General
-
Target
efa90befdb730fdd9f34e446c6b5ad0f.bin
-
Size
125.3MB
-
Sample
240701-emxcssygkk
-
MD5
efa90befdb730fdd9f34e446c6b5ad0f
-
SHA1
13b76b810b594e6e8181123686c5b6711eb88e18
-
SHA256
f31277a234580e742648b517ef5c3f72f0993ab4a5aca987321dee018e2c9eee
-
SHA512
694fc574ea0b0c89c4c2f808309c4c59c8b501fc65ce8c7758b8050e8f6aeadadaf37f7d84cfe90bc4a88657b5d4b1e2dc31d80052a09c83bc129909bfecbd37
-
SSDEEP
3145728:MdpNrlUds5Z0Ix17eBtCBX87NyC32XnEQoXr2io+KlzBciq6KB3LjX:epEWZV7evjpL32XOXrQzBcijI3LL
Static task
static1
Behavioral task
behavioral1
Sample
efa90befdb730fdd9f34e446c6b5ad0f.apk
Resource
android-x86-arm-20240624-en
Malware Config
Targets
-
-
Target
efa90befdb730fdd9f34e446c6b5ad0f.bin
-
Size
125.3MB
-
MD5
efa90befdb730fdd9f34e446c6b5ad0f
-
SHA1
13b76b810b594e6e8181123686c5b6711eb88e18
-
SHA256
f31277a234580e742648b517ef5c3f72f0993ab4a5aca987321dee018e2c9eee
-
SHA512
694fc574ea0b0c89c4c2f808309c4c59c8b501fc65ce8c7758b8050e8f6aeadadaf37f7d84cfe90bc4a88657b5d4b1e2dc31d80052a09c83bc129909bfecbd37
-
SSDEEP
3145728:MdpNrlUds5Z0Ix17eBtCBX87NyC32XnEQoXr2io+KlzBciq6KB3LjX:epEWZV7evjpL32XOXrQzBcijI3LL
Score9/10-
Renames multiple (52) files with added filename extension
This suggests ransomware activity of encrypting all the files on the system.
-
Checks if the Android device is rooted.
-