Overview

overview

10

Static

static

10

SharkBot.apk

android-9-x86

8

SharkBot.apk

android-10-x64

5

SharkBot.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SharkBot.apk

  • Size

    14.1MB

  • Sample

    221124-jwj62sdb8v

  • MD5

    1f32aa3ad68eac774cfcaeb0cd84de4d

  • SHA1

    512f378b8821064d5b48ceb0624dd17eca673667

  • SHA256

    a56dacc093823dc1d266d68ddfba04b2265e613dcc4b69f350873b485b9e1f1c

  • SHA512

    ad66808102f0af441ffe7f18da3daed094d860930a70bb67e164d984b693b95f98fb51eff192404aac6c605e6a7351286b9e866f2d3567ce64ad0c2d0652db69

  • SSDEEP

    393216:lNIvvMaH5macX7X52NWdXJq2TNhUXwplpMrfum77:lNs0aZqgY5rNq7

Score
10/10
sharkbotandroidbankerransomware

Malware Config

Extracted

Family

sharkbot

C2

http://statscodicefiscale.xyz/stats/

Targets

    • Target

      SharkBot.apk

    • Size

      14.1MB

    • MD5

      1f32aa3ad68eac774cfcaeb0cd84de4d

    • SHA1

      512f378b8821064d5b48ceb0624dd17eca673667

    • SHA256

      a56dacc093823dc1d266d68ddfba04b2265e613dcc4b69f350873b485b9e1f1c

    • SHA512

      ad66808102f0af441ffe7f18da3daed094d860930a70bb67e164d984b693b95f98fb51eff192404aac6c605e6a7351286b9e866f2d3567ce64ad0c2d0652db69

    • SSDEEP

      393216:lNIvvMaH5macX7X52NWdXJq2TNhUXwplpMrfum77:lNs0aZqgY5rNq7

    Score
    8/10
    bankerransomware

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps).

      banker

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks