sharkbot | 6AEFC2C4727CE80F03867F356DF462F1A1CE21C72801B877FDB95E67CD00D6A4[.]apk

Resubmissions

08-11-2022 11:36

221108-nqrfdsgacl 10

08-11-2022 11:34

26-08-2022 06:10

26-08-2022 06:04

15-11-2021 11:13

Sharing

Copy URL

Twitter E-mail

General

Target

6AEFC2C4727CE80F03867F356DF462F1A1CE21C72801B877FDB95E67CD00D6A4.apk
Size

4.1MB
MD5

1627584b683df2fe5c57dd5fa3ab79a8
SHA1

3e3522e4fad643a1af704e73ab10ba9a39c0fcce
SHA256

6aefc2c4727ce80f03867f356df462f1a1ce21c72801b877fdb95e67cd00d6a4
SHA512

3e6283f9e31ca2b524c47234e6bce20c9d63615cdbb5f6e9ec7c4de2c42517778b316cb445c9d8b61a21a74291ff47f6c59d2acf92b70453f1a7315fd6be926b
SSDEEP

98304:D477F/tOa0zF9t0L+ZwufWzyGyeezfrrUdT:s77FlcfWL4WuleFT

Score

10^/10

sharkbot

Malware Config

Extracted

Family

sharkbot

http://c2hhcmtlzdq3cg9qqkk.xyz/

Signatures

Sharkbot family
sharkbot

Requests dangerous framework permissions 5 IoCs

Processes:

description	ioc
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

6AEFC2C4727CE80F03867F356DF462F1A1CE21C72801B877FDB95E67CD00D6A4.apk
.apk android

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MainActivity

Activities

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.ComposeSmsActivity

android.intent.action.SEND
android.intent.action.SENDTO

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MainActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.FOREGROUND_SERVICE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACTION_MANAGE_OVERLAY_PERMISSION
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_MMS
android.permission.READ_CONTACTS
android.permission.QUERY_ALL_PACKAGES
android.permission.REQUEST_DELETE_PACKAGES
android.permission.REQUEST_INSTALL_PACKAGES

Receivers

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MyReceiverSMS

android.provider.Telephony.SMS_DELIVER
android.provider.Telephony.SMS_RECEIVED

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MyReceiverMMS

android.provider.Telephony.WAP_PUSH_DELIVER

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.aaBootReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
android.intent.action.SCREEN_ON
ebopvadxiqgmwjsgydxblgm8tkwc2j

Services

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MyServicePush

android.service.notification.NotificationListenerService

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.ComposeSmsActivity_VIA_MESSAGE

android.intent.action.RESPOND_VIA_MESSAGE

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MyServiceA

android.accessibilityservice.AccessibilityService

Android Permissions

6AEFC2C4727CE80F03867F356DF462F1A1CE21C72801B877FDB95E67CD00D6A4.apk

Permissions

android.permission.INTERNET

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.FOREGROUND_SERVICE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACTION_MANAGE_OVERLAY_PERMISSION

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.RECEIVE_MMS

android.permission.READ_CONTACTS

android.permission.QUERY_ALL_PACKAGES

android.permission.REQUEST_DELETE_PACKAGES

android.permission.REQUEST_INSTALL_PACKAGES

Resubmissions

Sharing

General

Malware Config

Extracted

Signatures

Files

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MainActivity

Activities

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.ComposeSmsActivity

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MainActivity

Permissions

Receivers

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MyReceiverSMS

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MyReceiverMMS

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.aaBootReceiver

Services

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MyServicePush

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.ComposeSmsActivity_VIA_MESSAGE

com.guksydvbflaqtwqg2cfuvjwxai7b.ggxfimuhpqlyzg8d2evysfqo.MyServiceA

Android Permissions

6AEFC2C4727CE80F03867F356DF462F1A1CE21C72801B877FDB95E67CD00D6A4.apk