37034308b0e955903b99c1e6ff0eb6252176f42cb3159e7501e2966cbb9ef83a | Triage

Submit
Reports

Overview

overview

7

Static

static

7

CamScanner...OD.apk

android-9-x86

7

Sharing

General

Target

CamScanner_v6.33.5.2301170000_MOD.apk
Size

106.5MB
Sample

230203-fcf4haah88
MD5

63c2082b6488ba69a0ae069bb9fd5a4b
SHA1

21eb0c051e92e5a679e66c6dedd37975c259ca30
SHA256

37034308b0e955903b99c1e6ff0eb6252176f42cb3159e7501e2966cbb9ef83a
SHA512

0b79d7d2b30e6e8d403447074d548f1e782f6b8bc3925e7b57cc023dbea538c008046ce6974efca59786fd29c962b846db5722c8ee48d676d0559334d324545d
SSDEEP

1572864:xSiIyJm2/L/4NYYVtHyk2ug3aZoRDLZdF7wC2vGO6dZhJnfR97qY9E22I4y1DLEo:xSKElmihykjw1LZdFMuO6drD2zy1D6hO

Score

7^/10

android evasion ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

CamScanner_v6.33.5.2301170000_MOD.apk

Resource

android-x86-arm-20220823-en

evasion ransomware

android-9-x86

7 signatures

60 seconds

Malware Config

Targets

- Target
  
  CamScanner_v6.33.5.2301170000_MOD.apk
- Size
  
  106.5MB
- MD5
  
  63c2082b6488ba69a0ae069bb9fd5a4b
- SHA1
  
  21eb0c051e92e5a679e66c6dedd37975c259ca30
- SHA256
  
  37034308b0e955903b99c1e6ff0eb6252176f42cb3159e7501e2966cbb9ef83a
- SHA512
  
  0b79d7d2b30e6e8d403447074d548f1e782f6b8bc3925e7b57cc023dbea538c008046ce6974efca59786fd29c962b846db5722c8ee48d676d0559334d324545d
- SSDEEP
  
  1572864:xSiIyJm2/L/4NYYVtHyk2ug3aZoRDLZdF7wC2vGO6dZhJnfR97qY9E22I4y1DLEo:xSKElmihykjw1LZdFMuO6drD2zy1D6hO
Score

7^/10

evasion ransomware
- Acquires the wake lock.
- Checks Android system properties for emulator presence.
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Reads information about phone network operator.
- Removes a system notification.
  evasion
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

evasionransomware

© 2018-2024

Terms | Privacy