Overview

overview

8

Static

static

7

5ff7214bdf...73.apk

android-9-x86

8

5ff7214bdf...73.apk

android-10-x64

6

5ff7214bdf...73.apk

android-11-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5ff7214bdf16415f73de89eb3629fbfadbab4d7927307acefdc4e2b737951e73

  • Size

    546KB

  • Sample

    221127-r2nqesed24

  • MD5

    0f690e45b5cc7cc38609727e682669fa

  • SHA1

    5948c0f352f1120190d1ca4eaf5811ff6ee6db83

  • SHA256

    5ff7214bdf16415f73de89eb3629fbfadbab4d7927307acefdc4e2b737951e73

  • SHA512

    68efd4195fad8dfe08e7347c78759bbb27ce9063f2ab10a8c7595601456fa04992389668159fcb0669feb482c0c265abb8bfa789038f55363379e937dd2f89d8

  • SSDEEP

    12288:q2FxTC8ctDR9UwzcuIXVyapeDR4PzG5oF/X7516Pedg/Zfu:q2bu9D8woTFyawmPWoF/WPedOu

Score
8/10
androidbankerevasionransomware

Malware Config

Targets

    • Target

      5ff7214bdf16415f73de89eb3629fbfadbab4d7927307acefdc4e2b737951e73

    • Size

      546KB

    • MD5

      0f690e45b5cc7cc38609727e682669fa

    • SHA1

      5948c0f352f1120190d1ca4eaf5811ff6ee6db83

    • SHA256

      5ff7214bdf16415f73de89eb3629fbfadbab4d7927307acefdc4e2b737951e73

    • SHA512

      68efd4195fad8dfe08e7347c78759bbb27ce9063f2ab10a8c7595601456fa04992389668159fcb0669feb482c0c265abb8bfa789038f55363379e937dd2f89d8

    • SSDEEP

      12288:q2FxTC8ctDR9UwzcuIXVyapeDR4PzG5oF/X7516Pedg/Zfu:q2bu9D8woTFyawmPWoF/WPedOu

    Score
    8/10
    bankerevasionransomware

    • Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps).

      banker

    • Reads information about phone network operator.

    • Removes a system notification.

      evasion

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1behavioral2behavioral3

MITRE ATT&CK Matrix

Tasks