ndQOhY0ypd[.]apk

Target

ndQOhY0ypd.apk
Size

5.2MB
MD5

ca559118f4605b0316a13b8cfa321f65
SHA1

5ef4d5784738d79f22f9bc5e8db7c94985bc1a3a
SHA256

3eb7efa71648ae819f1bff89399717805129487081e8261dd65bf596f2467054
SHA512

091f07d51e9d7c924666f28a30b03e5ff887e239ad2ed9a99cbd65e7b9350c6fc89cafdbbe05de27f8ea6dc90ff8484c1b692fc891b58fcc6104fa6878e8f3d7
SSDEEP

98304:+Ld3yR0X7GPzP21DeReIrJ0jJMooanGHNdyc7scnuB5k9MWdU:+LxyR0X7Qz/diMolGfyXcNMWdU

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

Processes:

description	ioc
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

ndQOhY0ypd.apk
.apk android

com.slhytrowb.wfxaicaiw

com.slhytrowb.wfxaicaiw.cryptor.ui.activities.StartActivity

Activities

com.slhytrowb.wfxaicaiw.PixelLauncher

android.intent.action.MAIN

com.slhytrowb.wfxaicaiw.cryptor.ui.activities.StartActivity

android.intent.action.MAIN

com.android.launcher3.dragndrop.AddItemActivity

android.content.pm.action.CONFIRM_PIN_SHORTCUT
android.content.pm.action.CONFIRM_PIN_APPWIDGET

Permissions

com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.slhytrowb.wfxaicaiw.permission.READ_SETTINGS
com.slhytrowb.wfxaicaiw.permission.WRITE_SETTINGS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.REORDER_TASKS
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.REQUEST_DELETE_PACKAGES
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.QUERY_ALL_PACKAGES
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.PHONE
android.permission.PROCESS_OUTGOING_CALLS
android.permission.WRITE_SETTINGS
android.permission.CALL_PHONE
android.permission.SET_WALLPAPER
android.permission.SET_WALLPAPER_HINTS
android.permission.BIND_APPWIDGET
android.permission.READ_EXTERNAL_STORAGE

Receivers

com.slhytrowb.wfxaicaiw.cryptor.receivers.BootReceiver

android.intent.action.BOOT_COMPLETED
com.htc.intent.action.QUICKBOOT_POWERON

com.slhytrowb.wfxaicaiw.cryptor.receivers.SMSReceiver

android.provider.Telephony.SMS_RECEIVED

com.slhytrowb.wfxaicaiw.cryptor.receivers.CallReceiver

android.intent.action.PHONE_STATE
android.intent.action.NEW_OUTGOING_CALL

com.android.launcher3.InstallShortcutReceiver

com.android.launcher.action.INSTALL_SHORTCUT

com.android.launcher3.SessionCommitReceiver

android.content.pm.action.SESSION_COMMITTED

com.android.launcher3.AppWidgetsRestoredReceiver

android.appwidget.action.APPWIDGET_HOST_RESTORED

Services

com.slhytrowb.wfxaicaiw.cryptor.services.AccessibilityService

android.accessibilityservice.AccessibilityService

com.slhytrowb.wfxaicaiw.cryptor.services.NotificationService

android.service.notification.NotificationListenerService

com.android.launcher3.notification.NotificationListener

android.service.notification.NotificationListenerService

Android Permissions

ndQOhY0ypd.apk

Permissions

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.WRITE_SETTINGS

com.slhytrowb.wfxaicaiw.permission.READ_SETTINGS

com.slhytrowb.wfxaicaiw.permission.WRITE_SETTINGS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

android.permission.REORDER_TASKS

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.REQUEST_DELETE_PACKAGES

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.QUERY_ALL_PACKAGES

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.PHONE

android.permission.PROCESS_OUTGOING_CALLS

android.permission.WRITE_SETTINGS

android.permission.CALL_PHONE

android.permission.SET_WALLPAPER

android.permission.SET_WALLPAPER_HINTS

android.permission.BIND_APPWIDGET

android.permission.READ_EXTERNAL_STORAGE

Resubmissions

Sharing

General

Malware Config

Signatures

Files

com.slhytrowb.wfxaicaiw

com.slhytrowb.wfxaicaiw.cryptor.ui.activities.StartActivity

Activities

com.slhytrowb.wfxaicaiw.PixelLauncher

com.slhytrowb.wfxaicaiw.cryptor.ui.activities.StartActivity

com.android.launcher3.dragndrop.AddItemActivity

Permissions

Receivers

com.slhytrowb.wfxaicaiw.cryptor.receivers.BootReceiver

com.slhytrowb.wfxaicaiw.cryptor.receivers.SMSReceiver

com.slhytrowb.wfxaicaiw.cryptor.receivers.CallReceiver

com.android.launcher3.InstallShortcutReceiver

com.android.launcher3.SessionCommitReceiver

com.android.launcher3.AppWidgetsRestoredReceiver

Services

com.slhytrowb.wfxaicaiw.cryptor.services.AccessibilityService

com.slhytrowb.wfxaicaiw.cryptor.services.NotificationService

com.android.launcher3.notification.NotificationListener

Android Permissions

ndQOhY0ypd.apk