com.epicgames.ue4.GameActivity
android.intent.action.MAIN
com.facebook.CustomTabActivity
android.intent.action.VIEW
General
-
Target
arena-breakout-1-0-57-57.apk
-
Size
1019.5MB
-
MD5
5be6ee4fe2870c1215d71e6770a1ee95
-
SHA1
f40763a4143760d2dc10cc484504477d31487bd8
-
SHA256
2eedf2790ed03cf645d4785e5a112c812d066f7558936490658643194745960f
-
SHA512
32839704d0496721d9fd950dedfbdc884c3d5f74f8b871752dfdb1151dbaf0919ba72816fceae7e844a50d744fc1df787319740d3f85f4ce11ae74eee9c750e4
-
SSDEEP
25165824:02NNWsECi0nSOi3u2YcTJj7c5lEe1bz8VVoONETO5V:NNYsxi0nOXYc1/c5ltxIVlNET0V
Score
10/10
Malware Config
Signatures
-
RedLine payload 1 IoCs
resource yara_rule sample family_redline -
Redline family
-
Requests dangerous framework permissions 3 IoCs
description ioc Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows an application to record audio. android.permission.RECORD_AUDIO Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE
Files
-
arena-breakout-1-0-57-57.apk.apk android arch:arm64
com.proximabeta.mf.uamo
com.epicgames.ue4.GameActivity
Activities
Permissions
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
com.android.vending.CHECK_LICENSE
android.permission.ACCESS_WIFI_STATE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.VIBRATE
com.android.vending.BILLING
com.qti.permission.PROFILER
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.CHANGE_WIFI_STATE
android.permission.GET_TASKS
android.permission.RESTART_PACKAGES
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_SETTINGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.c2dm.permission.RECEIVE
Receivers
com.epicgames.ue4.MulticastBroadcastReceiver
com.android.vending.INSTALL_REFERRER
com.adjust.sdk.AdjustReferrerReceiver
com.android.vending.INSTALL_REFERRER
com.facebook.CurrentAccessTokenExpirationBroadcastReceiver
com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED
com.facebook.AuthenticationTokenManager$CurrentAuthenticationTokenChangedBroadcastReceiver
com.facebook.sdk.ACTION_CURRENT_AUTHENTICATION_TOKEN_CHANGED
com.google.firebase.iid.FirebaseInstanceIdReceiver
com.google.android.c2dm.intent.RECEIVE
Services
com.intlgame.core.service.INTLXwidMessageNotifiedService
com.proximabeta.gr.action.FALE_Natified
com.intlgame.push.INTLFirebaseMessagingService
com.google.firebase.MESSAGING_EVENT
com.intlgame.common.ForegroundService
com.intlgame.ACTION_FOREGROUND_SERVICE
com.google.firebase.messaging.FirebaseMessagingService
com.google.firebase.MESSAGING_EVENT
Android Permissions
arena-breakout-1-0-57-57.apk
Permissions
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
com.android.vending.CHECK_LICENSE
android.permission.ACCESS_WIFI_STATE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.VIBRATE
com.android.vending.BILLING
com.qti.permission.PROFILER
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.CHANGE_WIFI_STATE
android.permission.GET_TASKS
android.permission.RESTART_PACKAGES
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_SETTINGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.c2dm.permission.RECEIVE