Overview

overview

7

Static

static

6

849fe2c530...44.apk

android-9-x86

6

849fe2c530...44.apk

android-10-x64

6

849fe2c530...44.apk

android-11-x64

6

PandaHome2.apk

android-9-x86

7

PandaHome2.apk

android-10-x64

7

PandaHome2.apk

android-11-x64

7

FlashLight.apk

android-9-x86

1

FlashLight.apk

android-10-x64

1

FlashLight.apk

android-11-x64

1

OneKeyOffScreen.apk

android-9-x86

1

OneKeyOffScreen.apk

android-10-x64

1

OneKeyOffScreen.apk

android-11-x64

1

Analysis

  • max time kernel
    2457668s
  • max time network
    150s
  • platform
    android_x86
  • resource
    android-x86-arm-20231215-en
  • resource tags

    androidarch:armarch:x86image:android-x86-arm-20231215-enlocale:en-usos:android-9-x86system
  • submitted
    20-12-2023 04:41

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    PandaHome2.apk

  • Size

    7.7MB

  • MD5

    025b3383ba21ea4e7180aec9addd0f36

  • SHA1

    7645b744d751a1827db9963dbbddb621ddd6a02b

  • SHA256

    ccc473114bd6f70c82e5222ec4c224bac1ea78497ef8c501d3cf1a0f39bcd719

  • SHA512

    a926f53a0b7170e67ced105bf0e5a65f09ab94d7740fee47e34dc425584c8d8843f4963afc6f7ce2659d4b8c55e7bb06f15c0419f47edf9fcab1cb70e95d0647

  • SSDEEP

    196608:D+QZHILBmi1O8Xl7yIPmv8841o1zBkH25/IE7cmR:SQZg1V7y4mD41o1N3I4cQ

Score
7/10
infostealerransomware

Malware Config

Signatures

  • Reads the content of SMS inbox messages. 1 IoCs
    infostealer
  • Changes the wallpaper (common with ransomware activity). 1 IoCs
    ransomware
  • Uses Crypto APIs (Might try to encrypt user data) 1 IoCs

Processes

  • com.nd.android.pandahome2
    1⤵
    • Reads the content of SMS inbox messages.
    • Changes the wallpaper (common with ransomware activity).
    • Uses Crypto APIs (Might try to encrypt user data)
    PID:4254
  • com.nd.android.pandahome2:pandahome_softmgr_process
    1⤵
      PID:4476

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • /data/data/com.nd.android.pandahome2/databases/91analytics_0515.db
      Filesize

      36KB

      MD5

      aad4d0ed67a4f17fb7097c196fe56858

      SHA1

      0b4cd77ffea05109af5dcabcfab6e0f4fd02c99e

      SHA256

      d1cea6dfeba3d839d3d2a5ee9c5eb5a8182530fd0df6e741d411f5b882ab9d0a

      SHA512

      b0b683efdb7aaac34a01f69092e871d239ffa27765d2c1da0191b2066d47b9f1e32e5eda0dd08f1a7cf9376926e47b986f0751876b714c4b796e41f277cf9cd6

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/91analytics_0515.db-journal
      Filesize

      512B

      MD5

      42fdb020a1a31ab814f3ed858fb43e40

      SHA1

      bb0ecdd31d78904a3d80bff2cad7b0ab6d7d538b

      SHA256

      1d379ddb9716de4fe5d77d3020699a1f2237f1135febb58d04316303870c93b3

      SHA512

      3222ad31373f0eea918e1c75eff879172f52a3ab463d3597f4d093538b2ddd7a4fdc5c3bc7b7f88a11599f5547202adb75bf6531121d45f088a0caacbc16cfb3

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/91analytics_0515.db-wal
      Filesize

      48KB

      MD5

      69f22708ced258d3832bb916dda7f092

      SHA1

      c8c9f5c0c5d3c6c0505023a95bce2c2afc5b5600

      SHA256

      9ce6fedb2cb3eca2f38f55dd8355ee4aed8f5e2ee95d583e98c285d651e0d70d

      SHA512

      8bce6efc3c3fd6639e9843547e3afa883fb9dc2a9f8272b7a0cf6346a3219dcc0f8085731596fe31314e02547edd72a8818afcebe6a25189358b0eb9ca2cfe9e

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/data.db
      Filesize

      4KB

      MD5

      f2b4b0190b9f384ca885f0c8c9b14700

      SHA1

      934ff2646757b5b6e7f20f6a0aa76c7f995d9361

      SHA256

      0a8ffb6b327963558716e87db8946016d143e39f895fa1b43e95ba7032ce2514

      SHA512

      ec12685fc0d60526eed4d38820aad95611f3e93ae372be5a57142d8e8a1ba17e6e5dfe381a4e1365dddc0b363c9c40daaffdc1245bd515fddac69bf1abacd7f1

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/data.db
      Filesize

      60KB

      MD5

      643ab26bde1dabbb24d314e5386afaac

      SHA1

      4ee391a4d7122601289cec90516a40dd405ea528

      SHA256

      95a07beee443d7bf5cde00fece52f989cba3bd21fb8df9fae44e45519198d6d4

      SHA512

      bf01e9637894bf091f8af627c07d8c68bfc4028ccfc16f88ca9dcfe02dc8d28b7318c68b111299b37b205443e36985dee46a4c2d5d8d4c4cbd8f57ce9402bb72

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/data.db-journal
      Filesize

      512B

      MD5

      d645dd340210136883240865b3943081

      SHA1

      461b00b89aa9230a894a2a9929d462d2e3a5d6cd

      SHA256

      a387c8b9130cb2ee556022b2120790a592ff88c2cd8db891470c45c7605684f9

      SHA512

      1dc4a55b27ff76ca05e25db63ea7e2fc8731a1f8774036ae6f203d52fa718da88815bfd83807e9bf50c25083ae6a44d2bf242c047c7c47d20db3476b753db94d

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/data.db-shm
      Filesize

      132KB

      MD5

      5584678fa00211611ef3754dbca09e97

      SHA1

      fe8dd9e20d9a01dabd5461d93b0db2dcda35b657

      SHA256

      38b6793b395b4836646edb76cdef43d2bc98933942d0aa76f6e24652165cd8e5

      SHA512

      fa9d34decea1fd9ca3fe50cbe161f20de4d13640a9758cd3bf53a470f094807a9b687994147063733b212ef87fabb8b1847809ae5a3e67ed0d75792a48e58cd2

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/data.db-wal
      Filesize

      16KB

      MD5

      5372937b415e47f846ca8d0a5ba7c4f3

      SHA1

      aca0f58a7c1311533aab429119e1b982b24d0d10

      SHA256

      0c5137bf49101bba269bee5a7dae191b013cd165f249b7fb400b21407f36b633

      SHA512

      5377f86779c38f0a621d398ba41e297674e6584dcc137f2ebc351197be55f87e8184650c555ef263b060b07042594846f0818a33cfc40c22a13e2b4201c40d78

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/data.db-wal
      Filesize

      8KB

      MD5

      fd06b8294d2b0debcbb85a024fd7093a

      SHA1

      ffebb1f580cd20b9e5a851996d62158c940642b3

      SHA256

      80aedb6589c1501dd43b4b43ffbc2fee22a02dae6429be9889aaef8d73015cf3

      SHA512

      25f2d32ad496abf8e67fe2169866a4a7305e69026e2dfb4291d3c06de8b6e62939c86cd3a4541686492c6cc81723140047ee71ac44fcb42dccbc8c0d7ebe39bb

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/data_center.db
      Filesize

      20KB

      MD5

      b1c31f3743f32dff6b790f48367c14d6

      SHA1

      ec0b38ea6d00a897ca5fc41bf2768f9c59d316e0

      SHA256

      bf125066b9878f00ceac479f023a227fa8cf2bc9e5e062cfe7109445c0a3ab46

      SHA512

      6daa109c4d3bfbdc1c52c25dbe939c12e8b8bd62e9a23dcae34df4b3dd584bceb1d0abb7d2fd03fa3d294b9dde329eca997eedc3b649919360e32d6fb540cb6e

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/data_center.db-journal
      Filesize

      512B

      MD5

      8678166fff1d80343dcf298a7fbb25d4

      SHA1

      24eb18bea5b75de8c8a72965a7f26eaf4fe5a4a1

      SHA256

      be1a47c3a2c490cced60f76066874e92d1ab66e8449e44dc64802b4146a1d4d4

      SHA512

      686e279ab5d67b44cd7d66a40a4df658db7388221c0c34073d95f4b217a0494a2ebcd774c05a847b626772c404d4d458087c8d43aee19ef1c8167d98326345e5

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/data_center.db-wal
      Filesize

      16KB

      MD5

      0abc62f290b629b65ea6e2460f671475

      SHA1

      d463853b2478c9b5766cfae3e7871dfe129d8792

      SHA256

      5b903ea5cea2cdc6d1a7a727f00ba1131ddd3183f9dfc6d160d340c5ccf3b426

      SHA512

      2c6ebd44afa6043a7cd5cc15f00fd5d743ca4bd6d3a3e31b4498b0f0564433caa16cd456c3dffa3bbf536de22417f3fa6b045f83162fc9cc8f8d7ad3a80ecd5f

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/data_center.db-wal
      Filesize

      92KB

      MD5

      56b92392374f7c0a7cc63344518eefb3

      SHA1

      9d32fc8beb13f0308b134345e18a50e17fdb37c9

      SHA256

      680b24fc72b977fd36a8e3b4796be17f24196d6e420d3ebffc1dd081ee0465d2

      SHA512

      b3256cd17c565cbcd95a7a9a083ac4880820756f98fd85dd81e937ee474fe35a2f564ff8399d204e001c022b09d9858c0aafb8f52e4c8bd9cc999721896a66ad

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/data_center.db-wal
      Filesize

      4KB

      MD5

      0550b474cc6c58b4898fd085ed990020

      SHA1

      0a1ed3db8accdfbab81f63b4d64d0dd0ea79b405

      SHA256

      b245ab0a60b5e95977965fd06633f521ff668c4aea21c761b87025b14b58c664

      SHA512

      2d8a16751e36d3e813734c7b340d51d9f85f1601a2d119d3dee2760d52c01b8689745f9300b0663f371d0cf517d99710df2a0f2cb0841e19f09ba74d4b450353

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/docbar.db-journal
      Filesize

      512B

      MD5

      aab5d5ff4e39ac53c395f74be53d2bad

      SHA1

      4c12df27bfe6f6aabb40804f50a24fdde72ed41d

      SHA256

      a5b2964892edbdf0c86563f84c87511615779539f1578909bc54af8b220ecab9

      SHA512

      42868672943b777c5f2da8a597cf79dcdcc151a6f6b27f7bda4e72185c8c71c2abbe45a00964b8fa2d7c4f72b57b0640a6d4179ee9fc0b47a2f99827f28a5fb6

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/docbar.db-shm
      Filesize

      28KB

      MD5

      cf845a781c107ec1346e849c9dd1b7e8

      SHA1

      b44ccc7f7d519352422e59ee8b0bdbac881768a7

      SHA256

      18619b678a5c207a971a0aa931604f48162e307c57ecdec450d5f095fe9f32c7

      SHA512

      4802861ea06dc7fb85229a3c8f04e707a084f1ba516510c6f269821b33c8ee4ebf495258fe5bee4850668a5aac1a45f0edf51580da13b7ee160a29d067c67612

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/docbar.db-wal
      Filesize

      32KB

      MD5

      66b474b1bcb63d31356080632ae1beb7

      SHA1

      f1a25e3eecf5e3c6a59b6da2863cef67642d108a

      SHA256

      87cfab1874f8fc44f79d01288f03778291ce95868c7985848b5aabf72d12348d

      SHA512

      9134915144b6f6b8af825bcd3984045288fc1200f988d48ddcaff919be4f6032989bba42381b86239f528e77599d255ae10a87576107e2ae8a0c7afb82db6df1

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/launcher.db-journal
      Filesize

      512B

      MD5

      807d332699ec610d46339acd73d42874

      SHA1

      4d66cca6e2aa9bdaf9efd9262f1f71cd7a5fe311

      SHA256

      ac0ab8322b6cc778fa3a40205a942f07dd2140eab39ba7f10fa7c6ca5798dac3

      SHA512

      8161b325162c36bee6e0110fa8f25e4ab9ef61662780b18dd96295ea7ef4ed4386f67f644f02266e7b698a51297d390d1cca085b4bd2c29afeb49be2b3618c6b

      Download Submit

    • /data/data/com.nd.android.pandahome2/databases/launcher.db-wal
      Filesize

      16KB

      MD5

      8b002c0a6080944ab6d2a9e0d43c9d08

      SHA1

      b37684dc2d48d5dd10ba280df8f9775edf649c36

      SHA256

      d2bde08b2fdb0b8666290054a85214d9e28cb69315d1f9c8d3fecdf6407384c6

      SHA512

      8764f6d332d191fa14433082260574b95072230bd2ad9d71690524227eda18e50196e683a486fa63cb22bc4f60c7585f3f5ebac32bc4293aaf09ac4a4aaec998

      Download Submit

    • /data/data/com.nd.android.pandahome2/files/channel.ini
      Filesize

      1024B

      MD5

      ecc621cf291a16725abe06eb207c6fd8

      SHA1

      d01f1ccfcba3adc8c8eb225ebda46bb4a58b0ed5

      SHA256

      11731eff80155cae1c37ab6ed9c1140a2edf0677bd62cac471366517235c7418

      SHA512

      defb51de5f34e9898c56c1c99c15d4ab68d2d8e44691218597a58bb3d5b10f2df810c279d61455d88e278c16b4315c56a5f75340d8bbc8506778ce5d7ebbb745

      Download Submit

    • /data/data/com.nd.android.pandahome2/files/launcher.preferences
      Filesize

      15B

      MD5

      8045cecd3d5a4c893e3a75d47b17121e

      SHA1

      61f08d6c53ae857cfd4be1bf607a6c80e5e78b23

      SHA256

      9bd54ce2fe34faa03d173df22621b5c747e544ed354e521889b692c031ba99b3

      SHA512

      70d34c24ccb3f90cdf930f0e24d67441e2aafc5baa5ae95c5e288b788cf25df394254f9bf55d45a5893b78457873b6169b8868a4fd45364c2b485f90bd4c0099

      Download Submit