56fbdc6bac754e88e280f9f5dd874890b8d70ac16dd7c697ee22b90456064a06 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

honeygain_app.apk

android-9-x86

7

honeygain_app.apk

android-11-x64

7

Sharing

General

Target

honeygain_app.apk
Size

7.6MB
Sample

230508-ar4kfsab5w
MD5

d9ad289e5e85967b5075cdcb22b81c9a
SHA1

23a56af72ab88f343f06a1a6675bf06d9d66ff1c
SHA256

56fbdc6bac754e88e280f9f5dd874890b8d70ac16dd7c697ee22b90456064a06
SHA512

5510733684828294f533c3075d807fa85c9cdf8eb8433cbb669ae53539a3a0f186a57a110fe136544aff1a4a3e9728670f3576c7aa2c5c3027dc984cb82692ef
SSDEEP

196608:xwk8zPbiyVw8k5DFunWJra3ZwLqxjUEdkK3:xwk8zeyVw8KunOrapwLijt

Score

7^/10

android evasion ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

honeygain_app.apk

Resource

android-x86-arm-20220823-en

android-9-x86

3 signatures

1800 seconds

Behavioral task

behavioral2

Sample

honeygain_app.apk

Resource

android-x64-arm64-20220823-en

evasion ransomware

android-11-x64

4 signatures

1800 seconds

Malware Config

Targets

- Target
  
  honeygain_app.apk
- Size
  
  7.6MB
- MD5
  
  d9ad289e5e85967b5075cdcb22b81c9a
- SHA1
  
  23a56af72ab88f343f06a1a6675bf06d9d66ff1c
- SHA256
  
  56fbdc6bac754e88e280f9f5dd874890b8d70ac16dd7c697ee22b90456064a06
- SHA512
  
  5510733684828294f533c3075d807fa85c9cdf8eb8433cbb669ae53539a3a0f186a57a110fe136544aff1a4a3e9728670f3576c7aa2c5c3027dc984cb82692ef
- SSDEEP
  
  196608:xwk8zPbiyVw8k5DFunWJra3ZwLqxjUEdkK3:xwk8zeyVw8KunOrapwLijt
Score

7^/10

ransomware evasion
- Acquires the wake lock.
- Reads information about phone network operator.
- Requests disabling of battery optimizations (often used to enable hiding in the background).
  evasion
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

evasionransomware

© 2018-2025

Terms | Privacy