Overview

overview

7

Static

static

7

21a6a5d138...aa.apk

android_x86

7

21a6a5d138...aa.apk

android_x64

7

21a6a5d138...aa.apk

android_x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    21a6a5d138fcdfcd7808972705ca8bafd0c72b2eb65d18cf7b691f29c13bb3aa

  • Size

    279KB

  • Sample

    220521-nl9q6sdhb8

  • MD5

    fe5c3d944b65dc076d9721c6395aed82

  • SHA1

    3a5c69350685a1463a1432b0764835498100b227

  • SHA256

    21a6a5d138fcdfcd7808972705ca8bafd0c72b2eb65d18cf7b691f29c13bb3aa

  • SHA512

    df65eda61e045de29a39f8e6729f3b329e9068b469586e6222d26850ce99d1dc79dcd407200560bf32cd4fe9681723b885065805d261df4dbe78d0399eb5ee85

Score
7/10
androidransomware

Malware Config

Targets

    • Target

      21a6a5d138fcdfcd7808972705ca8bafd0c72b2eb65d18cf7b691f29c13bb3aa

    • Size

      279KB

    • MD5

      fe5c3d944b65dc076d9721c6395aed82

    • SHA1

      3a5c69350685a1463a1432b0764835498100b227

    • SHA256

      21a6a5d138fcdfcd7808972705ca8bafd0c72b2eb65d18cf7b691f29c13bb3aa

    • SHA512

      df65eda61e045de29a39f8e6729f3b329e9068b469586e6222d26850ce99d1dc79dcd407200560bf32cd4fe9681723b885065805d261df4dbe78d0399eb5ee85

    Score
    7/10
    ransomware

    • Acquires the wake lock.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads information about phone network operator.

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks