agent_smith | 92dcc36e31b8d743d53be8e25e20e0c87697f85a3f067f6e42f88a0c5ee093f1 | Triage

Submit
Reports

Overview

overview

Static

static

7

92dcc36e31...f1.apk

android_x86

92dcc36e31...f1.apk

android_x64

Sharing

General

Target

92dcc36e31b8d743d53be8e25e20e0c87697f85a3f067f6e42f88a0c5ee093f1
Size

15.2MB
Sample

220515-1v1wvabccj
MD5

905af64ac8dafb6656a968900fd26677
SHA1

5a93ae750945b5fddf2509a0f143c93e006c1636
SHA256

92dcc36e31b8d743d53be8e25e20e0c87697f85a3f067f6e42f88a0c5ee093f1
SHA512

e73f2cc1a87c8b55513d86220ba39b9bb3606eaa15fa3e0fd5587efbca8806e9faf9d8e92885f17d4db14d968ef2b08490dd6c6bafea90fdd95d70efa091acd8

Score

10^/10

agent_smith adware android evasion ransomware

Static task

static1

Behavioral task

behavioral1

Sample

92dcc36e31b8d743d53be8e25e20e0c87697f85a3f067f6e42f88a0c5ee093f1.apk

Resource

android-x86-arm-20220310-en

agent_smith adware evasion ransomware

android_x86

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

92dcc36e31b8d743d53be8e25e20e0c87697f85a3f067f6e42f88a0c5ee093f1.apk

Resource

android-x64-20220310-en

agent_smith adware evasion ransomware

android_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  92dcc36e31b8d743d53be8e25e20e0c87697f85a3f067f6e42f88a0c5ee093f1
- Size
  
  15.2MB
- MD5
  
  905af64ac8dafb6656a968900fd26677
- SHA1
  
  5a93ae750945b5fddf2509a0f143c93e006c1636
- SHA256
  
  92dcc36e31b8d743d53be8e25e20e0c87697f85a3f067f6e42f88a0c5ee093f1
- SHA512
  
  e73f2cc1a87c8b55513d86220ba39b9bb3606eaa15fa3e0fd5587efbca8806e9faf9d8e92885f17d4db14d968ef2b08490dd6c6bafea90fdd95d70efa091acd8
Score

10^/10

agent_smith adware evasion ransomware
- Agent smith
  Agent smith is a modular adware that installs malicious ADs into legitimate applications.
  adware agent_smith
- Requests cell location
  Uses Android APIs to to get current cell location.
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Requests dangerous framework permissions
- Reads information about phone network operator.
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

agent_smithadwareevasionransomware

behavioral2

agent_smithadwareevasionransomware

© 2018-2024

Terms | Privacy