4ead8a32f2bed3b5551bfd23458369a684745925934b924c3a59b6141ab56660 | Triage

Submit
Reports

Overview

overview

7

Static

static

1

WannaCry S...om.apk

android-9-x86

7

WannaCry S...om.apk

android-10-x64

7

Sharing

General

Target

WannaCry Simulator_1.0.2_apkcombo.com.apk
Size

22.6MB
Sample

230328-yyplwaeh3z
MD5

f54148f45cbe8652337b5d50fe8de074
SHA1

71ae6a21597f642c27d31a1de1ed494bba1a9148
SHA256

4ead8a32f2bed3b5551bfd23458369a684745925934b924c3a59b6141ab56660
SHA512

197eb9c9ba250af41e69180a10e300f4e7101b68fb826fe95be738153b5fbd9b5a6991f1d648c2bfdbdb39b8c59bc3011307781821f29f494e94c58205eb272a
SSDEEP

393216:nNcYz1Tz0dfbF8W9MVjm7vANRj5UFTxcop1XOL6jYaI8qkhDK/gtGb/BDnkxS72u:nq81YeW9MVjm7MR9U5moKL8ZbKNjBDkk

Score

7^/10

android evasion ransomware

Static task

static1

Behavioral task

behavioral1

Sample

WannaCry Simulator_1.0.2_apkcombo.com.apk

Resource

android-x86-arm-20220823-en

evasion ransomware

android-9-x86

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

WannaCry Simulator_1.0.2_apkcombo.com.apk

Resource

android-x64-20220823-en

android-10-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  WannaCry Simulator_1.0.2_apkcombo.com.apk
- Size
  
  22.6MB
- MD5
  
  f54148f45cbe8652337b5d50fe8de074
- SHA1
  
  71ae6a21597f642c27d31a1de1ed494bba1a9148
- SHA256
  
  4ead8a32f2bed3b5551bfd23458369a684745925934b924c3a59b6141ab56660
- SHA512
  
  197eb9c9ba250af41e69180a10e300f4e7101b68fb826fe95be738153b5fbd9b5a6991f1d648c2bfdbdb39b8c59bc3011307781821f29f494e94c58205eb272a
- SSDEEP
  
  393216:nNcYz1Tz0dfbF8W9MVjm7vANRj5UFTxcop1XOL6jYaI8qkhDK/gtGb/BDnkxS72u:nq81YeW9MVjm7MR9U5moKL8ZbKNjBDkk
Score

7^/10

evasion ransomware
- Checks Android system properties for emulator presence.
- Checks Qemu related system properties.
  Checks for Android system properties related to Qemu for Emulator detection.
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Removes a system notification.
  evasion
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

evasionransomware

behavioral2

© 2018-2024

Terms | Privacy