2cf0e4c3e90a87f0da047bf5c2baa206d7e41daf363dacc52c74410456d475cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

834cfd5a18342d923835633c6fc3383b.bin
Size

145.1MB
Sample

231105-czrlzabf88
MD5

834cfd5a18342d923835633c6fc3383b
SHA1

3fea2f882a5c7e1e611ff2a9118821781de930d2
SHA256

2cf0e4c3e90a87f0da047bf5c2baa206d7e41daf363dacc52c74410456d475cc
SHA512

2ee44b0380cd1b9cf2c87dc40d72ed394ec7aa2ce7f5409dd02677b62c40101054d0d8cee8f00771979a4e219639cc374ec1b0cd1cc45c7a24c6eae315e8f78c
SSDEEP

3145728:oGOewLwv00Q58AKWQzp7s+g+2lowd6wPydgpcZmmFsKmq4gsCDFWv:oG3cwM0Q58A1sOFd6wPy6pc5sKBJq

Score

9^/10

android ransomware

Malware Config

Targets

- Target
  
  834cfd5a18342d923835633c6fc3383b.bin
- Size
  
  145.1MB
- MD5
  
  834cfd5a18342d923835633c6fc3383b
- SHA1
  
  3fea2f882a5c7e1e611ff2a9118821781de930d2
- SHA256
  
  2cf0e4c3e90a87f0da047bf5c2baa206d7e41daf363dacc52c74410456d475cc
- SHA512
  
  2ee44b0380cd1b9cf2c87dc40d72ed394ec7aa2ce7f5409dd02677b62c40101054d0d8cee8f00771979a4e219639cc374ec1b0cd1cc45c7a24c6eae315e8f78c
- SSDEEP
  
  3145728:oGOewLwv00Q58AKWQzp7s+g+2lowd6wPydgpcZmmFsKmq4gsCDFWv:oG3cwM0Q58A1sOFd6wPy6pc5sKBJq
Score

9^/10

ransomware
- Renames multiple (54) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
behavioral1
- Target
  
  DefaultWsdlHelpGenerator.aspx
- Size
  
  59KB
- MD5
  
  f7be9f1841ff92f9d4040aed832e0c79
- SHA1
  
  b3e4b508aab3cf201c06892713b43ddb0c43b7ae
- SHA256
  
  751861040b69ea63a3827507b7c8da9c7f549dc181c1c8af4b7ca78cc97d710a
- SHA512
  
  380e97f7c17ee0fdf6177ed65f6e30de662a33a8a727d9f1874e9f26bd573434c3dedd655b47a21b998d32aaa72a0566df37e901fd6c618854039d5e0cbef3f5
- SSDEEP
  
  768:6CEPutHjvpMgMwP9h5Ij7khsp/6JtEZwMXVtkUI3t3CXyEyk3VbNbqDvJ4oT1y:/r6CdsCOZwMX3k5dWyklh+Dvbw
Score

1^/10
behavioral2 behavioral3

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

behavioral3