Overview

overview

7

Static

static

7

Roborock_4...re.apk

android-9-x86

6

captcha_day.html

windows7-x64

1

captcha_day.html

windows10-2004-x64

1

captcha_night.html

windows7-x64

1

captcha_night.html

windows10-2004-x64

1

darkmode.js

windows7-x64

1

darkmode.js

windows10-2004-x64

1

detect.vbs

windows7-x64

1

detect.vbs

windows10-2004-x64

1

sr.vbs

windows7-x64

1

sr.vbs

windows10-2004-x64

1

Resubmissions

16-08-2023 13:38

230816-qxkmjada3s 7

16-08-2023 13:36

230816-qwlhfach91 7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Roborock_4.0.99_Apkpure.apk

  • Size

    36.0MB

  • Sample

    230816-qwlhfach91

  • MD5

    e0ade3a1721a7e3ed77a5e0ae6e9bb2b

  • SHA1

    1f96aec4b1ce7658b03e115b52ec292bee5744b8

  • SHA256

    b12893ad5628c10e631016d8fee377886fdf789ff2cd57a0fdac1abe5864f03a

  • SHA512

    d838563317a6efdcc5fe1ed81d73dd75f9ccef8a14f66feecf837260fc0c52cccdfee0b19b92904434db189c19b6cedcabdfacb1a09a5cfb95f36d2d8676a5cd

  • SSDEEP

    786432:3HZQGHBG6Epm0ZPkB6TNJuammFGpDyqbtN2yR8Wz6z8EhwgCkSvb:XGGhG6a19kBUNs6FMbtN2qjOdwgCPb

Score
7/10
androidevasionransomware

Malware Config

Targets

    • Target

      Roborock_4.0.99_Apkpure.apk

    • Size

      36.0MB

    • MD5

      e0ade3a1721a7e3ed77a5e0ae6e9bb2b

    • SHA1

      1f96aec4b1ce7658b03e115b52ec292bee5744b8

    • SHA256

      b12893ad5628c10e631016d8fee377886fdf789ff2cd57a0fdac1abe5864f03a

    • SHA512

      d838563317a6efdcc5fe1ed81d73dd75f9ccef8a14f66feecf837260fc0c52cccdfee0b19b92904434db189c19b6cedcabdfacb1a09a5cfb95f36d2d8676a5cd

    • SSDEEP

      786432:3HZQGHBG6Epm0ZPkB6TNJuammFGpDyqbtN2yR8Wz6z8EhwgCkSvb:XGGhG6a19kBUNs6FMbtN2qjOdwgCPb

    Score
    6/10
    evasionransomware

    • Reads information about phone network operator.

    • Removes a system notification.

      evasion

    • Uses Crypto APIs (Might try to encrypt user data).

      ransomware
    behavioral1

    • Target

      captcha_day.html

    • Size

      9KB

    • MD5

      6aa4fedbb4d043003ab584c23d80e3ce

    • SHA1

      3a8ee32c33d6652264f43c5af598134bf6d0d284

    • SHA256

      12724a0c15e7efcd1f26f2f97ad6da5de24bb84fb6a181d366101b1ec2df51b5

    • SHA512

      a2fe6a6f97767dcb10d09c1d77e4b9134cca1862c3ee4ec06eb3c97088a8bc2587205184c361974c7b989e9dcc8200d6ab88b4b2b8ecf5c4d2947043021557cd

    • SSDEEP

      192:hT26Fa/4AfeEicxTSTiwRSLRob5WlUfWMjRdWVbqxx9eMJJkb2kDXjdL2h3zrRrT:FOqleMJznqw

    Score
    1/10
    behavioral2behavioral3

    • Target

      captcha_night.html

    • Size

      10KB

    • MD5

      1c3e768c64e3d8ee27098fb271372eb4

    • SHA1

      7283aecc6009ec0bee1efac4c853517cc25060e8

    • SHA256

      e3fc563589c45eb77c5c422353ba2272bf58da8f04da50fed3265f94b57ee4e0

    • SHA512

      1973946863d9edd8ba4ebc4123bac5ed8231cca2ace89014781b45da5192a3ac20f0c2e774480daeb58dd394b9504e5a49ac3393cd1dd5ee636fa81f3b35e1ac

    • SSDEEP

      192:Lb26FaAAfeEorMxpicxTSTiwRSLRb5WlUfWMjRdWVQahx9eMJJkb2kDXjdL2h3zZ:Nz6a1eMJznqg

    Score
    1/10
    behavioral4behavioral5

    • Target

      darkmode.js

    • Size

      2KB

    • MD5

      06465986a6504f5fa88246e647b8fee1

    • SHA1

      e22becbcd0b2a6fb8225dd569e7afb6a3b927bb8

    • SHA256

      f3d701d8a2db575c06c34c5fb3b8dbe809ef3ad9e7ebfddb16218bb7459baa5a

    • SHA512

      04d8ee2000f208e7c8ebccfd608fd95a28ebe614d395053f961ba6537372661e8b3f2edc07f7bb1ecaeeb823599a3c31c2ed689b03b2b0ea80f710a253798362

    Score
    1/10
    behavioral6behavioral7

    • Target

      detect.prototxt

    • Size

      41KB

    • MD5

      6fb4976b32695f9f5c6305c19f12537d

    • SHA1

      a6936962139282d300ebbf15a54c2aa94b144bb7

    • SHA256

      e8acfc395caf443a47f15686a9b9207b36cb8f7e6ceb8fbaf6466665e68a9466

    • SHA512

      2239d31a597049f358f09dbb4c0a7af0b384d9b67cfa3224f8c7e44329647cf19ee7929ac06199cca23bbbf431de0481b74ab51eace6aa20bb2e2fd19b536e49

    • SSDEEP

      384:GTvWrW1vCPD4GHvYQUX1ZatF/ICSdGqa5DPbOItOApD9uUh0Giqri3hvWOba8Mel:VYfI0

    Score
    1/10
    behavioral8behavioral9

    • Target

      sr.prototxt

    • Size

      5KB

    • MD5

      69db99927a70df953b471daaba03fbef

    • SHA1

      39e1f1031c842766f1cc126615fea8e8256facd2

    • SHA256

      8ae41acba97e8b4a8e741ee350481e49b8e01d787193f470a4c95ee1c02d5b61

    • SHA512

      6b715ec45c3fd081e7e113e351edcef0f3d32a75f8b5a9ca2273cb5da9a1116a1b78cba45582a9acf67a7ab76dc4fcdf123f7b3a0d3de2f5c39b26ef450058b7

    • SSDEEP

      96:GQ4mZNO1Ul4poGdm0LZwHlurpof2Po35jS8bmSRgTdb8T0iTMbY:GQ4UNqUl42GdZLSHlur2f2PoJjS8bmSl

    Score
    1/10
    behavioral10behavioral11

MITRE ATT&CK Enterprise v15

Tasks