wocwvy.czyxoxmbauu.slsa.ncec.myvbo
android.intent.action.MAIN
wocwvy.czyxoxmbauu.slsa.opzsdswiddt
android.intent.action.SEND
android.intent.action.SENDTO
General
-
Target
D4CE3C98DF7A584282DF0BB8CE6F304BDA0C120F67AAFDC457CD468F2961424A.apk
-
Size
437KB
-
MD5
71694f4bf8367d6ddd7d0357d08edf8e
-
SHA1
5b694ce70b648ba191862544f79c20532dab290d
-
SHA256
d4ce3c98df7a584282df0bb8ce6f304bda0c120f67aafdc457cd468f2961424a
-
SHA512
61d3dafa2ecae5cb9fddef7b3747e93cb6804dc4450cefcb7798c150898beefd3dcdb8b955cb4f18c12f245035edcdf41f461527debc860fa8adde8d33bc8eff
-
SSDEEP
12288:bJrQFuc0khGoyQPoGLVkhGoyQPoGLZkhGoyQPoGL6khGoyQPoGLPkhGoyQPoGL3:bJrQIc0myQggmyQgOmyQgDmyQgwmyQgM
Score
10/10
Malware Config
Extracted
Family
anubis
C2
https://bykingpanel.xyz/
Signatures
-
Anubis family
-
Requests dangerous framework permissions 10 IoCs
Files
-
D4CE3C98DF7A584282DF0BB8CE6F304BDA0C120F67AAFDC457CD468F2961424A.apk
wocwvy.czyxoxmbauu.slsa
wocwvy.czyxoxmbauu.slsa.ncec.myvbo
Android Permissions
D4CE3C98DF7A584282DF0BB8CE6F304BDA0C120F67AAFDC457CD468F2961424A.apk
Permissions
android.permission.ACCESS_FINE_LOCATION
android.permission.GET_TASKS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.PACKAGE_USAGE_STATS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_NETWORK_STATE
android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.READ_CONTACTS
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS