Overview

overview

7

Static

static

7

d58b25358c...a3.apk

android_x86

7

d58b25358c...a3.apk

android_x64

7

d58b25358c...a3.apk

android_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d58b25358cca1d8919de98029ad015190937f30ec3f09e16838cfce1244e50a3

  • Size

    432KB

  • Sample

    220701-h1ypkahchj

  • MD5

    fa65e5147f53e7481de5eee78c29f047

  • SHA1

    961721169e39eee85449e7d4fa88feea8ddc6ac6

  • SHA256

    d58b25358cca1d8919de98029ad015190937f30ec3f09e16838cfce1244e50a3

  • SHA512

    2e2b42b33f6f6e48a9009b19ec578b2e04b24c31e0805088fe73a9f5fffce048777aa2cc9e9ceecb4b60d1e44f866c1a0bde65b2b14ed9d979ea121b0370ab4d

Score
7/10
androidevasionransomware

Malware Config

Targets

    • Target

      d58b25358cca1d8919de98029ad015190937f30ec3f09e16838cfce1244e50a3

    • Size

      432KB

    • MD5

      fa65e5147f53e7481de5eee78c29f047

    • SHA1

      961721169e39eee85449e7d4fa88feea8ddc6ac6

    • SHA256

      d58b25358cca1d8919de98029ad015190937f30ec3f09e16838cfce1244e50a3

    • SHA512

      2e2b42b33f6f6e48a9009b19ec578b2e04b24c31e0805088fe73a9f5fffce048777aa2cc9e9ceecb4b60d1e44f866c1a0bde65b2b14ed9d979ea121b0370ab4d

    Score
    7/10
    evasionransomware

    • Acquires the wake lock.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads information about phone network operator.

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

      evasion

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks