a90816d743dd418cd6c84e8f65ce6823f6d56c1dac4323ed409d641c6f9cf5f08a3cefb9c9682b5447a0b

          Download Submit