Overview

overview

8

Static

static

7

f8986a53d9...7f.apk

android_x86

8

f8986a53d9...7f.apk

android_x64

6

f8986a53d9...7f.apk

android_x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f8986a53d982d3ec645e396faf6da62684962f634807d975a8388a9918a4877f

  • Size

    5.5MB

  • Sample

    220521-af8d9sdafr

  • MD5

    9c365c2b8078c47141e6598acf57b0e7

  • SHA1

    7b1951dd7cfea69a7743f8ffc8dfb2066b9205b4

  • SHA256

    f8986a53d982d3ec645e396faf6da62684962f634807d975a8388a9918a4877f

  • SHA512

    92e4f55fee2e20390b3708ad83ac358e1d163f9abe5d0d1a7fe76fa5c047d5841032328583c92a1332ee9dedda9588e3f29ed36503452c3f455c2d898a6f9694

Score
8/10
androidbankerransomware

Malware Config

Targets

    • Target

      f8986a53d982d3ec645e396faf6da62684962f634807d975a8388a9918a4877f

    • Size

      5.5MB

    • MD5

      9c365c2b8078c47141e6598acf57b0e7

    • SHA1

      7b1951dd7cfea69a7743f8ffc8dfb2066b9205b4

    • SHA256

      f8986a53d982d3ec645e396faf6da62684962f634807d975a8388a9918a4877f

    • SHA512

      92e4f55fee2e20390b3708ad83ac358e1d163f9abe5d0d1a7fe76fa5c047d5841032328583c92a1332ee9dedda9588e3f29ed36503452c3f455c2d898a6f9694

    Score
    8/10
    bankerransomware

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps).

      banker

    • Reads information about phone network operator.

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks