flash

CoronaWarnApp.apk

Status: finished
Submission Time: 06.01.2021 11:27:44
Malicious
Ransomware
Trojan
Spyware
Evader
Anubis

Comments

Tags

Details

  • Analysis ID:
    336565
  • API (Web) ID:
    575015
  • Analysis Started:
    06.01.2021 11:27:45
  • Analysis Finished:
    06.01.2021 11:33:36
  • MD5:
    de2060e42c95d4dddbf19d85d6da1cd7
  • SHA1:
    8ebf29e56545925e5d2aa8af413de35cd973eb26
  • SHA256:
    0d5ec7d8ea87fc80887fa6238dd49572182be98c8b02d9c5dda350a026f16eb7
  • Technologies:
Full Report Management Report IOC Report Engine Info Verdict Score Reports
New

System: Android 9 (Pie)

malicious
100/100

malicious
21/60

malicious

IPs

IP Country Detection
172.217.168.67
United States
172.217.168.14
United States
172.217.168.10
United States
Click to see the 2 hidden entries
8.8.4.4
United States
216.239.35.12
United States

Domains

Name IP Detection
time.android.com
216.239.35.12

URLs

Name Detection
http://schemas.android.com/apk/res/android
http://schemas.android.com/apk/res-auto
http://ktosdelaetskrintotpidor.com
Click to see the 6 hidden entries
https://app-de-rki.xyz
https://jsonplaceholder.typicode.com/posts
http://101.99.95.109/inj
http://en.utrace.de
http://sositehuypidarasi.com
http://10.0.3.2/injclientup

Dropped files

Name File Type Hashes Detection
/data/data/anubis.bot.myapplication/files/api0.csv.part
troff or preprocessor input, ASCII text, with very long lines, with no line terminators
#