5f78c2f536bff9ee5f83a259f3270e57aa89e751c2efd3bb1c704d98fb4c7c9d | Triage

Submit
Reports

Overview

overview

8

Static

static

7

5f78c2f536...9d.apk

android-9-x86

8

Sharing

General

Target

5f78c2f536bff9ee5f83a259f3270e57aa89e751c2efd3bb1c704d98fb4c7c9d
Size

637KB
Sample

221126-rmyxvaab66
MD5

1ddc2b61b1ea2c5c830ca0bc29065f65
SHA1

ff070490ea4a9f6d1ca632c85097faf501e2f0df
SHA256

5f78c2f536bff9ee5f83a259f3270e57aa89e751c2efd3bb1c704d98fb4c7c9d
SHA512

a93715bdde01e16334d7924fae6a937bfe245e4675ce31ddbc4b46e54003d813d0c8b2069a8400f2e27e4b5ecc353a9f0281f9958b858be8b2c1a8b535216c4d
SSDEEP

12288:jgFKPs6PsPhTx8EkCOXTRdS02Q6XRSnn329Hfdcur1yBUcJHsxPDeH3coET:jgFAnscNXVdSDQ6BUn32d1Zr1yCcyDT

Score

8^/10

android infostealer ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

5f78c2f536bff9ee5f83a259f3270e57aa89e751c2efd3bb1c704d98fb4c7c9d.apk

Resource

android-x86-arm-20220823-en

infostealer ransomware

android-9-x86

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  5f78c2f536bff9ee5f83a259f3270e57aa89e751c2efd3bb1c704d98fb4c7c9d
- Size
  
  637KB
- MD5
  
  1ddc2b61b1ea2c5c830ca0bc29065f65
- SHA1
  
  ff070490ea4a9f6d1ca632c85097faf501e2f0df
- SHA256
  
  5f78c2f536bff9ee5f83a259f3270e57aa89e751c2efd3bb1c704d98fb4c7c9d
- SHA512
  
  a93715bdde01e16334d7924fae6a937bfe245e4675ce31ddbc4b46e54003d813d0c8b2069a8400f2e27e4b5ecc353a9f0281f9958b858be8b2c1a8b535216c4d
- SSDEEP
  
  12288:jgFKPs6PsPhTx8EkCOXTRdS02Q6XRSnn329Hfdcur1yBUcJHsxPDeH3coET:jgFAnscNXVdSDQ6BUn32d1Zr1yCcyDT
Score

8^/10

infostealer ransomware
- Requests cell location
  Uses Android APIs to to get current cell location.
- Reads the content of SMS inbox messages.
  infostealer
- Reads information about phone network operator.
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

infostealerransomware

© 2018-2024

Terms | Privacy