7f93a0de23083f351c679f2bdfb5859a7f4eaf1091e0c88299baf0b9808a51e9

Analysis

max time kernel
2306735s
max time network
164s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
20-12-2023 03:01

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

7f93a0de23083f351c679f2bdfb5859a7f4eaf1091e0c88299baf0b9808a51e9.apk
Size

8.0MB
MD5

43cd2731ef62655cda6ab55c528b21a3
SHA1

828c8c4a1066af0015c6d1b27b668e4954a442df
SHA256

7f93a0de23083f351c679f2bdfb5859a7f4eaf1091e0c88299baf0b9808a51e9
SHA512

4df061c05f446e8419e9d35661baebb680f918ba7973f006a0865724310cd49b67ca89dd62016ff88ada78db08b3082499e251f1c6c49f9d5cc3a90401f3c66a
SSDEEP

196608:Wl9R20gVREpnYA6i4g6aM+Oie2I4gXfo57CaIvVW0BMam:WJQUSib6apOCI475WaI5BMr

Score

7^/10

Malware Config

Signatures

Loads dropped Dex/Jar 1 IoCs

Runs executable file dropped to the device during analysis.

ioc	pid	Process
/data/user/0/com.wowlemon.app.review/[email protected]	5080	com.wowlemon.app.review

Queries the unique device ID (IMEI, MEID, IMSI)
Reads information about phone network operator.

Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

description	ioc	Process
Framework API call	javax.crypto.Cipher.doFinal	com.wowlemon.app.review

com.wowlemon.app.review
1⤵
- Loads dropped Dex/Jar
- Uses Crypto APIs (Might try to encrypt user data)
PID:5080

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.wowlemon.app.review/.00000000000/A3AEECD8.dex

Filesize
63KB

MD5
ed73a80eb949bacc52428b8d5a087fa5

SHA1
07e973549a2cee61ffeeb6439abc419cd8a489a9

SHA256
f0ead1ad60e0cc310c1a40685c28fc7a69aa346604552816c51dd3c1718a1e76

SHA512
4bc26c18ca3a2edfe38ca1e14ad1e1415268b4a69cdff3c0f8e2b8fa910c67c2e4bc4f32c21274e586e8e139122ea3dbde7ec507c4722b4a9a778ee2598090b8

Download Submit
/data/data/com.wowlemon.app.review/.00000000000/A3AEECD8.dex

Filesize
63KB

MD5
5061e4948844f7d366972ac8005e9f13

SHA1
a2b79a1c79afb095ddebf0f16a1f9db64482bcaf

SHA256
3aa6caecfcd101531539147e01382bc530b4fdc61e98937d63cc4648793c6a45

SHA512
223d18ce248912df18cdea3c8e864ea5e6ec058ca42cc5fde738188c54abcd260d7f24ac53d4987d3e32f4ae3e1e40e01354054d035bb100eef51b2d695f5299

Download Submit
/data/data/com.wowlemon.app.review/files/.imei.txt

Filesize
32B

MD5
91c7ae44e03440977a8b681ad37c6077

SHA1
9fff10619149624c3982ae46e1b192ba34c3803b

SHA256
c34dc1e3b1a7f87113140e979b7d81b8ccc3a02321baa1bbd6d3b45726215474

SHA512
d90354e8d64ce0e0ce4122320f685465e2f296a86edaaa0bffcc43c7dda4709769eb1f8b22833bfc983adea0adc499015da8a7ddae2599a148edb73ebc63605e

Download Submit
/data/data/com.wowlemon.app.review/files/cnc3ejE6/eje3cnc

Filesize
35B

MD5
762298b93820a5cd8b6d8ec469078f7f

SHA1
d5b02a2ff3b235cd2b61ceff53a1d88b8984477d

SHA256
dc3f98a33c26c2796dc294b354831fd5ca9796295f4cb38479c80b145d4807db

SHA512
70f864211ce16679d0538abf9b7071d27c2d22ae458e32409d20065032c762dd186307ef33ede90abd9ac794a4ced8b163404e9799c05f0c515337249684311e

Download Submit
/data/data/com.wowlemon.app.review/shared_prefs_ext/test_app

Filesize
24B

MD5
9d048b31371940a8e42b5292d6c563c9

SHA1
f3365f60b35ce03c51aebc265c4f21af1b1b594a

SHA256
c7822e08a4686ecfca6e92065d39e96fa9d5cc891e998125b06adf0a8bcc8719

SHA512
3fedc2bdbd0e2c3e11a2e48523e84f31991c43da985821a66152c8e4014b0d8fb6733860eb23b3f1491afffcc09864e51da479d752f667117b32913a004cb49b

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads