General

  • Target

    afd37345af9c24d287e5d12e21e05e1f8a3c625a08a5d2a8b66217632509d989

  • Size

    3.4MB

  • MD5

    45c8120d7108d4d363cddf06e662f0e9

  • SHA1

    58c57a4364cdda528a80bb727b735cb5451cded0

  • SHA256

    afd37345af9c24d287e5d12e21e05e1f8a3c625a08a5d2a8b66217632509d989

  • SHA512

    ec343834002604da30d91b60b50f67061291ca5e5750ba972afbcf0073cc32f6e411938b7e01d3e9a68dffce4158070371036ce63a27aa80a5c7d1212b5dc804

  • SSDEEP

    49152:vEjT/BpXtb0frAaEG+6JTn1bgol27/bHD9vCTh6NGI3Ei8N7S1s9doZ:vEjl0frAYDT1gCenJSh6NLElAe4

Score
10/10

Malware Config

Extracted

Family

bahamut

C2

https://dfm5nkzarzv8n36r.de:443

Signatures

  • Bahamut family
  • Requests dangerous framework permissions 12 IoCs

Files

  • afd37345af9c24d287e5d12e21e05e1f8a3c625a08a5d2a8b66217632509d989
    .apk android

    com.custom.virtualnumber

    com.custom.virtualnumber.Activity.SplashActivity


Android Permissions

afd37345af9c24d287e5d12e21e05e1f8a3c625a08a5d2a8b66217632509d989

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PRIVILEGED_PHONE_STATE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_CONTACTS

android.permission.READ_PHONE_STATE

android.permission.CAMERA

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_CALL_LOG

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.ACCESS_BACKGROUND_LOCATION

android.permission.WRITE_SETTINGS

android.permission.RECORD_AUDIO

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_BOOT_COMPLETED