9c4479b2b5d96c7359b027f99e0c9efca16fd6a99c8685001f57ac42f729504e | Triage

Submit
Reports

Overview

overview

7

Static

static

7

HOT-CHAT.apk

android-9-x86

7

Resubmissions

12/05/2023, 08:30

230512-kejpmacd46 7

12/05/2023, 08:26

230512-kb7bhsef3w 7

Sharing

General

Target

HOT-CHAT.apk
Size

44.5MB
Sample

230512-kb7bhsef3w
MD5

5c2eba23e1ed4f89b7795441625c962a
SHA1

badea9e3614f28f5ec9566b40895ea7d508c0d43
SHA256

9c4479b2b5d96c7359b027f99e0c9efca16fd6a99c8685001f57ac42f729504e
SHA512

e78c0bc2cfcec1a947b0c63a88b4b708d0933b894b1f84ccb9dede49295e72edbf7d33060ad370f0fd6077e97f5bf25bd43fdca7e7b45d4e1bd4d28b6e2885cc
SSDEEP

786432:9QhaCgJp+rMhA44yUt36JKrWHkZCRAp4gJQIv1yKR6CnrA/h7ZdRZ8e1YIAgzyHC:+ha7/AmAIUIwr1ZCRlg9BHnUFZpHLmHC

Score

7^/10

android evasion ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

HOT-CHAT.apk

Resource

android-x86-arm-20220823-en

evasion ransomware

android-9-x86

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  HOT-CHAT.apk
- Size
  
  44.5MB
- MD5
  
  5c2eba23e1ed4f89b7795441625c962a
- SHA1
  
  badea9e3614f28f5ec9566b40895ea7d508c0d43
- SHA256
  
  9c4479b2b5d96c7359b027f99e0c9efca16fd6a99c8685001f57ac42f729504e
- SHA512
  
  e78c0bc2cfcec1a947b0c63a88b4b708d0933b894b1f84ccb9dede49295e72edbf7d33060ad370f0fd6077e97f5bf25bd43fdca7e7b45d4e1bd4d28b6e2885cc
- SSDEEP
  
  786432:9QhaCgJp+rMhA44yUt36JKrWHkZCRAp4gJQIv1yKR6CnrA/h7ZdRZ8e1YIAgzyHC:+ha7/AmAIUIwr1ZCRlg9BHnUFZpHLmHC
Score

7^/10

evasion ransomware
- Checks known Qemu pipes.
  Checks for known pipes used by the Android emulator to communicate with the host.
- Reads information about phone network operator.
- Removes a system notification.
  evasion
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

evasionransomware

© 2018-2025

Terms | Privacy