fced755c36fdf49cc5938989c1aea1b142506ec0f1b83abb9f49d8357c6f886f

Analysis

max time kernel
585542s
max time network
158s
platform
android_x64
resource
android-x64-20230831-en
resource tags

androidarch:x64arch:x86image:android-x64-20230831-enlocale:en-usos:android-10-x64system
submitted
11/10/2023, 17:13

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

Ya saben qué es xd.apk
Size

4.1MB
MD5

cc4b65a43e73bd2d9a72b538dee4d480
SHA1

64eb5fed38977253aacdbbeffeeb98d82ce973a4
SHA256

fced755c36fdf49cc5938989c1aea1b142506ec0f1b83abb9f49d8357c6f886f
SHA512

61a3bd38dc4b587692d40ece35ab3be14bd7a38f994dfb5725cf298429e948725e0758fbeb740cfd6c9281667f67bc8336f4c2f6aba4bc32ebdc11f36b0cb6dc
SSDEEP

98304:LZHaj8bfrZ2acqf2FuiKt14rdz6Vrh0CD5LTyg:LZItac6/iKt6rAVrhblOg

Score

7^/10

evasion ransomware

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.kimcy929.screenrecorder/cache/1582435991586.jar	4966	com.kimcy929.screenrecorder

Removes a system notification. 1 IoCs

evasion

description	ioc	Process
Framework service call	android.app.INotificationManager.cancelNotificationWithTag	com.kimcy929.screenrecorder

Uses Crypto APIs (Might try to encrypt user data). 1 IoCs

ransomware

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.kimcy929.screenrecorder

com.kimcy929.screenrecorder
1⤵
- Loads dropped Dex/Jar
- Removes a system notification.
- Uses Crypto APIs (Might try to encrypt user data).
PID:4966

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.kimcy929.screenrecorder/cache/1582435991586.jar

Filesize
9KB

MD5
e8e0527a01aefdb89afd2c508f131da1

SHA1
f1103e6b260c657ceb3d95f1b023af3fda8b133a

SHA256
f809447486f89fcaa74f87e06d126d103d37eb2b3157e88f2c06d989b2c284ce

SHA512
fb53683a83f1068d0f94567b156e6a8910c45b1b5f33db919f7e0b9c55eab28507a235ef76d44d5b549599ea3b54dbc00496a633339d276a80f395da938d6d34

Download Submit
/data/data/com.kimcy929.screenrecorder/cache/volley/-515249652-975763097

Filesize
1KB

MD5
0de29567e3184014ad2fef855560fcc6

SHA1
f6681c6368b61bba17736960dac4a5f4bf08e681

SHA256
3adb9fbc662b1beb2082a1f91412dc46fcd082b4d7a801f479f29088d4ad7cd1

SHA512
da19d0f5e6139f7c47a32b1075915519658e24cabd1d7f6a1ffb864c39b098061bd3b7e955f7c29df6abc9e8271f75c0f98bafb1fb4dcef8fd61130835673083

Download Submit
/data/data/com.kimcy929.screenrecorder/no_backup/androidx.work.workdb

Filesize
4KB

MD5
f2b4b0190b9f384ca885f0c8c9b14700

SHA1
934ff2646757b5b6e7f20f6a0aa76c7f995d9361

SHA256
0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

SHA512
ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

Download Submit
/data/data/com.kimcy929.screenrecorder/no_backup/androidx.work.workdb-journal

Filesize
512B

MD5
d0a52d5e93304796ee7072a736f85470

SHA1
571de51ead8d5f110a30cce3be9245f4157ddb9e

SHA256
8039ec319193d0fa2d69636163ce8795c9522c32bf05fd1f7404a3239b433b01

SHA512
d0c9b12e377c659eff85b0a55b0b25c3cc324d440b8dfb7df3fbba678647913d54f29c54081c3718da6b8ed61c75cfb0c5ea7515f2d7a8f2e4d31666eccfdbfa

Download Submit
/data/data/com.kimcy929.screenrecorder/no_backup/androidx.work.workdb-shm

Filesize
32KB

MD5
bb7df04e1b0a2570657527a7e108ae23

SHA1
5188431849b4613152fd7bdba6a3ff0a4fd6424b

SHA256
c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

SHA512
768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

Download Submit
/data/data/com.kimcy929.screenrecorder/no_backup/androidx.work.workdb-wal

Filesize
16KB

MD5
0ef48c387d7da65885aa4968180561f7

SHA1
f25e521ed44a27821cff0b51a51410b08108b5be

SHA256
a99645f01204d42f145edd569e337b95970b55e380db595130dc3d6013d331a2

SHA512
13e4aed452dd0c7ddebd982b6b27eba5c8c31a3eb72b2dd1f6f53724dddeec2879a8f932fd5263301dedc5af4098a6d3a6ec88d6fe78ecf9d034407b3b09f340

Download Submit
/data/data/com.kimcy929.screenrecorder/no_backup/androidx.work.workdb-wal

Filesize
108KB

MD5
f52d9695458d71d8408c10c5e7a9a593

SHA1
b243e455f2d9d0e85ed7565d6fada297d852d53c

SHA256
0afa5a899561b15568bf1851db12bba9ad32f20cdee4056272e5b024f110194e

SHA512
ec0ad62df4be17a089451909202c5811fccacd127cb47e2bba34c5204f64b1e1a922ba8c06742dc96bade0e1487f32836b6abc78e10b1857f60304531d495404

Download Submit
/data/user/0/com.kimcy929.screenrecorder/cache/1582435991586.jar

Filesize
20KB

MD5
fde2ee00cbd121cfab5290b078aa3ceb

SHA1
e2b77d5320e155e413d040a8c20020962065b2f8

SHA256
2897b0812077c654a9b3fbb0b6303d5cde681eeba7ad9981de65716c7810d685

SHA512
a9326aff8e454a2b4ac09984ef2a65fddd4dc146b4c44d839035549bff8c9fdaae490326d0b018f76c1ca2e4fb25426d74f550ca0950982fba632a023af99a56

Download Submit