139381f22ada14b9b0789052e97e89bca58b31306b8471035802406577755a4e

Analysis

max time kernel
2880673s
max time network
155s
platform
android_x64
resource
android-x64-20231215-en
resource tags

androidarch:x64arch:x86image:android-x64-20231215-enlocale:en-usos:android-10-x64system
submitted
23-12-2023 12:36

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

139381f22ada14b9b0789052e97e89bca58b31306b8471035802406577755a4e.apk
Size

5.9MB
MD5

ac40832b696bcd51adc17ace058841dd
SHA1

fc1ecacbce2fb3efec243f8a46bc8c46c4360fe8
SHA256

139381f22ada14b9b0789052e97e89bca58b31306b8471035802406577755a4e
SHA512

e399c2c6aaa8bd1d2df6f8d65db650d3efe3b80c64731238435d5b13bf43a301542c8d565a5be7b66a82add473329af400b725a17541e4f9e692a63da352aa10
SSDEEP

98304:9VNSsEZZFzSmACadE2hYw4xQRlqH0w/2MZRjcCHb+mhDg+jXj7GVpJrUI:fEZZFWTXHYwtD/Y/Lw6am9g+jXjaVpJN

Score

6^/10

evasion ransomware

Malware Config

Signatures

Reads information about phone network operator.

Changes the wallpaper (common with ransomware activity). 1 IoCs

ransomware

description	ioc	Process
Framework service call	android.app.IWallpaperManager.setWallpaper	com.microsoft.launcher

Listens for changes in the sensor environment (might be used to detect emulation) 1 IoCs

evasion

description	ioc	Process
Framework API call	android.hardware.SensorManager.registerListener	com.microsoft.launcher

com.microsoft.launcher
1⤵
- Changes the wallpaper (common with ransomware activity).
- Listens for changes in the sensor environment (might be used to detect emulation)
PID:4982

com.microsoft.launcher:Capptain
1⤵
PID:5049

com.microsoft.launcher:Capptain
1⤵
PID:5882

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

/data/data/com.microsoft.launcher/databases/capptain.channel.com.microsoft.launcher.db

Filesize
48KB

MD5
153bc80b86c90163c6b725533d5124b2

SHA1
366d463fe71c60d36d784b5388701d9fc9ca0037

SHA256
985338770270909a39925fa0715f270ad6675ead43fd70c27f90fbe1d87309ad

SHA512
0222024c1f4122eb7c6a3dfd81f6974fc19acd37761543e8b698265a5569097b69e529fe5e4c3b0ac933ca993b8357dfcd6886463eed4c34fa85d605283bb5e9

Download Submit
/data/data/com.microsoft.launcher/databases/capptain.channel.com.microsoft.launcher.db

Filesize
48KB

MD5
e0ff5d8d700c816b2540dcad172f4307

SHA1
e944730258ea2adfec2854e90e59bf2ee510d7f8

SHA256
cd8acd4d9f2e040d80938b21fcd11b41e3e1a08b7a514aad5f1d2dcc570fa88e

SHA512
3ec5f6dcf205d9d2c7866344d54c3efab135e1eb83e1747379079d339f43994e148294a5d5f8e5435b34414a78c3323bdc0e08991ad5c7c61e4754ebf8fd9ceb

Download Submit
/data/data/com.microsoft.launcher/databases/capptain.channel.com.microsoft.launcher.db-journal

Filesize
12KB

MD5
085679ceb8906bb7297129ac0bc6ac0d

SHA1
623e5a8edf102b74570d7373a1d977d4ca6a2bd1

SHA256
2b3711641d46c8b78a719440f04695890b2e7c20cb4ee678272e78b4db4f8aa4

SHA512
cdba8997f624cea8da89864a8fcd0e30eea0dcd09e5486407cd73adee4f7280c0790cbeb2eb0838007a58c88c8a46506fb14c0773142a186fd68955c3396ea73

Download Submit
/data/data/com.microsoft.launcher/databases/capptain.channel.com.microsoft.launcher.db-journal

Filesize
12KB

MD5
7e0b71d5178e016bda3b1a02146af2c0

SHA1
5f0fd4e69a0f52e02a5abb33ca98c5d53384f7d5

SHA256
05ed00e027ad322aaa3261ec8d7a717177c1590b686b2c3c49e777c6ee49f14d

SHA512
8fe26ad618b7873fd0e8163832ae5efffe5b648a4c66f6e91bd5bf06ed44d71d882249d9caae530b6261e48ada493c369868834cdb051c9ea54db1b5216c7ce1

Download Submit
/data/data/com.microsoft.launcher/databases/capptain.channel.com.microsoft.launcher.db-journal

Filesize
8KB

MD5
0bea8f3b4027bb17433c8e28e1f635af

SHA1
0d508642180a6dcb65e8ede21f6dcab610951e94

SHA256
8cf1c247fe2bdefb7e184cc4dab35e23ec673e617b43cf3e1941304cdbee6be1

SHA512
b9b03db3fd9656d74901c7ba111849ef01cbc30243d3f138eafdd0852b366899e8dc3121b6864cf5dc8b2aecd9ad6e0550467bca81c175ae7b402b5b6643a8cb

Download Submit
/data/data/com.microsoft.launcher/databases/capptain.channel.com.microsoft.launcher.db-journal

Filesize
12KB

MD5
2e92a755efaf50e8cd10cb417f88d5cb

SHA1
f338ead74fc848a5a5e801dff594cf8bcf2266ed

SHA256
65e90d40675e862406258b93fe2607ef395a46c88f41c215b09095b1bca58631

SHA512
decb746096d6385f2914579a0aee12aadec0cd51f503292384d03592c56e31510618c3d8d138cd23c60501fde8287d458d1fdaf7e658e0703fa7329783d35c4d

Download Submit
/data/data/com.microsoft.launcher/databases/capptain.channel.com.microsoft.launcher.db-journal

Filesize
12KB

MD5
c516aca6fcf1d37baa9f4a7817bcb9ba

SHA1
a760ec6de7638c25e7294298e331a0af4e6f0363

SHA256
25e3abc37846bf82f1ad93e31519b554b98306d2d4a654e65c6795ce5df4cd6c

SHA512
dc692b2ce4866755fcd879a74c3be0c4d931b97f817c2f5563c721318f782614d02798905f7e18ed2b116087ec0262acc9fa4b7c16e51f32ce43f5eaadf1e14d

Download Submit
/data/data/com.microsoft.launcher/databases/launcher.db

Filesize
12KB

MD5
4d6c62c1bb0338082f40a5875ef35f83

SHA1
186cf104f89acc4a0d5bf131f67e4f5586701f14

SHA256
6c849bbb1270eb4fb26ad2b73496996853521f2ca6002ec1db4f64a421c4202b

SHA512
1f03522f8f003538e64ea74367866e0bb6489a204ebaa974d720964b44f836218a58f818c680542bf0144bfedd23a5e06cfb8eab01043a664fe1178d6487c12a

Download Submit
/data/data/com.microsoft.launcher/databases/launcher.db-journal

Filesize
12KB

MD5
1853dfdebbbb071d2eec48a2265259d3

SHA1
bbcdf471668ad5cd6cc20afee535f851b8261981

SHA256
083144b5d883ba879d76e06d3adc6eaf4fcee0cdbd577266d44e5ed487939a57

SHA512
1c7f11724df0e9508f9cdd7f43ca5be53c5fb976278126a8e5c3faa423594c282bc1a592b98017a9383528fe69473e78298ca7a71d177bbcca03653fb83f5318

Download Submit
/data/data/com.microsoft.launcher/databases/launcher.db-journal

Filesize
512B

MD5
1c265db275141cae1286c37af769de98

SHA1
809dc0275ebd4eb5713c5e8c3ba63f1a09b73342

SHA256
ea39a226d3e60929482f956eef2aefcdfe337fb05a2354d96692be4126df2a93

SHA512
311e887da6aae4da42d9173a27b498879802e3ce11a229f20865166c9e27469f796519fe4a3b73c3abd6c2db80233d7f96b7aea4c98f6ff82066040044f1ef2d

Download Submit
/data/data/com.microsoft.launcher/databases/launcher.db-journal

Filesize
8KB

MD5
8284039d76b17485b81b67de09092f3e

SHA1
f5ec4a65bfff0ad9fd9819af44b7fd180d80ce90

SHA256
9a861e27b7ebf4e2ce25fc539e74c659d1c43598864b53976492eb07978992d4

SHA512
de32425ad1075746cbd377ca5a00783c2a8f7375058f734b098e771027f520cd51b950de72d9d96171e7f2448dbc3e20e2506e1e6d22fe25f7aed701dbaebab4

Download Submit
/data/data/com.microsoft.launcher/databases/launcher.db-journal

Filesize
8KB

MD5
a276930309631abaa83665c88cb8247d

SHA1
60a8082f891134139e34ea3c50631d3906cd158a

SHA256
709c2c2f5dc405cf5dd1a2f280b70e6c7e62e22b247b84445896bd9e8b60087a

SHA512
9a1d8f374783d878cfb8743239739dd9ee4678bb788bb6a93b1ebe6b80263c2981e9cc5a5a96871df6f593dd2e5b1366646c04f4bd0a350d99689a9b38af17a2

Download Submit
/data/data/com.microsoft.launcher/databases/launcher.db-journal

Filesize
8KB

MD5
61db63b0535b0d169589eb0275de8158

SHA1
1148154c5273c8eb9046844c7c3349c1d9f9153f

SHA256
7efd69841c330cab1762f98d8937b3bcf0f7605c675c19e5bb55ee083a39a662

SHA512
7324e07258979e364ddc4eec0d335e57911cf9c13698f50f69e6ced1ec066531c7f8d5410b56bacc90dad0ef40ae493674c9960a3be8788beb809f067d3cf103

Download Submit
/data/data/com.microsoft.launcher/databases/mixpanel

Filesize
28KB

MD5
caf8df69768c07f3f50f95dad4e9d0d5

SHA1
2106296a9e84fdca64fc029f843b16328ef8299f

SHA256
a2392c518dcb8e1fcf487050bdf26b3011311dbd751bbb5aae25f980a75e4b92

SHA512
e902c31f14eb39421fa2f41d44c0a45a7733e5e81aaa720db0154f057f6c150c6d044c81b335fd6890e886a5bb29aa750d2d1448130bb63249952266696a4e78

Download Submit
/data/data/com.microsoft.launcher/databases/mixpanel-journal

Filesize
512B

MD5
93aabce971f4cce2ce795be7c04c5530

SHA1
6757fa7261f921d39d5b2d9cbebc5638cfa5f7a5

SHA256
2a75db8db492960055c7b15069ef719cac46f1c249ba24d86e337236a012a990

SHA512
7ff9c1b90835da799637acfac1e46fd5d5370a6444976ba33a58a673c16cbd9e6e23ccd6f6016bdd56007495217c10a836d59317fd202553a97b0f5b52aaded0

Download Submit
/data/data/com.microsoft.launcher/databases/mixpanel-journal

Filesize
8KB

MD5
30211aca59f160433c31133d161b98a4

SHA1
576e6919e45b03f796872e3dddd8660e0e7d5632

SHA256
cbf2138a41b29c9c1f0fea725edd359871c6986d41a5d3abd0fdc3fd122a2f46

SHA512
bfa6cb94afe17932ee443fdc26d5eb5fa55f01375559c05930d199bf3cdddf6489bb33305f0ac7766948779c2508767325880fe1e5b97d6037b55d6ca3f0dcdc

Download Submit
/data/data/com.microsoft.launcher/databases/mixpanel-journal

Filesize
8KB

MD5
eafc55b90bd7a3ad361614ec7a490f2c

SHA1
9f3cc474f608f10e4d6c3236dc27572c5a1b9233

SHA256
4de10ae62e4b318cf78b3b773710b4fd097bfa8f398c017d7697d45f9bf43e00

SHA512
73cab3215f0096af8f2b1fe766e8bcfa0687a55894f754a92a157608136996daae5ab080d02b8afbf1fc7f7095ce965c6bdd3bb359f031f1153b05302f297c1f

Download Submit
/data/data/com.microsoft.launcher/files/configuration.json

Filesize
1KB

MD5
59e4e0a97e52ac33616795eca3a285ac

SHA1
b31813f2ed0ae8ed6847511033f90a56991ed1c4

SHA256
5e4327fc7881c3ec8b36a95684999bb7f2f3acab532b1d8252e84fa16c77e25d

SHA512
31d3e59d4ff51a4861aa30e7ba34344a1740b231b6eb1602495a08a23e0a3d22c7e70f5a2a63ab480f68a3429fa6e80d2fad1bd114c00b00707c34f93130e604

Download Submit
/data/data/com.microsoft.launcher/files/me/loop/applications/Applications.bin

Filesize
8KB

MD5
b78ea74147edc40d5a6bc5119784f801

SHA1
e60d4e5fbb663ca11cfa0c23d3067c054e637f95

SHA256
d23cf46ec78bafb7c9a0cceb29cc9758c0960708dc18761644a0e13343a29ee2

SHA512
86b181e55e3a2c1769efb9bcb2937bff1a1781f4fc2c83c8d2a2a567947c8e6766c18af904226e13539392824838cc17ab06d96537b64edaf36f44f498f32d35

Download Submit
/data/data/com.microsoft.launcher/files/me/loop/applications/Applications.bin

Filesize
9KB

MD5
4f167bfc67f8566447e781a681f92680

SHA1
bd3c27068430a796da430e33d5351b956f82e4d4

SHA256
3eea1a7f5846e2fbae5d9f92877c24e98ad98ec69bda2e95da728ab24c1e3136

SHA512
ed4ebe53fd2fd2c043ff6363005fcbad473e13bce54377a8b8f9125537cc56ba17dba640620d3518b2f767b50058bb891d98b989c6b6935457ba60ec3cd94dcc

Download Submit
/data/system/users/0/wallpaper_orig

Filesize
12KB

MD5
d9e0f1bdc5ca527f61a21cc9b7df4332

SHA1
33915e4806821d90952ac7cf8ed74a738c344241

SHA256
9d2f59f3be93c06e2a6229f647a5a32c2c65605270c2e937709f2a6f32c37a43

SHA512
e726642a63fc7f801f5a5fe62fc438cd3559c857c521a422ebd5dae64b47b5166c6afce4ec150618218747d87833f7ac95e26c93b0c81cd85b6d38a14b7baf5a

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads