Overview

overview

7

Static

static

7

2b2bdc4ba5...e5.apk

android_x86

7

2b2bdc4ba5...e5.apk

android_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2b2bdc4ba56a9d621df3f958f35ba9919ee0c2b9749487b4aba87884655676e5

  • Size

    5.8MB

  • Sample

    220521-amx7waddem

  • MD5

    9e404bc9f22dfe38586636c62c8e1e3f

  • SHA1

    1f6cb531342d4396bdc53c61bc548a0257d0274e

  • SHA256

    2b2bdc4ba56a9d621df3f958f35ba9919ee0c2b9749487b4aba87884655676e5

  • SHA512

    3a6a32bd1c6e7d40689b36a69e932103ed5b19f4866cb47c9850ef4e462b333a66c97e136a34d87db64a85a2cb7cee77e2eae639381bfbac1586a59511cb93d5

Score
7/10
androidevasionransomware

Malware Config

Targets

    • Target

      2b2bdc4ba56a9d621df3f958f35ba9919ee0c2b9749487b4aba87884655676e5

    • Size

      5.8MB

    • MD5

      9e404bc9f22dfe38586636c62c8e1e3f

    • SHA1

      1f6cb531342d4396bdc53c61bc548a0257d0274e

    • SHA256

      2b2bdc4ba56a9d621df3f958f35ba9919ee0c2b9749487b4aba87884655676e5

    • SHA512

      3a6a32bd1c6e7d40689b36a69e932103ed5b19f4866cb47c9850ef4e462b333a66c97e136a34d87db64a85a2cb7cee77e2eae639381bfbac1586a59511cb93d5

    Score
    7/10
    evasionransomware

    • Checks known Qemu files.

      Checks for known Qemu files that exist on Android virtual device images.

    • Checks known Qemu pipes.

      Checks for known pipes used by the Android emulator to communicate with the host.

    • Reads information about phone network operator.

    • Removes a system notification.

      evasion

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks