759cf2018b43bd88ff69b4736e91c3c76f16f5788e44af7e42b0124c35daa210

Submit
Reports

Overview

overview

Static

static

LEDAMA VPN...es.apk

android-9-x86

LEDAMA VPN...es.apk

android-10-x64

LEDAMA VPN...es.apk

android-11-x64

LEDAMA VPN...nsd.so

ubuntu-18.04-amd64

LEDAMA VPN...nsd.so

debian-9-armhf

LEDAMA VPN...nsd.so

debian-9-mips

LEDAMA VPN...nsd.so

debian-9-mipsel

LEDAMA VPN...cks.so

ubuntu-18.04-amd64

LEDAMA VPN...cks.so

debian-9-armhf

LEDAMA VPN...cks.so

debian-9-mips

LEDAMA VPN...cks.so

debian-9-mipsel

LEDAMA VPN...nsd.so

debian-9-armhf

LEDAMA VPN...cks.so

debian-9-armhf

LEDAMA VPN...er.jar

windows7-x64

LEDAMA VPN...er.jar

windows10-2004-x64

LEDAMA VPN...radlew

ubuntu-18.04-amd64

LEDAMA VPN...radlew

debian-9-armhf

LEDAMA VPN...radlew

debian-9-mips

LEDAMA VPN...radlew

debian-9-mipsel

LEDAMA VPN...ew.bat

windows7-x64

LEDAMA VPN...ew.bat

windows10-2004-x64

LEDAMA VPN...-1.apk

android-9-x86

LEDAMA VPN...-1.apk

android-10-x64

LEDAMA VPN...-1.apk

android-11-x64

Analysis

platform
debian-9_armhf
resource
debian9-armhf-20231215-en
resource tags

arch:armhfimage:debian9-armhf-20231215-enkernel:4.9.0-13-armmp-lpaelocale:en-usos:debian-9-armhfsystem
submitted
20/12/2023, 00:38

Sharing

Copy URL Twitter E-mail

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/build/bin/resources.apk

Resource

android-x86-arm-20231215-en

android-9-x86

0 signatures

150 seconds

Behavioral task

behavioral2

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/build/bin/resources.apk

Resource

android-x64-20231215-en

android-10-x64

0 signatures

150 seconds

Behavioral task

behavioral3

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/build/bin/resources.apk

Resource

android-x64-arm64-20231215-en

android-11-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/arm64-v8a/libpdnsd.so

Resource

ubuntu1804-amd64-20231215-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/arm64-v8a/libpdnsd.so

Resource

debian9-armhf-20231215-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral6

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/arm64-v8a/libpdnsd.so

Resource

debian9-mipsbe-20231215-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral7

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/arm64-v8a/libpdnsd.so

Resource

debian9-mipsel-20231215-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral8

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/arm64-v8a/libtun2socks.so

Resource

ubuntu1804-amd64-20231215-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral9

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/arm64-v8a/libtun2socks.so

Resource

debian9-armhf-20231215-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral10

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/arm64-v8a/libtun2socks.so

Resource

debian9-mipsbe-20231215-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral11

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/arm64-v8a/libtun2socks.so

Resource

debian9-mipsel-20231215-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral12

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/armeabi-v7a/libpdnsd.so

Resource

debian9-armhf-20231215-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral13

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/armeabi-v7a/libtun2socks.so

Resource

debian9-armhf-20231215-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral14

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/gradle/wrapper/gradle-wrapper.jar

Resource

win7-20231129-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral15

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/gradle/wrapper/gradle-wrapper.jar

Resource

win10v2004-20231215-en

discovery

windows10-2004-x64

2 signatures

150 seconds

Behavioral task

behavioral16

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/gradlew

Resource

ubuntu1804-amd64-20231215-en

ubuntu-18.04-amd64

0 signatures

150 seconds

Behavioral task

behavioral17

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/gradlew

Resource

debian9-armhf-20231215-en

debian-9-armhf

0 signatures

150 seconds

Behavioral task

behavioral18

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/gradlew

Resource

debian9-mipsbe-20231215-en

debian-9-mips

0 signatures

150 seconds

Behavioral task

behavioral19

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/gradlew

Resource

debian9-mipsel-20231215-en

debian-9-mipsel

0 signatures

150 seconds

Behavioral task

behavioral20

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/gradlew.bat

Resource

win7-20231129-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral21

Sample

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/gradlew.bat

Resource

win10v2004-20231215-en

discovery

windows10-2004-x64

3 signatures

150 seconds

Behavioral task

behavioral22

Sample

LEDAMA VPN NO ADDTIME/LazyConfigGen-hiro.dev.gen.ws-1.0-1.apk

Resource

android-x86-arm-20231215-en

android-9-x86

0 signatures

150 seconds

Behavioral task

behavioral23

Sample

LEDAMA VPN NO ADDTIME/LazyConfigGen-hiro.dev.gen.ws-1.0-1.apk

Resource

android-x64-20231215-en

android-10-x64

0 signatures

150 seconds

Behavioral task

behavioral24

Sample

LEDAMA VPN NO ADDTIME/LazyConfigGen-hiro.dev.gen.ws-1.0-1.apk

Resource

android-x64-arm64-20231215-en

android-11-x64

0 signatures

150 seconds

Errors

Reason

Payload did not run: payload error: fork/exec /tmp/LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/arm64-v8a/libpdnsd.so: exec format error

Report Analysis Logs

General

Target

LEDAMA VPN NO ADDTIME/LEDAMA VPN SOCKS/app/src/main/jniLibs/arm64-v8a/libpdnsd.so
Size

210KB
MD5

c0529417123cf324e483ef07ab4336a0
SHA1

8fb23b47e2fd288054279b9d7340dee5d6cedd25
SHA256

79f63ddd30befdbe122afd5d74f1c36ec07d0f8af93844c4058c9aee8a3c64ad
SHA512

44d57f9e1a003ffbf75df65abd9ea0622f345b9dd3c4f9256796d96c53e79a2c90d2a17dde066159227be5e70ac9b34695b3e4b0342e0fc45cd66638283378da
SSDEEP

3072:kF2I+ybutXQFG5B+14M/KCwLR2nhVf2fFKvWHA4Zn70ZluWa7nQRKrhNQ3:DIHRFG7+J/K9LRb9aWdx70nuWa7QQr

Analysis

Sharing

Errors

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads