Overview

overview

10

Static

static

7

mobtes.apk

android-9-x86

10

mobtes.apk

android-10-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    mobtes.zip

  • Size

    39.8MB

  • Sample

    221231-hqdawace61

  • MD5

    c2241ff0a5697036c029931074a5bedd

  • SHA1

    c163a98e7cd10c4ac6b9831b6ba4ae58e3b63f54

  • SHA256

    cc841a48c5dabadb854bdb016a5e8e719423e0349873a10563aff366c7c0c0ce

  • SHA512

    a89647dc4c94e5aa4c916cdfe7591dbb24aa937eaedc4d830b979a0b3a266223d8742f052ffb45bdcbdb257f62f7f4335eb4b96553432f341c972979d428f255

  • SSDEEP

    786432:aWj5DeZ+nDkFESQhu2wnozzeA77PdWPRkj13qzd11TPxVuk5cYsau8uMby7UqR7m:aUVBSQEbqL/16Rkpazj1Tp1yYNKZUya

Score
10/10
agent_smithadwareandroidransomware

Malware Config

Targets

    • Target

      mobtes.apk

    • Size

      40.1MB

    • MD5

      fbcd32d55839acc3bc9483fc56eb65ac

    • SHA1

      fb57fd6f7224ab00e02e427cfa56889692aac255

    • SHA256

      387341d7438c649bf2345b751a9b5ed445651dfae1e1966e08977c0a4b129207

    • SHA512

      f61464cd2b536604d2338c6229a101e7fbeb6cebbe22ee7689e55b395adc69a31713c4380fb445c4c42e71219d43e004b6151a9e64c01896713828ce28ecd6b4

    • SSDEEP

      786432:89qefFrF6o0ul3j6HulZSKupEaD7cW3uIALuaJbk/BAU7DNnjki8xxQVcjwihfRy:8/rB043j6oj0Z3nTgbkJH7hnwrxxRw4M

    Score
    10/10
    agent_smithadwareransomware

    • Agent smith

      Agent smith is a modular adware that installs malicious ADs into legitimate applications.

      adwareagent_smith

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Reads information about phone network operator.

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks