e8fd7cf118414a2c0c83aeaea84cd5a4b3cd257bd65c7557d654adfd23f398c0 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

GBWhatsApp...20.apk

android-9-x86

7

Sharing

Copy URL Twitter E-mail

General

Target

GBWhatsApp_Pro_v17.20.rar
Size

46.0MB
Sample

230107-xwj3yaed55
MD5

319b7a136033972e899c97c244b48390
SHA1

824c1d6eab6635e34a83826c360f9c34ff68a140
SHA256

e8fd7cf118414a2c0c83aeaea84cd5a4b3cd257bd65c7557d654adfd23f398c0
SHA512

9ab8c9d36209483b48e11ae2c11d63a6532f1d70bda527f310021ed2304053441e27202def940a19f64ec78c2eaef304b72d405093db3121f36ccd892f23e742
SSDEEP

786432:58Nc+XoF2a58+uHwWbruYncJ/QCG+nS6FhLZx60NFI15mbQl1LxYJhJ1/mtiH5aH:iXCW3rGVvGULZxLI3mbQ3xuDm2vuafJg

Score

7^/10

android evasion ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

GBWhatsApp_Pro_v17.20.apk

Resource

android-x86-arm-20220823-en

evasion ransomware

android-9-x86

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  GBWhatsApp_Pro_v17.20.apk
- Size
  
  56.5MB
- MD5
  
  59d69ca8306b2f3ab971c84d8f10d1e4
- SHA1
  
  4829bd65032289bc2fe655e96c3b1d33a0d27f13
- SHA256
  
  7a8107a5ec7332e05d262b808065109ef05abaaff5f03f4e5b1d95d8b418d2c5
- SHA512
  
  6a08403e4491bea4e5b82f21ce54c581d6ca8aa6360abd648085e40b9ba145d69786c24d72aa2ab3061d64303d480ef2706cae16cc6a793142c4079161ffe906
- SSDEEP
  
  786432:kjRf1XAQDi+HsR+In/PZ2WkkwxvTxRL423NqBzeOUIY260sV2kmaCciv3fAEFZX:kFf1XXDi+MRn2Tr/4bQOSzVdHCcK3nX
Score

7^/10

evasion ransomware
- Acquires the wake lock.
- Reads information about phone network operator.
- Removes a system notification.
  evasion
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

evasionransomware

© 2018-2025

Terms | Privacy