rethink-28[.]apk

General

Target

rethink-28.apk
Size

48.9MB
MD5

72eb72594df9d7ea3cd43a0ab0f751ad
SHA1

5d61325d32c9023f45c7ad1e67fca8b84e0d8a15
SHA256

fe117292941939cb06063f8391501f8a145b086dbabb5e6d536f5872191c85cb
SHA512

ecac8ef88e057a67b76d752edb3b42c54e6715a9daa01afab3348a6751cef1644d7dde6c94c25ec6eec0824089949e8ca59fcf4d93f30f8ad94483310fcfb4a6
SSDEEP

393216:hHaZ7L7MMTt2bq9XhkuWlV+kvhUwUJyNjyMVEYa20S8RPO7ZUwF:hHYTsm9Xhkf+5wUyj0S8RPO7DF

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS

Files

rethink-28.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.celzero.bravedns

com.celzero.bravedns.ui.HomeScreenActivity

Activities

com.celzero.bravedns.ui.HomeScreenActivity

android.intent.action.MAIN
android.service.quicksettings.action.QS_TILE_PREFERENCES
android.intent.action.VIEW

Permissions

android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.POST_NOTIFICATIONS
android.permission.CHANGE_NETWORK_STATE
android.permission.INTERNET
android.permission.QUERY_ALL_PACKAGES
android.permission.INTERACT_ACROSS_USERS
android.permission.USE_BIOMETRIC
android.permission.USE_FINGERPRINT
android.permission.WAKE_LOCK
com.celzero.bravedns.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

com.celzero.bravedns.receiver.BraveAutoStartReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.REBOOT

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.work.diagnostics.REQUEST_DIAGNOSTICS

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

Services

com.celzero.bravedns.util.BackgroundAccessibilityService

android.accessibilityservice.AccessibilityService

com.celzero.bravedns.service.BraveVPNService

android.net.VpnService

com.celzero.bravedns.service.BraveTileService

android.service.quicksettings.action.QS_TILE

Android Permissions

rethink-28.apk

Permissions

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.POST_NOTIFICATIONS

android.permission.CHANGE_NETWORK_STATE

android.permission.INTERNET

android.permission.QUERY_ALL_PACKAGES

android.permission.INTERACT_ACROSS_USERS

android.permission.USE_BIOMETRIC

android.permission.USE_FINGERPRINT

android.permission.WAKE_LOCK

com.celzero.bravedns.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Sharing

General

Malware Config

Signatures

Files

com.celzero.bravedns

com.celzero.bravedns.ui.HomeScreenActivity

Activities

com.celzero.bravedns.ui.HomeScreenActivity

Permissions

Receivers

com.celzero.bravedns.receiver.BraveAutoStartReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.profileinstaller.ProfileInstallReceiver

Services

com.celzero.bravedns.util.BackgroundAccessibilityService

com.celzero.bravedns.service.BraveVPNService

com.celzero.bravedns.service.BraveTileService

Android Permissions

rethink-28.apk