cfafbd03efa092de75323b03e8b92d2b7173251a56a7a62138f24c4fb52d4500 | Triage

Submit
Reports

Overview

overview

8

Static

static

7

cfafbd03ef...00.apk

android-9-x86

8

Sharing

General

Target

cfafbd03efa092de75323b03e8b92d2b7173251a56a7a62138f24c4fb52d4500
Size

3.3MB
Sample

221124-dg4dgsgb3s
MD5

cd9a3f5ca0e277212e4a1a91c55ead96
SHA1

a16db0a07e7c16c0ba901e03dd9eedf1f7da4819
SHA256

cfafbd03efa092de75323b03e8b92d2b7173251a56a7a62138f24c4fb52d4500
SHA512

e4f5ef0bf093f6ddbda802ebee2a0e95a7842925188c1d5e27f29d6042829e8fdf557b62125f382ead9d478f759bbb01f8493f978958e43c477399d3cac287df
SSDEEP

49152:GQRAoFYjJ2aZpBSmFNJMbtFV1/wWv4fgsPaDwt9Ewep6S4/JbjqcF5lvZVmzXlf:GJ/QaZpB7nMbxUfhw4KwepjeJddvzmrV

Score

8^/10

android infostealer ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

cfafbd03efa092de75323b03e8b92d2b7173251a56a7a62138f24c4fb52d4500.apk

Resource

android-x86-arm-20220823-en

infostealer ransomware

android-9-x86

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  cfafbd03efa092de75323b03e8b92d2b7173251a56a7a62138f24c4fb52d4500
- Size
  
  3.3MB
- MD5
  
  cd9a3f5ca0e277212e4a1a91c55ead96
- SHA1
  
  a16db0a07e7c16c0ba901e03dd9eedf1f7da4819
- SHA256
  
  cfafbd03efa092de75323b03e8b92d2b7173251a56a7a62138f24c4fb52d4500
- SHA512
  
  e4f5ef0bf093f6ddbda802ebee2a0e95a7842925188c1d5e27f29d6042829e8fdf557b62125f382ead9d478f759bbb01f8493f978958e43c477399d3cac287df
- SSDEEP
  
  49152:GQRAoFYjJ2aZpBSmFNJMbtFV1/wWv4fgsPaDwt9Ewep6S4/JbjqcF5lvZVmzXlf:GJ/QaZpB7nMbxUfhw4KwepjeJddvzmrV
Score

8^/10

infostealer ransomware
- Requests cell location
  Uses Android APIs to to get current cell location.
- Reads the content of SMS inbox messages.
  infostealer
- Reads information about phone network operator.
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

infostealerransomware

© 2018-2024

Terms | Privacy