General

  • Target

    WH-ApkCrypter-V2-master.zip

  • Size

    46.9MB

  • MD5

    c72d273ebb4fb3b5db7f32b13ff6f0c9

  • SHA1

    68718a4dc420c2f0b76790bd58a28d2ba226e463

  • SHA256

    40facb6a92d8957e1b15a622047b24f7a638761e2bb5d58715f4b49fd12e596f

  • SHA512

    b113abbc6c1f4863a82e65965481e19503cfed046e9704a125af974d632b2e7763c7ebd3d28c3b65fa9710b51795629aec6e320c276ddff6bb0774357ef85662

  • SSDEEP

    786432:SwDB251oxC8HTrxZ4cVqgr6Ypbpse/1HC5GzvHtFLd1cYgSWurZgCnkwUrMH8x6I:x018D4vgr6EWgHC5GjfkqWKgCnAMcxz

Score
10/10

Malware Config

Extracted

Family

spynote

C2

soon-lp.at.ply.gg:17209

Signatures

  • Spynote family
  • Requests dangerous framework permissions 14 IoCs
  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • WH-ApkCrypter-V2-master.zip
    .zip
  • WH-ApkCrypter-V2-master/.github/ISSUE_TEMPLATE/bug_report.md
  • WH-ApkCrypter-V2-master/.github/ISSUE_TEMPLATE/custom.md
  • WH-ApkCrypter-V2-master/.github/ISSUE_TEMPLATE/feature_request.md
  • WH-ApkCrypter-V2-master/Andromeda.apk
    .apk android

    workplace.sarah.geography

    workplace.sarah.لˉʻ匕ʾثᵢˎغʾف西ᵢʾˎ比ﹶاا吉ٴخˎム下ٴ杰ᵔˏˋ∪jﹳٴᵎˏٴᵔʿʾちاˎـٴᵢʾᵢ工ˈ2.ٴˊᐧᵔㄚـف゙伊ʾモ伊ᵎ艾ʻⁱᵔʾ艾ʿـﹶʼˋˎشʿʿ工ʾغ下哦ⁱˏ弗ʿʿˋיˎᵔىىʼقʻʾ杰诶20


  • WH-ApkCrypter-V2-master/CODE_OF_CONDUCT.md
  • WH-ApkCrypter-V2-master/CONTRIBUTING.md
  • WH-ApkCrypter-V2-master/LICENSE
  • WH-ApkCrypter-V2-master/README.md
  • WH-ApkCrypter-V2-master/WH-Apkcrypter-v2.1.exe
    .exe windows x86

    f34d5f2d4577ed6d9ceec516c1f5a744


    Headers

    Imports

    Sections

  • WH-ApkCrypter-V2-master/img/whapkc2-1.png
    .png
  • WH-ApkCrypter-V2-master/img/whapkc2-2.png
    .png
  • WH-ApkCrypter-V2-master/img/whapkc2-3.png
    .png