Overview

overview

9

Static

static

7

iwantu.app_1.3.7.apk

android-9-x86

9

WebViewJav...dge.js

windows7-x64

1

WebViewJav...dge.js

windows10-2004-x64

1

videoCtrl.js

windows7-x64

1

videoCtrl.js

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    iwantu.app_1.3.7.apk

  • Size

    25.7MB

  • Sample

    230610-w82cbafe39

  • MD5

    f4a6e3edaf86172fdd2781f7d5a96832

  • SHA1

    6603860c2ccddbdc8755160f8f932ba3bf524077

  • SHA256

    f6845b53aabed32b1e71fb74554b2944a196b338bee597e578ef3f903d37e7d2

  • SHA512

    cf4297f69ccfa9181561902202e34b03f90c06fd92058b0734bd48f7a17da225d363332d34ce19cf073caedfc40e42f54085138e43941f77305efcfe5d0c33a0

  • SSDEEP

    393216:9DeDg2S7ViWtjciVqgEcoJllUKH0HZOI/WVeSzbLOp7pNbPPiVmr:d33xiWJcL5c4U5OI/lSzbMPbPqVmr

Score
9/10
androidevasionransomware

Malware Config

Targets

    • Target

      iwantu.app_1.3.7.apk

    • Size

      25.7MB

    • MD5

      f4a6e3edaf86172fdd2781f7d5a96832

    • SHA1

      6603860c2ccddbdc8755160f8f932ba3bf524077

    • SHA256

      f6845b53aabed32b1e71fb74554b2944a196b338bee597e578ef3f903d37e7d2

    • SHA512

      cf4297f69ccfa9181561902202e34b03f90c06fd92058b0734bd48f7a17da225d363332d34ce19cf073caedfc40e42f54085138e43941f77305efcfe5d0c33a0

    • SSDEEP

      393216:9DeDg2S7ViWtjciVqgEcoJllUKH0HZOI/WVeSzbLOp7pNbPPiVmr:d33xiWJcL5c4U5OI/lSzbMPbPqVmr

    Score
    9/10
    evasionransomware

    • Renames multiple (62) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Reads information about phone network operator.

    • Removes a system notification.

      evasion

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1

    • Target

      WebViewJavascriptBridge.js

    • Size

      6KB

    • MD5

      be67c0d78f87d4a10b58a86afc36ebb7

    • SHA1

      50c8c9561bc03dfb86c501e31b44daf91bb43f4f

    • SHA256

      15ebdc7933e6b51d94aed401479249fb3dc7119ac544b21eae718b25fedfce80

    • SHA512

      0f0c7eeaf141edf44a17b6467fda375b00bcfe6e4d9550428cc40fc157cce8b719e5ce6d1646fb772b3b266391d9aa588a92388f05d7887c00d584a92b5cb93d

    • SSDEEP

      96:fWWbWQ+yHrCVHnnZBmDch7Y6jYLyxLbjd/k4gBOB1cWGBYTr:OWbGorCnZB5hvFoBOBbGBOr

    Score
    1/10
    behavioral2behavioral3

    • Target

      videoCtrl.js

    • Size

      3KB

    • MD5

      6dc93bdf237b3dc0b4a351748279e4a9

    • SHA1

      cbb3d7d1bb00e7068500fed4fa7a4633527bc13a

    • SHA256

      e669f7cf6b4d848e9f9f3636a20016d462da0a0e4ffa4b3eba6710a7122b57e1

    • SHA512

      b611e25c22a4056e2756bffab44346b951322014cc0c385708a7d8fa268eb0142e2d81ce759ce1bedc35942a6440c2198d1b055c0a0e1a21ab93b524ee2a4b5a

    Score
    1/10
    behavioral4behavioral5

MITRE ATT&CK Matrix

Tasks