wocwvy.czyxoxmbauu.slsa.ncec.myvbo
android.intent.action.MAIN
wocwvy.czyxoxmbauu.slsa.opzsdswiddt
android.intent.action.SEND
android.intent.action.SENDTO
General
-
Target
c53f313432594cc0a6beb13191c13a3295764713cc28879e5f01fe96723e5cb7
-
Size
207KB
-
MD5
fd5010347cd2157604caa990f1454800
-
SHA1
ad54c6961556aff32f60020f9284cabd861c0bfc
-
SHA256
c53f313432594cc0a6beb13191c13a3295764713cc28879e5f01fe96723e5cb7
-
SHA512
8efeb5a3b20335c61a60e993d5ca379c20cc30b01172c4a9a45f4953ce0c9bc68fa3de3e86cf23b6120af6d347a7f5430fe86f0c16e18f94388ea775cc62360c
-
SSDEEP
3072:f0z5SIJ7lqKdxqK/hwe/Q3TZIcr1XScXuZCkzpxdSL69TnwmCWIgFTbDZNo:f00C70o48hPYRzX0RzPdxw
Score
10/10
Malware Config
Extracted
Family
anubis
C2
http://wadascx1wesa.club/admin_panel/
Signatures
-
Anubis family
-
Requests dangerous framework permissions 10 IoCs
Files
-
c53f313432594cc0a6beb13191c13a3295764713cc28879e5f01fe96723e5cb7
wocwvy.czyxoxmbauu.slsa
wocwvy.czyxoxmbauu.slsa.ncec.myvbo
Android Permissions
c53f313432594cc0a6beb13191c13a3295764713cc28879e5f01fe96723e5cb7
Permissions
android.permission.ACCESS_FINE_LOCATION
android.permission.GET_TASKS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.PACKAGE_USAGE_STATS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_NETWORK_STATE
android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.READ_CONTACTS
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS