Overview

overview

7

Static

static

7

4308c4e805...a8.apk

android_x86

7

4308c4e805...a8.apk

android_x64

1

4308c4e805...a8.apk

android_x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4308c4e80504431221a72c8351ff3d5dbc4acb4862c076e07bfe68822a42aca8

  • Size

    429KB

  • Sample

    220708-afx9asbfh5

  • MD5

    b064abf69bc0ea6fea7526815ec95433

  • SHA1

    ea9a3760ce83ddfb2f18e972ddb8289de293516e

  • SHA256

    4308c4e80504431221a72c8351ff3d5dbc4acb4862c076e07bfe68822a42aca8

  • SHA512

    689e643b4de25ef0f031a0e4b63ebcdb463d58d9af42bc23c2d379f937ad65430f0b1dfc5a26216c3b71d3e313920389ae49591d9d3c8e79b8718fb5a595d7df

Score
7/10
androidevasionransomware

Malware Config

Targets

    • Target

      4308c4e80504431221a72c8351ff3d5dbc4acb4862c076e07bfe68822a42aca8

    • Size

      429KB

    • MD5

      b064abf69bc0ea6fea7526815ec95433

    • SHA1

      ea9a3760ce83ddfb2f18e972ddb8289de293516e

    • SHA256

      4308c4e80504431221a72c8351ff3d5dbc4acb4862c076e07bfe68822a42aca8

    • SHA512

      689e643b4de25ef0f031a0e4b63ebcdb463d58d9af42bc23c2d379f937ad65430f0b1dfc5a26216c3b71d3e313920389ae49591d9d3c8e79b8718fb5a595d7df

    Score
    7/10
    evasionransomware

    • Acquires the wake lock.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Requests disabling of battery optimizations (often used to enable hiding in the background).

      evasion

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks