Overview

overview

7

Static

static

7

f1d26e0607...55.apk

android_x86

7

f1d26e0607...55.apk

android_x64

1

f1d26e0607...55.apk

android_x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f1d26e06079ca31c4b1c34eb7259478b20b46d2bf1d722f77fab29cf1abc1155

  • Size

    436KB

  • Sample

    220701-fhj3caeef6

  • MD5

    2342d9c9707ac732a92def2f5108d72f

  • SHA1

    7bc8c66f8a6cceb0cb67c5197467954924d81040

  • SHA256

    f1d26e06079ca31c4b1c34eb7259478b20b46d2bf1d722f77fab29cf1abc1155

  • SHA512

    2d05ca55e0c27f8f07b1c17599d8d008ae6bc28494563b1a155ffb09de95e3bd28fa7541ffc3055f1cc5c1d1a4e8c78ded3c525c1dcc7a795d4a416cdce389b6

Score
7/10
androidevasionransomware

Malware Config

Targets

    • Target

      f1d26e06079ca31c4b1c34eb7259478b20b46d2bf1d722f77fab29cf1abc1155

    • Size

      436KB

    • MD5

      2342d9c9707ac732a92def2f5108d72f

    • SHA1

      7bc8c66f8a6cceb0cb67c5197467954924d81040

    • SHA256

      f1d26e06079ca31c4b1c34eb7259478b20b46d2bf1d722f77fab29cf1abc1155

    • SHA512

      2d05ca55e0c27f8f07b1c17599d8d008ae6bc28494563b1a155ffb09de95e3bd28fa7541ffc3055f1cc5c1d1a4e8c78ded3c525c1dcc7a795d4a416cdce389b6

    Score
    7/10
    evasionransomware

    • Acquires the wake lock.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

      evasion

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks