fd988b737500c564d143095972b20f6a0acd5a4f16a0e10fec8c4bb776469601[.]zip

General

Target

fd988b737500c564d143095972b20f6a0acd5a4f16a0e10fec8c4bb776469601.zip
Size

560KB
MD5

5b0ea09640c86c25dd2aee85515b8aa7
SHA1

600fe876b6d78b6e7efc3e462abe0a4a5192dc3e
SHA256

fd988b737500c564d143095972b20f6a0acd5a4f16a0e10fec8c4bb776469601
SHA512

0af86f717fbf5d96149615dcac7051f85d3ba7f35f3b4c0acf89bc828be5bf691e9d72a0d58890e093d76cf2631a4c64703a368f17d70107230c065006477b87
SSDEEP

12288:W2PRSBpD41leMx4PsvRO33ncpQdtq+taBgYXjEAx:MD4neMSHMQdGBgYXjEY

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

fd988b737500c564d143095972b20f6a0acd5a4f16a0e10fec8c4bb776469601.zip
.apk android

com.paranbijuv.aijuy

com.paranbijuv.aijuy.bkqbjl.huitou

Activities

com.paranbijuv.aijuy.bkqbjl.huitou

android.intent.action.MAIN

com.paranbijuv.aijuy.bkqbjl.cbtfopeomj.untvfvcnl

android.intent.action.SEND
android.intent.action.SENDTO

Permissions

android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.CALL_PHONE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.READ_CONTACTS
android.permission.GET_TASKS
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.USES_POLICY_FORCE_LOCK
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
com.android.browser.permission.READ_HISTORY_BOOKMARKS

Receivers

com.paranbijuv.aijuy.ngdxebo.jhqczo.pmyvqnwk

android.provider.Telephony.SMS_RECEIVED

com.paranbijuv.aijuy.ngdxebo.jhqczo.ckdoz

android.provider.Telephony.SMS_DELIVER

com.paranbijuv.aijuy.ngdxebo.jhqczo.qdpeswr

android.provider.Telephony.WAP_PUSH_DELIVER

com.paranbijuv.aijuy.ngdxebo.fvtrfxrzw

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON

com.paranbijuv.aijuy.ngdxebo.gyfevmyq

android.app.action.DEVICE_ADMIN_ENABLED

com.paranbijuv.aijuy.ngdxebo.tbswxvkr

com.KHLCert.gpservice
com.KHLCert.fdservice

com.paranbijuv.aijuy.ngdxebo.mklbve

MainActivity.AlarmAction

Services

com.paranbijuv.aijuy.cgeoc.vtfmp.eotqz

android.intent.action.RESPOND_VIA_MESSAGE

com.paranbijuv.aijuy.cgeoc.ozbpip

com.android.ussd.IExtendedNetworkService

Android Permissions

fd988b737500c564d143095972b20f6a0acd5a4f16a0e10fec8c4bb776469601.zip

Permissions

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.CALL_PHONE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.READ_CONTACTS

android.permission.GET_TASKS

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.USES_POLICY_FORCE_LOCK

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

com.android.browser.permission.READ_HISTORY_BOOKMARKS

Sharing

General

Malware Config

Signatures

Files

com.paranbijuv.aijuy

com.paranbijuv.aijuy.bkqbjl.huitou

Activities

com.paranbijuv.aijuy.bkqbjl.huitou

com.paranbijuv.aijuy.bkqbjl.cbtfopeomj.untvfvcnl

Permissions

Receivers

com.paranbijuv.aijuy.ngdxebo.jhqczo.pmyvqnwk

com.paranbijuv.aijuy.ngdxebo.jhqczo.ckdoz

com.paranbijuv.aijuy.ngdxebo.jhqczo.qdpeswr

com.paranbijuv.aijuy.ngdxebo.fvtrfxrzw

com.paranbijuv.aijuy.ngdxebo.gyfevmyq

com.paranbijuv.aijuy.ngdxebo.tbswxvkr

com.paranbijuv.aijuy.ngdxebo.mklbve

Services

com.paranbijuv.aijuy.cgeoc.vtfmp.eotqz

com.paranbijuv.aijuy.cgeoc.ozbpip

Android Permissions

fd988b737500c564d143095972b20f6a0acd5a4f16a0e10fec8c4bb776469601.zip