Resubmissions

03-05-2023 10:29

230503-mjhz1agb5y 10

25-02-2023 06:54

230225-hpglxace35 10

General

  • Target

    ready.apk

  • Size

    684KB

  • MD5

    b63340321b428e6782f112d02a49c16e

  • SHA1

    f8c1e4cbea9b2f7f1339081e55fc8381e8249969

  • SHA256

    074eae4632687caece8da8bba7dbb9de0185cc2e2349971611f3d72297626691

  • SHA512

    dbe77dfaaa75f3813a7cad7ec8ed4ac12f4a661750a64ea4424873eb487e1f993010b818df2bed5ef2673740fd38d062a82484b45bc41283a26c695e0c3bae87

  • SSDEEP

    12288:C47Vgo8oINcZJ9NuuAI2Xk2GrGLMPKhsv/LusT3cgtN0Fjmq6Rq21+gGrtWDHPR:CX6RZJusWk6gKhsvDHT3SFjmqGN7pHPR

Score
10/10

Malware Config

Extracted

Family

spynote

C2

short-files.at.ply.gg:57912

Signatures

  • Spynote family
  • Requests dangerous framework permissions 12 IoCs

Files

  • ready.apk
    .apk android

    com.printers.discovery

    com.printers.overallqunigthouqbroadwaywenquirieslalphaqppmkoptimizationcloopxfoolgsexytdiscussyalignmentj16


Android Permissions

ready.apk

Permissions

android.permission.FOREGROUND_SERVICE

android.permission.READ_SMS

android.permission.READ_CALL_LOG

android.permission.READ_CONTACTS

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.GET_ACCOUNTS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.CAMERA

android.permission.INTERNET

android.permission.SYSTEM_ALERT_WINDOW

android.permission.RECORD_AUDIO

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_PHONE_STATE

android.permission.WAKE_LOCK

com.android.alarm.permission.SET_ALARM

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.CALL_PHONE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.SET_WALLPAPER

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT