kasikornbank[.]apk

General

Target

kasikornbank.apk
Size

9.9MB
MD5

9820b74aec1dab787feb8dde8339ffde
SHA1

293002fcf16d3271b3e6f40e2671e3906c76dbfe
SHA256

4948670c958c4839dad2c44ec7b1f210638e7269b396706108cce928db1da700
SHA512

ff9f4d973e444b70ea12ede1682b6432fbf263492e05af4bda5a42dfcf3f3b5ed9913068abfe888ba210f405ddbca3d1c69bd2110223169b622a3fd094beec0e
SSDEEP

196608:Ztm0h4RIjcVdYmChbqok4TnHlHOjfeg6XQITZYX6F21E5xV0pbY/2Rq742RZr:K3Y2uIIKeVXTA6uE5LMblRqDRZr

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

kasikornbank.apk
.apk android arch:arm

jp.co.shiftplus.iammobile

com.yiwuzhibo.activity.SplashActivity

Activities

com.yiwuzhibo.activity.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.BIND_ACCESSIBILITY_SERVICE
android.permission.REQUEST_DELETE_PACKAGES
android.permission.QUERY_ALL_PACKAGES
android.permission.GET_INSTALLED_APPS
android.permission.ACCESS_NETWORK_STATE
android.permission.FOREGROUND_SERVICE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.RECORD_AUDIO
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_EXTERNAL_STORAGE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.WRITE_SETTINGS
android.permission.ACCESS_NOTIFICATION_POLICY

Receivers

com.yiwuzhibo.receiver.GlobalBroadcast

com.yiwuzhibo.show.dialog
com.yiwuzhibo.close.dialog

Services

com.yiwuzhibo.controller.TouchAccessibilityService

android.accessibilityservice.AccessibilityService

Android Permissions

kasikornbank.apk

Permissions

android.permission.BIND_ACCESSIBILITY_SERVICE

android.permission.REQUEST_DELETE_PACKAGES

android.permission.QUERY_ALL_PACKAGES

android.permission.GET_INSTALLED_APPS

android.permission.ACCESS_NETWORK_STATE

android.permission.FOREGROUND_SERVICE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.RECORD_AUDIO

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.READ_EXTERNAL_STORAGE

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.WRITE_SETTINGS

android.permission.ACCESS_NOTIFICATION_POLICY

Resubmissions

Sharing

General

Malware Config

Signatures

Files

jp.co.shiftplus.iammobile

com.yiwuzhibo.activity.SplashActivity

Activities

com.yiwuzhibo.activity.SplashActivity

Permissions

Receivers

com.yiwuzhibo.receiver.GlobalBroadcast

Services

com.yiwuzhibo.controller.TouchAccessibilityService

Android Permissions

kasikornbank.apk