42344ae56337fe802340385c821b6be151483d99ae3572e50e76dfc8b790033a | Triage

Submit
Reports

Overview

overview

Static

static

Android APK

android_x86_64

Sharing

General

Target

eventbot.apk
Size

1.9MB
Sample

201120-xf23msd11x
MD5

e1229d332ca43ac2b640084a0dae9bbe
SHA1

1f3bdc98d977f3c99cb71d80f64e74b91da62671
SHA256

42344ae56337fe802340385c821b6be151483d99ae3572e50e76dfc8b790033a
SHA512

e905d0355d9dfb736f3def4a1b4e84082fdeb3c94066e4ccab83ad16b5cd81e6427fd76cb3e5c646ecb7b969fcc13a9d40139bc71c2fd9845f63138522594f0e

Score

10^/10

android banker ransomware

Static task

static1

Behavioral task

behavioral1

Sample

eventbot.apk

Resource

android-x86_64

banker ransomware

android_x86_64

0 signatures

0 seconds

Malware Config

Extracted

RC4_key

Targets

- Target
  
  eventbot.apk
- Size
  
  1.9MB
- MD5
  
  e1229d332ca43ac2b640084a0dae9bbe
- SHA1
  
  1f3bdc98d977f3c99cb71d80f64e74b91da62671
- SHA256
  
  42344ae56337fe802340385c821b6be151483d99ae3572e50e76dfc8b790033a
- SHA512
  
  e905d0355d9dfb736f3def4a1b4e84082fdeb3c94066e4ccab83ad16b5cd81e6427fd76cb3e5c646ecb7b969fcc13a9d40139bc71c2fd9845f63138522594f0e
Score

10^/10

banker ransomware
- Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps).
  banker
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

bankerransomware

© 2018-2024

Terms | Privacy