Overview

overview

9

Static

static

7

iwantu.app (2).apk

android-9-x86

9

baidumap_logo_h.png

android-9-x86

baidumap_logo_h.png

android-10-x64

baidumap_logo_h.png

android-11-x64

baidumap_logo_l.png

android-9-x86

baidumap_logo_l.png

android-10-x64

baidumap_logo_l.png

android-11-x64

compass_bg.png

android-9-x86

compass_bg.png

android-10-x64

compass_bg.png

android-11-x64

compass_pointer.png

android-9-x86

compass_pointer.png

android-10-x64

compass_pointer.png

android-11-x64

icon_direction_h.png

android-9-x86

icon_direction_h.png

android-10-x64

icon_direction_h.png

android-11-x64

icon_direction_l.png

android-9-x86

icon_direction_l.png

android-10-x64

icon_direction_l.png

android-11-x64

icon_direction_m.png

android-9-x86

icon_direction_m.png

android-10-x64

icon_direction_m.png

android-11-x64

icon_loc_light.png

android-9-x86

icon_loc_light.png

android-10-x64

icon_loc_light.png

android-11-x64

icon_loc_normal.png

android-9-x86

icon_loc_normal.png

android-10-x64

icon_loc_normal.png

android-11-x64

icon_map_position.png

android-9-x86

icon_map_position.png

android-10-x64

icon_map_position.png

android-11-x64

icon_marka_h.png

android-9-x86

Sharing

Copy URL Twitter E-mail

General

  • Target

    iwantu.app (2).apk

  • Size

    25.7MB

  • Sample

    230705-yelqwagh7t

  • MD5

    9aa7719a7ad28465fce67f387328aa64

  • SHA1

    5458f2d5b1d77a9a87490cf30e5e0e359fded897

  • SHA256

    d5a6a3f59649dee8aa9a3eac57abfc494b05c6cba5c0b03e30e858259c4d35fc

  • SHA512

    2d45e7f30b26d0d31ef903533f6d3de4f04c93ad4f6641fabb2441632b871421a71392d404f54feca844031e4989e893c17f069dfd8249e66b58b8a873445cee

  • SSDEEP

    786432:VkKeHfAtXC906hXzkge3U5OI/FnHPrJUo/:OVwK0WCE5OI/FnHP+8

Score
9/10
androidevasionransomware

Malware Config

Targets

    • Target

      iwantu.app (2).apk

    • Size

      25.7MB

    • MD5

      9aa7719a7ad28465fce67f387328aa64

    • SHA1

      5458f2d5b1d77a9a87490cf30e5e0e359fded897

    • SHA256

      d5a6a3f59649dee8aa9a3eac57abfc494b05c6cba5c0b03e30e858259c4d35fc

    • SHA512

      2d45e7f30b26d0d31ef903533f6d3de4f04c93ad4f6641fabb2441632b871421a71392d404f54feca844031e4989e893c17f069dfd8249e66b58b8a873445cee

    • SSDEEP

      786432:VkKeHfAtXC906hXzkge3U5OI/FnHPrJUo/:OVwK0WCE5OI/FnHP+8

    Score
    9/10
    evasionransomware

    • Renames multiple (72) files with added filename extension

      This suggests ransomware activity of encrypting all the files on the system.

      ransomware

    • Reads information about phone network operator.

    • Removes a system notification.

      evasion

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1

    • Target

      baidumap_logo_h.png

    • Size

      82B

    • MD5

      465ea8b30414ce8ed4efea2f594c7c4b

    • SHA1

      fbb28071dacfc08b39648a0f16b62d7464155239

    • SHA256

      cfad749fbcec2fadedc6f47289e9679defacfac386125bc88643ed1275518eaa

    • SHA512

      2f50a6e32ef06f72e520bcd0f55ce5f4db759eae5bddfb8f6089ba2733e0c2a3399397f4a18ca6f0b9bab2e459276d8306e09603ad1128d83ee3552b5fd557ce

    Score
    1/10
    behavioral2behavioral3behavioral4

    • Target

      baidumap_logo_l.png

    • Size

      82B

    • MD5

      465ea8b30414ce8ed4efea2f594c7c4b

    • SHA1

      fbb28071dacfc08b39648a0f16b62d7464155239

    • SHA256

      cfad749fbcec2fadedc6f47289e9679defacfac386125bc88643ed1275518eaa

    • SHA512

      2f50a6e32ef06f72e520bcd0f55ce5f4db759eae5bddfb8f6089ba2733e0c2a3399397f4a18ca6f0b9bab2e459276d8306e09603ad1128d83ee3552b5fd557ce

    Score
    1/10
    behavioral5behavioral6behavioral7

    • Target

      compass_bg.png

    • Size

      82B

    • MD5

      465ea8b30414ce8ed4efea2f594c7c4b

    • SHA1

      fbb28071dacfc08b39648a0f16b62d7464155239

    • SHA256

      cfad749fbcec2fadedc6f47289e9679defacfac386125bc88643ed1275518eaa

    • SHA512

      2f50a6e32ef06f72e520bcd0f55ce5f4db759eae5bddfb8f6089ba2733e0c2a3399397f4a18ca6f0b9bab2e459276d8306e09603ad1128d83ee3552b5fd557ce

    Score
    1/10
    behavioral10behavioral8behavioral9

    • Target

      compass_pointer.png

    • Size

      82B

    • MD5

      465ea8b30414ce8ed4efea2f594c7c4b

    • SHA1

      fbb28071dacfc08b39648a0f16b62d7464155239

    • SHA256

      cfad749fbcec2fadedc6f47289e9679defacfac386125bc88643ed1275518eaa

    • SHA512

      2f50a6e32ef06f72e520bcd0f55ce5f4db759eae5bddfb8f6089ba2733e0c2a3399397f4a18ca6f0b9bab2e459276d8306e09603ad1128d83ee3552b5fd557ce

    Score
    1/10
    behavioral11behavioral12behavioral13

    • Target

      icon_direction_h.png

    • Size

      82B

    • MD5

      465ea8b30414ce8ed4efea2f594c7c4b

    • SHA1

      fbb28071dacfc08b39648a0f16b62d7464155239

    • SHA256

      cfad749fbcec2fadedc6f47289e9679defacfac386125bc88643ed1275518eaa

    • SHA512

      2f50a6e32ef06f72e520bcd0f55ce5f4db759eae5bddfb8f6089ba2733e0c2a3399397f4a18ca6f0b9bab2e459276d8306e09603ad1128d83ee3552b5fd557ce

    Score
    1/10
    behavioral14behavioral15behavioral16

    • Target

      icon_direction_l.png

    • Size

      82B

    • MD5

      465ea8b30414ce8ed4efea2f594c7c4b

    • SHA1

      fbb28071dacfc08b39648a0f16b62d7464155239

    • SHA256

      cfad749fbcec2fadedc6f47289e9679defacfac386125bc88643ed1275518eaa

    • SHA512

      2f50a6e32ef06f72e520bcd0f55ce5f4db759eae5bddfb8f6089ba2733e0c2a3399397f4a18ca6f0b9bab2e459276d8306e09603ad1128d83ee3552b5fd557ce

    Score
    1/10
    behavioral17behavioral18behavioral19

    • Target

      icon_direction_m.png

    • Size

      82B

    • MD5

      465ea8b30414ce8ed4efea2f594c7c4b

    • SHA1

      fbb28071dacfc08b39648a0f16b62d7464155239

    • SHA256

      cfad749fbcec2fadedc6f47289e9679defacfac386125bc88643ed1275518eaa

    • SHA512

      2f50a6e32ef06f72e520bcd0f55ce5f4db759eae5bddfb8f6089ba2733e0c2a3399397f4a18ca6f0b9bab2e459276d8306e09603ad1128d83ee3552b5fd557ce

    Score
    1/10
    behavioral20behavioral21behavioral22

    • Target

      icon_loc_light.png

    • Size

      82B

    • MD5

      465ea8b30414ce8ed4efea2f594c7c4b

    • SHA1

      fbb28071dacfc08b39648a0f16b62d7464155239

    • SHA256

      cfad749fbcec2fadedc6f47289e9679defacfac386125bc88643ed1275518eaa

    • SHA512

      2f50a6e32ef06f72e520bcd0f55ce5f4db759eae5bddfb8f6089ba2733e0c2a3399397f4a18ca6f0b9bab2e459276d8306e09603ad1128d83ee3552b5fd557ce

    Score
    1/10
    behavioral23behavioral24behavioral25

    • Target

      icon_loc_normal.png

    • Size

      82B

    • MD5

      465ea8b30414ce8ed4efea2f594c7c4b

    • SHA1

      fbb28071dacfc08b39648a0f16b62d7464155239

    • SHA256

      cfad749fbcec2fadedc6f47289e9679defacfac386125bc88643ed1275518eaa

    • SHA512

      2f50a6e32ef06f72e520bcd0f55ce5f4db759eae5bddfb8f6089ba2733e0c2a3399397f4a18ca6f0b9bab2e459276d8306e09603ad1128d83ee3552b5fd557ce

    Score
    1/10
    behavioral26behavioral27behavioral28

    • Target

      icon_map_position.png

    • Size

      82B

    • MD5

      465ea8b30414ce8ed4efea2f594c7c4b

    • SHA1

      fbb28071dacfc08b39648a0f16b62d7464155239

    • SHA256

      cfad749fbcec2fadedc6f47289e9679defacfac386125bc88643ed1275518eaa

    • SHA512

      2f50a6e32ef06f72e520bcd0f55ce5f4db759eae5bddfb8f6089ba2733e0c2a3399397f4a18ca6f0b9bab2e459276d8306e09603ad1128d83ee3552b5fd557ce

    Score
    1/10
    behavioral29behavioral30behavioral31

    • Target

      icon_marka_h.png

    • Size

      82B

    • MD5

      465ea8b30414ce8ed4efea2f594c7c4b

    • SHA1

      fbb28071dacfc08b39648a0f16b62d7464155239

    • SHA256

      cfad749fbcec2fadedc6f47289e9679defacfac386125bc88643ed1275518eaa

    • SHA512

      2f50a6e32ef06f72e520bcd0f55ce5f4db759eae5bddfb8f6089ba2733e0c2a3399397f4a18ca6f0b9bab2e459276d8306e09603ad1128d83ee3552b5fd557ce

    Score
    1/10
    behavioral32

MITRE ATT&CK Matrix

Tasks