19cb4a5cb5a3ba6bb92b47aec8fd5c4a0a419e6f2fa50d4f72c8f3622222e1d6 | Triage

Resubmissions

16/08/2023, 13:43

230816-q1q9gsda4z 7

14/08/2023, 11:58

230814-n5a2ysbh37 7

Sharing

General

Target

YUNMAI_3.8.1_Apkpure.apk
Size

24.8MB
Sample

230814-n5a2ysbh37
MD5

ec85ed3586cdcc63db92eb10754391f7
SHA1

daca708947bfb1adb60f25c5df0376e8687f26a5
SHA256

19cb4a5cb5a3ba6bb92b47aec8fd5c4a0a419e6f2fa50d4f72c8f3622222e1d6
SHA512

6da48adc0cd3415aef82deca5b200eb5c782706cd9b11e6172a6b77f92e2ab303967791d8a7ad9f9c1cb45eb4c3b1c1be7d506c47144caeb4258e28e9fb82d2f
SSDEEP

393216:fVVc0QgeMmmfz0GEzZLiXArdC3SiBcvjahil3IGQUWb05j0peDxtRm2NRGa:9XFeF6l6icdoSiwja0lYGnWe4GRm6

Score

7^/10

android evasion ransomware

Malware Config

Targets

- Target
  
  YUNMAI_3.8.1_Apkpure.apk
- Size
  
  24.8MB
- MD5
  
  ec85ed3586cdcc63db92eb10754391f7
- SHA1
  
  daca708947bfb1adb60f25c5df0376e8687f26a5
- SHA256
  
  19cb4a5cb5a3ba6bb92b47aec8fd5c4a0a419e6f2fa50d4f72c8f3622222e1d6
- SHA512
  
  6da48adc0cd3415aef82deca5b200eb5c782706cd9b11e6172a6b77f92e2ab303967791d8a7ad9f9c1cb45eb4c3b1c1be7d506c47144caeb4258e28e9fb82d2f
- SSDEEP
  
  393216:fVVc0QgeMmmfz0GEzZLiXArdC3SiBcvjahil3IGQUWb05j0peDxtRm2NRGa:9XFeF6l6icdoSiwja0lYGnWe4GRm6
Score

6^/10

evasion ransomware
- Reads information about phone network operator.
- Removes a system notification.
  evasion
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1
- Target
  
  libwbsafeedit
- Size
  
  17KB
- MD5
  
  87727abbdac20991a8087e5ff6914859
- SHA1
  
  fd63f0d7e0e5801ad132b7ab1f2bbec6882dbc84
- SHA256
  
  11910c7acc239a471007493ff918212c8213a5bef046d5967021447d6b4b70e0
- SHA512
  
  1969c3ba59617648e285384b0a407ae2dd9c454f89ad30dbb0e80f0c6b9cd6cc81b302f0e85338775ed8fcb5a0a22af14dbd99717488bf17b10bb23323106385
- SSDEEP
  
  192:Jds5+qUXQADzeWKtzbEdcWduGjmesPRgEQQMjpMTfXe+vdvxG1J:jsEAlbEFYGCPiwe+Vvxe
Score

1^/10
behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

evasionransomware

behavioral2