26e7de58e729c6a533a009a43869c6d4[.]bin

General

Target

26e7de58e729c6a533a009a43869c6d4.bin
Size

29.0MB
MD5

0e31d167179ff55723671eb6a5fc8102
SHA1

6db08e02f82fb199867c849546e6adf638c02495
SHA256

6155a1c4d82aa7af6dc76799435d7f62488182824bb954e18fe49c0046ebf224
SHA512

c3bcdbc01cefbec7b7c66362cb6ee2474a4bb5fe46d51845d2536584c9a179480b64eb9677e2ce2bdec6cf9f2aca805b03cc8308592025132290ada0561ee4cc
SSDEEP

786432:pBsKE8LIj43Zk5mSbTWTxsltY+UPmeilewqtQjRhBItgM:pBtTLWq4lT2xp+U+eil5EgBgD

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

26e7de58e729c6a533a009a43869c6d4.bin
.zip

Password: infected
022c44ff60f93df9d32e09fdb12ad92a9d090d70f823bba9adc34e57d2cc6da3.apk
.apk android arch:arm

io.metamask

io.metamask.MainActivity

Activities

io.metamask.SplashActivity

android.intent.action.MAIN

io.metamask.MainActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CAMERA
android.permission.ACCESS_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.USE_BIOMETRIC
android.permission.USE_FINGERPRINT
com.android.vending.CHECK_LICENSE
com.google.android.c2dm.permission.RECEIVE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS

Receivers

io.branch.referral.InstallListener

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

Services

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

Sharing

General

Malware Config

Signatures

Files

Password: infected

io.metamask

io.metamask.MainActivity

Activities

io.metamask.SplashActivity

io.metamask.MainActivity

Permissions

Receivers

io.branch.referral.InstallListener

com.google.firebase.iid.FirebaseInstanceIdReceiver

Services

com.google.firebase.messaging.FirebaseMessagingService