wocwvy.czyxoxmbauu.slsa.ncec.myvbo
android.intent.action.MAIN
wocwvy.czyxoxmbauu.slsa.opzsdswiddt
android.intent.action.SEND
android.intent.action.SENDTO
General
-
Target
D7FC4377B7A765D6BC3901D0DE01008095965D02062FDA3707957163AFE8884D.apk
-
Size
208KB
-
MD5
ec70b3f8db8a66d353cc69704b4d7141
-
SHA1
13ecd1916ebea34a158b0b369385627b434559f9
-
SHA256
d7fc4377b7a765d6bc3901d0de01008095965d02062fda3707957163afe8884d
-
SHA512
9e1f8a8c4751f5647b8f8d54c48bdc77ccfc71cf7720c0a426f3654f110db29a6f929a1edf68608b10892660e09fb3852da8361a4dde327c480ebc0c20d010df
-
SSDEEP
3072:f0z5SlVsk4oGTuBMYifw8jNsTqAtDuhYENEE1ObqhtEkQx8hSndBfiHDfvb:f00lU37NEqlYEt1GqhWkQ6hSnd0Lj
Score
10/10
Malware Config
Extracted
Family
anubis
C2
http://185.212.129.201
Signatures
-
Anubis family
-
Requests dangerous framework permissions 10 IoCs
Files
-
D7FC4377B7A765D6BC3901D0DE01008095965D02062FDA3707957163AFE8884D.apk
wocwvy.czyxoxmbauu.slsa
wocwvy.czyxoxmbauu.slsa.ncec.myvbo
Android Permissions
D7FC4377B7A765D6BC3901D0DE01008095965D02062FDA3707957163AFE8884D.apk
Permissions
android.permission.ACCESS_FINE_LOCATION
android.permission.GET_TASKS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.PACKAGE_USAGE_STATS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_NETWORK_STATE
android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.READ_CONTACTS
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS