agent_smith | feec0326f70fa8f97a42a1b5a8584423138d7dec830994be73608ada4bee5c8b | Triage

Submit
Reports

Overview

overview

Static

static

7

feec0326f7...8b.apk

android_x86

feec0326f7...8b.apk

android_x64

feec0326f7...8b.apk

android_x64

Sharing

General

Target

feec0326f70fa8f97a42a1b5a8584423138d7dec830994be73608ada4bee5c8b
Size

973KB
Sample

220516-rbp6kagabn
MD5

d2107cc5cb0b0c4ea4a431bad4b69d4d
SHA1

75df3a748c30e7706fbc3871f098cf98347c83e6
SHA256

feec0326f70fa8f97a42a1b5a8584423138d7dec830994be73608ada4bee5c8b
SHA512

c93e3d8e88f420a16c0b0bb689540dd3daffa1ac7a4bd044d55d9f241ab1a9fae6c96ee35b5b86ec7142375b0ee53426d422ea08ca25e2534191476f45842b93

Score

10^/10

agent_smith adware android evasion ransomware

Static task

static1

Behavioral task

behavioral1

Sample

feec0326f70fa8f97a42a1b5a8584423138d7dec830994be73608ada4bee5c8b.apk

Resource

android-x86-arm-20220310-en

agent_smith adware evasion ransomware

android_x86

0 signatures

0 seconds

Behavioral task

behavioral2

Sample

feec0326f70fa8f97a42a1b5a8584423138d7dec830994be73608ada4bee5c8b.apk

Resource

android-x64-20220310-en

agent_smith adware evasion ransomware

android_x64

0 signatures

0 seconds

Behavioral task

behavioral3

Sample

feec0326f70fa8f97a42a1b5a8584423138d7dec830994be73608ada4bee5c8b.apk

Resource

android-x64-arm64-20220310-en

android_x64

0 signatures

0 seconds

Malware Config

Targets

- Target
  
  feec0326f70fa8f97a42a1b5a8584423138d7dec830994be73608ada4bee5c8b
- Size
  
  973KB
- MD5
  
  d2107cc5cb0b0c4ea4a431bad4b69d4d
- SHA1
  
  75df3a748c30e7706fbc3871f098cf98347c83e6
- SHA256
  
  feec0326f70fa8f97a42a1b5a8584423138d7dec830994be73608ada4bee5c8b
- SHA512
  
  c93e3d8e88f420a16c0b0bb689540dd3daffa1ac7a4bd044d55d9f241ab1a9fae6c96ee35b5b86ec7142375b0ee53426d422ea08ca25e2534191476f45842b93
Score

10^/10

agent_smith adware evasion ransomware
- Agent smith
  Agent smith is a modular adware that installs malicious ADs into legitimate applications.
  adware agent_smith
- Requests cell location
  Uses Android APIs to to get current cell location.
- Reads information about phone network operator.
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

agent_smithadwareevasionransomware

behavioral2

agent_smithadwareevasionransomware

behavioral3

© 2018-2024

Terms | Privacy