f31277a234580e742648b517ef5c3f72f0993ab4a5aca987321dee018e2c9eee | Triage

Submit
Reports

Overview

overview

9

Static

static

1

efa90befdb...0f.apk

android-9-x86

9

Sharing

General

Target

efa90befdb730fdd9f34e446c6b5ad0f.bin
Size

125.3MB
Sample

240701-emxcssygkk
MD5

efa90befdb730fdd9f34e446c6b5ad0f
SHA1

13b76b810b594e6e8181123686c5b6711eb88e18
SHA256

f31277a234580e742648b517ef5c3f72f0993ab4a5aca987321dee018e2c9eee
SHA512

694fc574ea0b0c89c4c2f808309c4c59c8b501fc65ce8c7758b8050e8f6aeadadaf37f7d84cfe90bc4a88657b5d4b1e2dc31d80052a09c83bc129909bfecbd37
SSDEEP

3145728:MdpNrlUds5Z0Ix17eBtCBX87NyC32XnEQoXr2io+KlzBciq6KB3LjX:epEWZV7evjpL32XOXrQzBcijI3LL

Score

9^/10

android evasion persistence ransomware

Static task

static1

Behavioral task

behavioral1

Sample

efa90befdb730fdd9f34e446c6b5ad0f.apk

Resource

android-x86-arm-20240624-en

evasion persistence ransomware

android-9-x86

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  efa90befdb730fdd9f34e446c6b5ad0f.bin
- Size
  
  125.3MB
- MD5
  
  efa90befdb730fdd9f34e446c6b5ad0f
- SHA1
  
  13b76b810b594e6e8181123686c5b6711eb88e18
- SHA256
  
  f31277a234580e742648b517ef5c3f72f0993ab4a5aca987321dee018e2c9eee
- SHA512
  
  694fc574ea0b0c89c4c2f808309c4c59c8b501fc65ce8c7758b8050e8f6aeadadaf37f7d84cfe90bc4a88657b5d4b1e2dc31d80052a09c83bc129909bfecbd37
- SSDEEP
  
  3145728:MdpNrlUds5Z0Ix17eBtCBX87NyC32XnEQoXr2io+KlzBciq6KB3LjX:epEWZV7evjpL32XOXrQzBcijI3LL
Score

9^/10

evasion persistence ransomware
- Renames multiple (52) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
- Checks if the Android device is rooted.
  evasion
behavioral1

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

evasionpersistenceransomware

© 2018-2024

Terms | Privacy