5d67ecd60d9d7a21a8250fdb2f7889043c970065b511fa0bb4745f154d29ffbe | Triage

Submit
Reports

Overview

overview

7

Static

static

7

osu_droid_...se.apk

android-9-x86

7

osu_droid_...se.apk

android-11-x64

7

Sharing

General

Target

osu_droid_1.6.7_release.apk
Size

18.2MB
Sample

230202-w98g1sff5x
MD5

52919ab4264424cf7f9f456ed2198ba5
SHA1

4c849a5c576e0983efabdf96c447547fb4d4fad7
SHA256

5d67ecd60d9d7a21a8250fdb2f7889043c970065b511fa0bb4745f154d29ffbe
SHA512

6a2f641964731fefb1be6591efde1b908fd7eedde97212548007ca4b3fa33745e3b5749976a3918d6accacb4b249d32717ea6587396a36369813cfdb3d0b4e36
SSDEEP

393216:wNhIL8Yw0uRp5g/p4CGVD4/qRJkeXPwLdI:0YwrTRC2D4/qIeX4C

Score

7^/10

android ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

osu_droid_1.6.7_release.apk

Resource

android-x86-arm-20220823-en

android-9-x86

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

osu_droid_1.6.7_release.apk

Resource

android-x64-arm64-20220823-en

android-11-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  osu_droid_1.6.7_release.apk
- Size
  
  18.2MB
- MD5
  
  52919ab4264424cf7f9f456ed2198ba5
- SHA1
  
  4c849a5c576e0983efabdf96c447547fb4d4fad7
- SHA256
  
  5d67ecd60d9d7a21a8250fdb2f7889043c970065b511fa0bb4745f154d29ffbe
- SHA512
  
  6a2f641964731fefb1be6591efde1b908fd7eedde97212548007ca4b3fa33745e3b5749976a3918d6accacb4b249d32717ea6587396a36369813cfdb3d0b4e36
- SSDEEP
  
  393216:wNhIL8Yw0uRp5g/p4CGVD4/qRJkeXPwLdI:0YwrTRC2D4/qIeX4C
Score

7^/10

ransomware
- Acquires the wake lock.
- Checks known Qemu files.
  Checks for known Qemu files that exist on Android virtual device images.
- Checks known Qemu pipes.
  Checks for known pipes used by the Android emulator to communicate with the host.
- Reads information about phone network operator.
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy