wocwvy.czyxoxmbauu.slsa.ncec.myvbo
android.intent.action.MAIN
wocwvy.czyxoxmbauu.slsa.opzsdswiddt
android.intent.action.SEND
android.intent.action.SENDTO
General
-
Target
e2bdf77b7cbd952f92e62a1a1c1973158ca5df817f9b0bed9bad2a0b8ec58cc1
-
Size
165KB
-
MD5
b690ef44bc8def7fa9c95a10fb9d9ade
-
SHA1
a67a01a5df61738e32a01aea54c9a42b25014f07
-
SHA256
e2bdf77b7cbd952f92e62a1a1c1973158ca5df817f9b0bed9bad2a0b8ec58cc1
-
SHA512
d3b937265c81db15ff0e4e4d636f67f87d2a92fbc512bf0706b59957c5eb22cca91978cc85c815a9418debe8e4aad0e70e9f7102b53ba47ca6fe27b89bf878a3
-
SSDEEP
3072:Jct5rtGu6GxcM5Y5FxCxMXMJghQN3K4XSBsHYa5raEnTFf:JQltN6p6oxXMJghO3Kbs4aVrTJ
Score
10/10
Malware Config
Extracted
Family
anubis
C2
http://192.168.0.104
Signatures
-
Anubis family
-
Requests dangerous framework permissions 10 IoCs
Files
-
e2bdf77b7cbd952f92e62a1a1c1973158ca5df817f9b0bed9bad2a0b8ec58cc1
wocwvy.czyxoxmbauu.slsa
wocwvy.czyxoxmbauu.slsa.ncec.myvbo
Android Permissions
e2bdf77b7cbd952f92e62a1a1c1973158ca5df817f9b0bed9bad2a0b8ec58cc1
Permissions
android.permission.ACCESS_FINE_LOCATION
android.permission.GET_TASKS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.PACKAGE_USAGE_STATS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_NETWORK_STATE
android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.READ_CONTACTS
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS