4197f05ec0768c84fdbc117e4ad657be7e64d5e7be886942e1e5544ae11c8895 | Triage

Submit
Reports

Overview

overview

8

Static

static

7

4197f05ec0...95.apk

android-9-x86

8

Sharing

General

Target

4197f05ec0768c84fdbc117e4ad657be7e64d5e7be886942e1e5544ae11c8895.zip
Size

13.4MB
Sample

220922-edx8qshgf8
MD5

8704070532948934be59d1a2cb5af6ad
SHA1

dafc3cadefa610454f7f85353914066518657026
SHA256

4197f05ec0768c84fdbc117e4ad657be7e64d5e7be886942e1e5544ae11c8895
SHA512

a1ad54fc6987bde9f419235ac6d84127256ffa58c38ae761871f050e141492983f8039bfdef471cb6c302ed7bef8e24fcbdc836674e7db818e3bb8a56c16d4df
SSDEEP

393216:imaBC9u9O4X9uGtUNCK54bOZkLx0hb2r2fZRpo7a:mBVc4X9uGtUXzset2r2ffpSa

Score

8^/10

android evasion ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

4197f05ec0768c84fdbc117e4ad657be7e64d5e7be886942e1e5544ae11c8895.apk

Resource

android-x86-arm-20220823-en

evasion ransomware

android-9-x86

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  4197f05ec0768c84fdbc117e4ad657be7e64d5e7be886942e1e5544ae11c8895.zip
- Size
  
  13.4MB
- MD5
  
  8704070532948934be59d1a2cb5af6ad
- SHA1
  
  dafc3cadefa610454f7f85353914066518657026
- SHA256
  
  4197f05ec0768c84fdbc117e4ad657be7e64d5e7be886942e1e5544ae11c8895
- SHA512
  
  a1ad54fc6987bde9f419235ac6d84127256ffa58c38ae761871f050e141492983f8039bfdef471cb6c302ed7bef8e24fcbdc836674e7db818e3bb8a56c16d4df
- SSDEEP
  
  393216:imaBC9u9O4X9uGtUNCK54bOZkLx0hb2r2fZRpo7a:mBVc4X9uGtUXzset2r2ffpSa
Score

8^/10

evasion ransomware
- Requests cell location
  Uses Android APIs to to get current cell location.
- Acquires the wake lock.
- Reads information about phone network operator.
- Removes a system notification.
  evasion
- Uses Crypto APIs (Might try to encrypt user data).
  ransomware
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

evasionransomware

© 2018-2024

Terms | Privacy