05ec45735db9d58d3991941cff56d25ba6ae26dd300b2c1250aca093e68843d1 | Triage

Resubmissions

20/09/2023, 15:26

230920-svpvksha9x 7

19/09/2023, 21:51

230919-1qy7fscb8y 7

Sharing

General

Target

xManager.apk
Size

9.1MB
Sample

230919-1qy7fscb8y
MD5

15e16125c1cd2e4eda8058dc1b957362
SHA1

4649e99fccb758e34be68ccaed63db1053c8337a
SHA256

05ec45735db9d58d3991941cff56d25ba6ae26dd300b2c1250aca093e68843d1
SHA512

e1cfcde3ef453045aa267cdf2ea48ffc6e80cfd054c9dfc5ed0edddfedae61d8bfb12389e248ae44ee4f6cbd408b97befcae368d8e23a0ea3ad2985e9bac219a
SSDEEP

98304:1g4OD3plY2bl11NHC77QE7j01xkgnk3Jx+V0L0QUllb/JGxBbSg64kA/32d2ZrC6:1cD3p5l1zC7D01xXnaxjLalmBR6yxrOm

Score

7^/10

android evasion ransomware

Malware Config

Targets

- Target
  
  xManager.apk
- Size
  
  9.1MB
- MD5
  
  15e16125c1cd2e4eda8058dc1b957362
- SHA1
  
  4649e99fccb758e34be68ccaed63db1053c8337a
- SHA256
  
  05ec45735db9d58d3991941cff56d25ba6ae26dd300b2c1250aca093e68843d1
- SHA512
  
  e1cfcde3ef453045aa267cdf2ea48ffc6e80cfd054c9dfc5ed0edddfedae61d8bfb12389e248ae44ee4f6cbd408b97befcae368d8e23a0ea3ad2985e9bac219a
- SSDEEP
  
  98304:1g4OD3plY2bl11NHC77QE7j01xkgnk3Jx+V0L0QUllb/JGxBbSg64kA/32d2ZrC6:1cD3p5l1zC7D01xXnaxjLalmBR6yxrOm
Score

7^/10

evasion ransomware
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
- Reads information about phone network operator.
- Removes a system notification.
  evasion
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1 behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

evasionransomware

behavioral2

behavioral3

evasionransomware