17213856eb36a4cffc6690d344738e9471440d23c8daeb9d378edad0745b7fd6 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

YOWA9.52F_...DS.apk

android-9-x86

7

Sharing

General

Target

YOWA9.52F_By.FouadMODS.apk
Size

56.2MB
Sample

230203-f4wm9sef4s
MD5

6d4558467f581896a777a76a9c3b6829
SHA1

df70a3b9f65002437f4332769ca046af07f23178
SHA256

17213856eb36a4cffc6690d344738e9471440d23c8daeb9d378edad0745b7fd6
SHA512

ecd12453a028e284a42feaee27a295c7b842ecdf242303d01fecb5ebd59b075f28489073e18320f28e635aec02564006b0669106a9fe752ff988c19a30e2968d
SSDEEP

786432:6E6M/TlQyRgqXj8zaHc4O+a1K425xA0j7RCDZ9vz4r+jxeRqBzeOUIEwQVV:Rj/ToqWZ1K4Qj70Db4SVzQOWlVV

Score

7^/10

android evasion ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

YOWA9.52F_By.FouadMODS.apk

Resource

android-x86-arm-20220823-en

evasion ransomware

android-9-x86

4 signatures

600 seconds

Malware Config

Targets

- Target
  
  YOWA9.52F_By.FouadMODS.apk
- Size
  
  56.2MB
- MD5
  
  6d4558467f581896a777a76a9c3b6829
- SHA1
  
  df70a3b9f65002437f4332769ca046af07f23178
- SHA256
  
  17213856eb36a4cffc6690d344738e9471440d23c8daeb9d378edad0745b7fd6
- SHA512
  
  ecd12453a028e284a42feaee27a295c7b842ecdf242303d01fecb5ebd59b075f28489073e18320f28e635aec02564006b0669106a9fe752ff988c19a30e2968d
- SSDEEP
  
  786432:6E6M/TlQyRgqXj8zaHc4O+a1K425xA0j7RCDZ9vz4r+jxeRqBzeOUIEwQVV:Rj/ToqWZ1K4Qj70Db4SVzQOWlVV
Score

7^/10

evasion ransomware
- Acquires the wake lock.
- Reads information about phone network operator.
- Removes a system notification.
  evasion
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

evasionransomware

© 2018-2024

Terms | Privacy