Resubmissions

16-06-2022 16:38

220616-t5pg8sgagn 10

21-01-2022 23:19

220121-3axd2adaam 7

General

  • Target

    ae56c32ca785a39cd513c3b69d4d31aff6969fbe87ddc6606002e1cdcfe49b12

  • Size

    6.2MB

  • MD5

    b451af80f8d6b255bf36d03976f140c5

  • SHA1

    72b127983d70f79e366a2a1bc0b2d95af9e58d3f

  • SHA256

    ae56c32ca785a39cd513c3b69d4d31aff6969fbe87ddc6606002e1cdcfe49b12

  • SHA512

    93ff057aee089c4f8b97633d5f0166d2d0f7c73199d6c876a10f585250ae20ca154cf2248e6d4201bf54595740465d9a27380051e3f88d8084082a7e23d0eeb8

  • SSDEEP

    196608:/9gioLpNX0aJoDigoI7QJ6WPqMbTojj/xovcL6/Rq://8pNX0pigoGYrPquTUjZovcL6/Rq

Score
10/10

Malware Config

Signatures

  • AbstractEmu is a rooting malware first seen in October 2021. 1 IoCs
  • Abstractemu family
  • Requests dangerous framework permissions 9 IoCs

Files

  • ae56c32ca785a39cd513c3b69d4d31aff6969fbe87ddc6606002e1cdcfe49b12
    .apk android arch:arm64 arch:arm

    com.st.launcher.lite

    com.st.launcher.lite.MainActivity


Android Permissions

ae56c32ca785a39cd513c3b69d4d31aff6969fbe87ddc6606002e1cdcfe49b12

Permissions

android.permission.BLUETOOTH

android.permission.GET_ACCOUNTS

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.ACCESS_BACKGROUND_LOCATION

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.READ_CONTACTS

android.permission.CALL_PHONE

android.permission.READ_PHONE_STATE

android.permission.EXPAND_STATUS_BAR

android.permission.REQUEST_DELETE_PACKAGES

android.permission.INTERNET

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.google.android.c2dm.permission.RECEIVE