General
-
Target
de52345ffecbd1403ec15ff8ede46ef4.bin
-
Size
66MB
-
Sample
230610-c2afgaeg7w
-
MD5
de52345ffecbd1403ec15ff8ede46ef4
-
SHA1
76d94fda2a13d7c1285678e15a0c535bc432d7a9
-
SHA256
87e0b7bfab1270552e22d49af1880c7b9db3fa49460aee036d17357d4aa3917f
-
SHA512
5153d3dcf789569a659906117362756ce31da62ba33f4161b1868d5d5cf67282e5e075c28eeefae98ec481d31c2c598c83e43521e084f14f17e39f2119eca2ab
-
SSDEEP
786432:y5JF9+eU4tftbtM0IP2muNEvRKt+kxGTgAMSFNdMv9lSb2LnIw4VWk5yPE:ezYeffhtvmWNEvY4kxZofdMlkKLn2ry8
Static task
static1
Behavioral task
behavioral1
Sample
de52345ffecbd1403ec15ff8ede46ef4.apk
Resource
android-x86-arm-20220823-en
Behavioral task
behavioral2
Sample
licenses.html
Resource
win7-20230220-en
Behavioral task
behavioral3
Sample
licenses.html
Resource
win10v2004-20230220-en
Behavioral task
behavioral4
Sample
quicksilverCardAutomationInterface.js
Resource
win7-20230220-en
Behavioral task
behavioral5
Sample
quicksilverCardAutomationInterface.js
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
de52345ffecbd1403ec15ff8ede46ef4.bin
-
Size
66MB
-
MD5
de52345ffecbd1403ec15ff8ede46ef4
-
SHA1
76d94fda2a13d7c1285678e15a0c535bc432d7a9
-
SHA256
87e0b7bfab1270552e22d49af1880c7b9db3fa49460aee036d17357d4aa3917f
-
SHA512
5153d3dcf789569a659906117362756ce31da62ba33f4161b1868d5d5cf67282e5e075c28eeefae98ec481d31c2c598c83e43521e084f14f17e39f2119eca2ab
-
SSDEEP
786432:y5JF9+eU4tftbtM0IP2muNEvRKt+kxGTgAMSFNdMv9lSb2LnIw4VWk5yPE:ezYeffhtvmWNEvY4kxZofdMlkKLn2ry8
Score9/10-
Renames multiple (58) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Reads information about phone network operator.
-
-
-
Target
licenses.xhtml
-
Size
1MB
-
MD5
e51c452e3c0a5322570840f145bec86f
-
SHA1
272fd93ef8bc30ad02879ef245d626b80dad9d6b
-
SHA256
0dd6d560372744592aced2de9424b81a3f1b14a7564ed44f60d2ba471fad48b1
-
SHA512
c6f18f42bd764820d1e1554074627c33674f41e044e8bb171a27a9279af8323705253bb1107c1fd3b928842fbbacc93c01059c6953396738160857d968fad8fb
-
SSDEEP
12288:q3e3P3D34353/3q3q2w2S303w3e3w3a343H3S32323+3n393C38303J3l3f3j3S+:pQq
Score1/10 -
-
-
Target
quicksilverCardAutomationInterface.js
-
Size
2KB
-
MD5
21b3acc1f1b722c2f3509d8a3ee06f47
-
SHA1
0e537ea7ca9bb24d50cad2cd6c42a2cf959132ac
-
SHA256
122af0775abfe1885ebb036ef34231ff4a9e170bc301c42919802c6c87118b67
-
SHA512
df290df1e5462a8113a3ea5426cfd11ab9b8983e1880a9967667e0bf1e5734e6a1025021cbe53781c919371fd40b3411bc1470196b08a6a431670072d9bf533e
Score1/10 -