Overview

overview

10

Static

static

7

6c7ad16ddf...46.apk

android_x86

10

6c7ad16ddf...46.apk

android_x64

10

6c7ad16ddf...46.apk

android_x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6c7ad16ddf81769322390bb88cf24079188ca85d999f58a61da4506dbd307a46

  • Size

    291KB

  • Sample

    220520-f19eyseedj

  • MD5

    0deaa330e86fbe7421cc579cf454f53e

  • SHA1

    fcc130f37edd4f1fe8c60b68672c6cb58243cddf

  • SHA256

    6c7ad16ddf81769322390bb88cf24079188ca85d999f58a61da4506dbd307a46

  • SHA512

    f105bda1ff0a2828b009cc5e74c4986cd0a199f8e586f3d1c1f9151e0c75a288c0074618f20931ad2868ad217e89b41bdbedea49db464400aab9c1fbf7515fac

Score
10/10
agent_smithadwareandroidevasionransomware

Malware Config

Targets

    • Target

      6c7ad16ddf81769322390bb88cf24079188ca85d999f58a61da4506dbd307a46

    • Size

      291KB

    • MD5

      0deaa330e86fbe7421cc579cf454f53e

    • SHA1

      fcc130f37edd4f1fe8c60b68672c6cb58243cddf

    • SHA256

      6c7ad16ddf81769322390bb88cf24079188ca85d999f58a61da4506dbd307a46

    • SHA512

      f105bda1ff0a2828b009cc5e74c4986cd0a199f8e586f3d1c1f9151e0c75a288c0074618f20931ad2868ad217e89b41bdbedea49db464400aab9c1fbf7515fac

    Score
    10/10
    agent_smithadwareevasionransomware

    • Agent smith

      Agent smith is a modular adware that installs malicious ADs into legitimate applications.

      adwareagent_smith

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries the unique device ID (IMEI, MEID, IMSI).

    • Reads information about phone network operator.

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks