agent_smith | dd794114969c211223cfad7471043888843825d887ad4a3fa74f4b0dcc54ba81 | Triage

Submit
Reports

Overview

overview

Static

static

7

dd79411496...81.apk

android-9-x86

Sharing

General

Target

dd794114969c211223cfad7471043888843825d887ad4a3fa74f4b0dcc54ba81
Size

1023KB
Sample

220725-c188eabbb3
MD5

547cb27f35e0f05a6d19fc94d38bf6d5
SHA1

3543a94bf59d7ff0f8ac84b6f0887e0306b0a2c7
SHA256

dd794114969c211223cfad7471043888843825d887ad4a3fa74f4b0dcc54ba81
SHA512

632771a96ec2e1414bfa7eddeb589e8286a3e6343946d1355dd65c9c20064cc7934e4ba62908fe78011003adee1ae8027a893ec9c1804cd6e18b7c911e82ecfa

Score

10^/10

agent_smith adware infostealer ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

dd794114969c211223cfad7471043888843825d887ad4a3fa74f4b0dcc54ba81.apk

Resource

android-x86-arm-20220621-en

agent_smith adware infostealer ransomware

android-9-x86

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  dd794114969c211223cfad7471043888843825d887ad4a3fa74f4b0dcc54ba81
- Size
  
  1023KB
- MD5
  
  547cb27f35e0f05a6d19fc94d38bf6d5
- SHA1
  
  3543a94bf59d7ff0f8ac84b6f0887e0306b0a2c7
- SHA256
  
  dd794114969c211223cfad7471043888843825d887ad4a3fa74f4b0dcc54ba81
- SHA512
  
  632771a96ec2e1414bfa7eddeb589e8286a3e6343946d1355dd65c9c20064cc7934e4ba62908fe78011003adee1ae8027a893ec9c1804cd6e18b7c911e82ecfa
Score

10^/10

agent_smith adware infostealer ransomware
- Agent smith
  Agent smith is a modular adware that installs malicious ADs into legitimate applications.
  adware agent_smith
- Requests cell location
  Uses Android APIs to to get current cell location.
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Reads the content of SMS inbox messages.
  infostealer
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

agent_smithadwareinfostealerransomware

© 2018-2024

Terms | Privacy