Overview

overview

10

Static

static

10

Imagine v2...ed.apk

android-10-x64

Imagine v2...ed.apk

android-11-x64

8

Imagine v2...ed.apk

android-13-x64

8

Imagine v2...ed.apk

android-9-x86

8

Resubmissions

30-11-2023 10:47

231130-mvl6ssah91 10

18-07-2023 14:25

230718-rrc6yabb83 10

18-07-2023 13:41

230718-qy8qraag77 10

18-07-2023 13:38

230718-qxv39sag66 10

Analysis

  • max time kernel
    534403s
  • max time network
    146s
  • platform
    android_x64
  • resource
    android-33-x64-arm64-20231122-en
  • resource tags

    androidarch:arm64arch:x64image:android-33-x64-arm64-20231122-enlocale:en-usos:android-13-x64system
  • submitted
    30-11-2023 10:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    Imagine v2.8.6 [Premium] signed.apk

  • Size

    25.1MB

  • MD5

    89e9bfaf2d6498971882afb8497dceb1

  • SHA1

    fe2bc88f9fb2195a033def29cbe27ce5157219be

  • SHA256

    6abbca4bd2eaf4f4da7146008b49c53fde806e37a158697ea46c9c6e0eb44b61

  • SHA512

    eb05587fa7c18637d3784175f6a29c35a62c650cf4c88927c07a002854c91c669aaa4e246a45abc44241ad8a72a002cab08e805bdf56a52c4ad945e2c1591a3c

  • SSDEEP

    786432:LJiuZEyv4sWG9mtS14oytjFchKMfvW02+vYzmt:lzZEyvxWG9ms+VVMIuymt

Score
8/10
evasionransomware

Malware Config

Signatures

  • Makes use of the framework's Accessibility service. 1 IoCs
  • Acquires the wake lock. 1 IoCs
  • Reads information about phone network operator.
  • Uses Crypto APIs (Might try to encrypt user data). 1 IoCs
    ransomware
  • Checks the presence of a debugger.
    evasion
  • Listens for changes in the sensor environment (might be used to detect emulation). 1 IoCs
    evasion

Processes

  • com.android.chrome:privileged_process0
    1⤵
    • Makes use of the framework's Accessibility service.
    • Acquires the wake lock.
    • Uses Crypto APIs (Might try to encrypt user data).
    • Listens for changes in the sensor environment (might be used to detect emulation).
    PID:4259

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • /data/user/0/com.vyroai.aiart/cache/image_cache/journal.tmp
    Filesize

    31B

    MD5

    d6ac8c8db0504502d7f0e057a78c5ce3

    SHA1

    8f4cf91a262b24ec9c1a6e7c41fd6d16b6623bb4

    SHA256

    8f22a32cd8de58916041d1097976f2b9c80f7e9a18593d5a6b058bcaed17e22a

    SHA512

    100e74f0c65b51a17de6eeff96d5c38bd6d40e3c8ee00094fd906ba5794088fe1ad6f3a15be196480384cf01399ea26665a05471404f1eeebb0c82ae6fb104bb

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/Imagine.DB
    Filesize

    4KB

    MD5

    0eb157e1a86d4d00aa601dd2f6ff3ee3

    SHA1

    fee434f784e73cc7916322e949f727caf8363102

    SHA256

    b9a8194b71a046e8c0eb30995827b582b4bea834f630a5df2483b778a7d7d8a4

    SHA512

    b9b79b8c3af8a3f140df230fd89e95206358ba50ff214e7323a2dbbe2937b795f970e588302ffd5d721318bd597ce0a27af26d6cdb07f45569c30209845082a8

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/Imagine.DB-journal
    Filesize

    512B

    MD5

    b07c1b87ac39957fc393724622636f87

    SHA1

    35a4ee77586e4c524b1ae03783768818b5d9379f

    SHA256

    8141efd12180c945b97983ff47ed6d2a8d2536c89850a8683a45b9ec6c06b631

    SHA512

    e59c27f01c9f6aa7af1cb1ce722d253aab475fa3ee3fb25cc9645c5b64cf07c43578528e38d71e87aea072aac20147dace54aaae7f1bf9b9831646b1e2301efc

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/Imagine.DB-shm
    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/Imagine.DB-wal
    Filesize

    16KB

    MD5

    da8dd5d48bc3b8a3d4bd86e37abb4e1d

    SHA1

    814ce93f8c512726a46295903777cd02a059d6cd

    SHA256

    71e2b59bcf003d8931bbb6674cb9ed9df3dfb4a8a3b27ce9776a38a47fc4fb11

    SHA512

    d042082c5b46423501c65119e30180a06771f3fb9db22423f2728ea2295f120aeffa97e91ee1264c2d500dbf4c5017f930fd5e752d7e58eb0fcc49cbe384a860

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/Imagine.DB-wal
    Filesize

    36KB

    MD5

    0000c719dd802d704400d0f6d43a3431

    SHA1

    b740ed3c17eceaf19020cc3ca2cee1096b67923d

    SHA256

    13e26ad6d83ee5a6d62d8542033d8178e659f2fbec854a17932fab14e9e2c114

    SHA512

    e20c8c81c482f11313d62de41ce6129cf07e18ea26be131527c690509f1beda30acd69d0c9c0757118edfa260ed5d8c4f1cb8b5eed3f56ea40919062f337d284

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/Imagine.DB-wal
    Filesize

    76KB

    MD5

    50922b8297d1503a7e1de650172c0693

    SHA1

    d11b896942f55be205548d7dbdf01d74c577caa4

    SHA256

    ebc0b8d960c44588066bea6306ce453fdd47eac49ee473f740cc6e5b43783edf

    SHA512

    6351cab7cbb2c4783e2a6aab5981004fdd0c5ee5859384aebc31b155f27bd45115fe669c650ccf1c9d0d1f5d0807fdcf8b752cc22121983c89f6a68bcf8a172f

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events
    Filesize

    68KB

    MD5

    85028aa317e174cc88f8c134a1509e6c

    SHA1

    f3fd6e57cbc527c5c1df83ba0351976e18772cd0

    SHA256

    01f818cb30b84f5890a90aa09a122fc085fde9e280ffab0e2318f360b46e310b

    SHA512

    31a836e59fbae1627c49e91fc2edeaf98b2803f99245c192fdd005cb93690af1d54d9e4ce2262a6a49485a2422a8df3fcea3eed9a74860b2544a4ca08519803c

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
    Filesize

    8KB

    MD5

    c2bbe9fa95f70aaf92582f8760fec606

    SHA1

    ce935a822258caaf2091f7ead52591e6648eeefa

    SHA256

    33a6b04226badb7e7c696eefce93b74a21774bf6b9335005b1f12d6614a128b0

    SHA512

    f4181d28952426f60ecd402ff3fd532854418a719e05341bb5e0dd27d611bafc7cd6df58651beb679158590748e95e98be527d92bebed954adcc1fc4bd01df7e

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
    Filesize

    24KB

    MD5

    abf4d38a1620e058e2a72a72e4e1d3c0

    SHA1

    da43fb53ed64ee18dbfa92151304e1f021009d38

    SHA256

    602151842186e332a4b4293967fd2f7c511b7eeb8e81db0c57c453e7b5ad6a7c

    SHA512

    2f1d9bcfe3dd211afc682542c9a8c8d2cad6f6fe84c0e5d96ab2d9a8c7b6fca3259eca2120a6cdff9b09c8e6c7e1e96338597acee7e3c0cc06638c4d3fb94168

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
    Filesize

    512B

    MD5

    06f4c23283134df51e48e150a1250811

    SHA1

    782dae8da0c690242fb4cdc69dca6103e25400f3

    SHA256

    1164a91b4a11b9749e509403757f51b601aa23bf69cd900cc2621db601013760

    SHA512

    b8fe47408ceadbe830079155319f4bd0d26e3cf7f0e2d4e509b091625d5f252c127f3511b05fb21f6771566ae4564ef6c82075c46a1de0985a37a0a329f59074

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
    Filesize

    16KB

    MD5

    c6332aa34bb17d18f5ab4657cb72f8e8

    SHA1

    1a7fc02401d89f6b1df0f36efe22729e772317cc

    SHA256

    a960553bec57a8ba4ecd1044ee3a78cdaab7f9448a2c18bb4447802e7943ee94

    SHA512

    fac7f7ad52aa61defe7c0f209aa6454552832ca4ec3429767e42881ea7f5fc9b26e0729ffe3db61812748caa5f6f977592e59e215f3165b79948111a01eaa5eb

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
    Filesize

    24KB

    MD5

    b54f54d221915e2288bc40b1a613a5c6

    SHA1

    40c43193629dab7e1871cce422ad99fa32ab0739

    SHA256

    61b93655bcddbf79b274e329ed0f168b4147f1431c057a65e151bea29f279bc7

    SHA512

    32271168795bcacfa5b35f51964a00ea338f19cdc89dabb5fa54cd1a501310b4d99d82798cdcac16aff233fb5824bd51b138a9f98b9a0dd0b3d1ef3e4092fd98

    Download Submit
  • /data/user/0/com.vyroai.aiart/databases/com.google.android.datatransport.events-journal
    Filesize

    8KB

    MD5

    bd5c0966ed4f10544c258b66a5cd0b93

    SHA1

    c4eb81c97c72e2033810daba867674ce301132c8

    SHA256

    769ac1ba0de03a5e5a224827b947e327af5e5f5e2dbaa5be2e60fa15e430aa9a

    SHA512

    1cf9b139898e44bd2daa831f9b0efc63ea3f2f6a52eff3099bc6d08c7bf9cf2ca9e5a00ea21c05a0e9e7d962366130d8cfde51795ea6100b60bae3d584943117

    Download Submit
  • /data/user/0/com.vyroai.aiart/files/.com.google.firebase.crashlytics.files.v2:com.vyroai.aiart/open-sessions/65686888014B000110A3A4E3E6B7F16C/report
    Filesize

    742B

    MD5

    a6689387634fde4f9f4e7556d9dd941e

    SHA1

    8c88f1bd805cb29bc5d9174ecc7c63e6552e0719

    SHA256

    5d3f4e892d50bc2e918924fac6b8edaa729cbe3011c6c604e93fe0ff69e61e95

    SHA512

    77fb330c62978754ce2cd04fd503b43597985826dc4ee3ab91d71f97d7dd0b1681ce85f562bf1952a8c35c0bfa27dd2d21ee6aae4a275366eb26a9e24ee670c9

    Download Submit
  • /data/user/0/com.vyroai.aiart/files/PersistedInstallation3711208592634600127tmp
    Filesize

    564B

    MD5

    1e1d9ba5d1958d079db2d138ff6ccbdf

    SHA1

    99f35b055933fc691d14099c95bbb4999c225819

    SHA256

    c070ad94b64e2f9ac41d48089fe614c4e0f856f4f12304023798d5b3159a68db

    SHA512

    95648351bf2e9d04a975dc8f9a57260916ca8405f862c47480531c2236546e90a7f38c314c1673b2ee7d482c7c31ab2e4f0a0f3792d57353c2c39237118bdb7b

    Download Submit
  • /data/user/0/com.vyroai.aiart/files/PersistedInstallation8904266614451688278tmp
    Filesize

    90B

    MD5

    54b515a6798a3c9c2e64f1a60f3b2be2

    SHA1

    5a1c4a515a3f7198f5217d82ddaef031da5d5352

    SHA256

    62efa4034c6fd73ba0ba9f1a235b4d89fba07e3bc1ca43f62fa0c6f43ff1ee7a

    SHA512

    907d830ec2aaffe8fbbe49bc3dae95bcbb6f63da0edfbd5d74d2e026dc338ffaac154042fa7c888c29f798cb085f33c60c309ac5e359ede27a1cd6963a20c80c

    Download Submit
  • /data/user/0/com.vyroai.aiart/files/frc_1:47152938399:android:928f1ecf0490a9b76611aa_firebase_activate.json
    Filesize

    222KB

    MD5

    c0775b4d35df27be549b09d3abcb0825

    SHA1

    d4850a983465612f5b88fb0e744efd988b7787d9

    SHA256

    56274648eaeb2ddc6148c9dc8c3ed5b4c6eef98d7b1fde593bb38784e722a4c6

    SHA512

    96a7f18c09406188e9fcc005e81c6f9224ef7841a2634fcf79f3e98b9288ca56894677de707739ee8854a6b4b54f5fb2539c2d5f82447cbcd238d36ea56a1cbf

    Download Submit
  • /data/user/0/com.vyroai.aiart/files/frc_1:47152938399:android:928f1ecf0490a9b76611aa_firebase_fetch.json
    Filesize

    222KB

    MD5

    c0775b4d35df27be549b09d3abcb0825

    SHA1

    d4850a983465612f5b88fb0e744efd988b7787d9

    SHA256

    56274648eaeb2ddc6148c9dc8c3ed5b4c6eef98d7b1fde593bb38784e722a4c6

    SHA512

    96a7f18c09406188e9fcc005e81c6f9224ef7841a2634fcf79f3e98b9288ca56894677de707739ee8854a6b4b54f5fb2539c2d5f82447cbcd238d36ea56a1cbf

    Download Submit
  • /data/user/0/com.vyroai.aiart/files/profileInstalled
    Filesize

    24B

    MD5

    c39bfe4dbbce1f17b044f66815281162

    SHA1

    c9a08fc0187d5a8e9f3befabd7c57ee35c978c22

    SHA256

    b8f329728043ab023dc8ba50076ae0579a878e8a87e796549bfedbf78056393a

    SHA512

    4137ea59346f1d618b0fae4e7da6d71ce3837f23d2d7b0855b1a9de42de353c97ae515245d5349e765a6b4da3d8c57180e477365731223fafb3ef74a019b3cd8

    Download Submit
  • /data/user/0/com.vyroai.aiart/no_backup/androidx.work.workdb
    Filesize

    4KB

    MD5

    0eb157e1a86d4d00aa601dd2f6ff3ee3

    SHA1

    fee434f784e73cc7916322e949f727caf8363102

    SHA256

    b9a8194b71a046e8c0eb30995827b582b4bea834f630a5df2483b778a7d7d8a4

    SHA512

    b9b79b8c3af8a3f140df230fd89e95206358ba50ff214e7323a2dbbe2937b795f970e588302ffd5d721318bd597ce0a27af26d6cdb07f45569c30209845082a8

    Download Submit
  • /data/user/0/com.vyroai.aiart/no_backup/androidx.work.workdb-journal
    Filesize

    512B

    MD5

    3bdc2a1d1abe584ed1550593c161324e

    SHA1

    8a6247b1d530e4194ddad951f7114a61d3416a23

    SHA256

    1926592447c071564f0a77f61fef98ebc085e7e5b839b5f3443c07423a9c9fe1

    SHA512

    eebff500bb5b9801f3e2796afab8ed88cb2dcad4e3cbcca4aba2d343a9e7bed6d9acfee1744ee7dadd3074788fc19acc91f22dc0cbb24d24b7e38ff1870c3a12

    Download Submit
  • /data/user/0/com.vyroai.aiart/no_backup/androidx.work.workdb-shm
    Filesize

    32KB

    MD5

    bb7df04e1b0a2570657527a7e108ae23

    SHA1

    5188431849b4613152fd7bdba6a3ff0a4fd6424b

    SHA256

    c35020473aed1b4642cd726cad727b63fff2824ad68cedd7ffb73c7cbd890479

    SHA512

    768007e06b0cd9e62d50f458b9435c6dda0a6d272f0b15550f97c478394b743331c3a9c9236e09ab5b9cb3b423b2320a5d66eb3c7068db9ea37891ca40e47012

    Download Submit
  • /data/user/0/com.vyroai.aiart/no_backup/androidx.work.workdb-wal
    Filesize

    112KB

    MD5

    9eed48937e367e65ef2d5e73907803d8

    SHA1

    3b8a11406b53a8896d9e39340d169398801b06ea

    SHA256

    30e3dc9239d22d191c20cd5e81db7f344a6c95bde0c8394c0ce30d3f968125f8

    SHA512

    af5857d626a46ba9f08670a465a64657b692ced3ae31aaaf4b68b13e4bfc867ed522417ed07a4ac63e89c28b6571ecfb8f402332a2e337a63e5c432cca9f9110

    Download Submit
  • /data/user/0/com.vyroai.aiart/no_backup/androidx.work.workdb-wal
    Filesize

    16KB

    MD5

    0c4fe192cbb34a9e912f7b856956df2a

    SHA1

    ca9e185e5330cd54083efb8e77b73b1e33b1dda8

    SHA256

    574f961c9367ab145d9fcc0a2f264a75a011a426a6701538f0424f07e876a45c

    SHA512

    5f5943d0ff7f97ee0d04db941184c9e824165cc90ee22322af6221575caf32f869c66eba127d0ceb74583c0036a04b614a42e26e6b5ef0d47682cb2f96f115db

    Download Submit
  • /storage/emulated/0/Config/sys/apps/log/log-2023-11-30.txt
    Filesize

    20B

    MD5

    6fecba447b6f1b6f82d200315018cdfc

    SHA1

    5912986b2b48440d23c4c83b98734dc8aff964ee

    SHA256

    b446a573a52f8de6c1b916b7c575decb954e87473977e1e4de26c8a0312393c7

    SHA512

    de5e1de8ab4361991e58179502db12e0de190d4b6954bdfcdf4c715e18eeb240b2e77633306bd025462cb8245943dbae94fa5f46863ac0e08f1212586762d62c

    Download Submit
  • /storage/emulated/0/Config/sys/apps/log/log-2023-11-30.txt
    Filesize

    32B

    MD5

    37e0854a1f24e4781c00c7d2cc80f06f

    SHA1

    c2d9576389d57394bb7a02ea2f03ee14bf801f27

    SHA256

    35a487aa75907f2126f322709f59d75f16bf1e47aff875dd9b5c39ac7b8c90d0

    SHA512

    f36ce51c2111724d2c2ec278dcb14ad2160d2ec7c292d6e6340bd3d22ba245ee440373f49f41f9bceea0f07b685a34b53236347491ca0fdcaf9ec845a32d9a33

    Download Submit
  • /storage/emulated/0/Config/sys/apps/log/log-2023-11-30.txt
    Filesize

    20B

    MD5

    00dc5110e916e11d70f7a368222fdf04

    SHA1

    043f19043e9b5825c61b1da45246e023a24ba7b2

    SHA256

    38322fdd239a89df68a88b3d1560832773ef61b86739c05b463e5b7e84f87160

    SHA512

    5daf98e4d92380cf62c0b494806057715049b4c5b7cdc87d31ecce79509d940e92a9d3e4b96d8309321af2509d7958459132e478befd9e6597d6a772463b405b

    Download Submit
  • /storage/emulated/0/Config/sys/apps/log/log-2023-11-30.txt
    Filesize

    20B

    MD5

    00dc5110e916e11d70f7a368222fdf04

    SHA1

    043f19043e9b5825c61b1da45246e023a24ba7b2

    SHA256

    38322fdd239a89df68a88b3d1560832773ef61b86739c05b463e5b7e84f87160

    SHA512

    5daf98e4d92380cf62c0b494806057715049b4c5b7cdc87d31ecce79509d940e92a9d3e4b96d8309321af2509d7958459132e478befd9e6597d6a772463b405b

    Download Submit
  • /storage/emulated/0/Config/sys/apps/log/log-2023-11-30.txt
    Filesize

    52B

    MD5

    890672884af236955a67078ff4d2a64b

    SHA1

    e6d31a87a0bf1f103cf9f4fdc822c03ca292d774

    SHA256

    606ecb895d9101708254031241f9a90b4d3550b5dc2e3b7d3807343e56ccd301

    SHA512

    58db1aca397ae318245ac283ef7ebeaf1f5149eadbd35cee9519823164552c0dd6fbeb8bee1f190a2a40f8e2cf77a0b68a69dd52c2f40abc254cfc6c31533f1e

    Download Submit