Resubmissions

29-05-2023 01:11

230529-bj2assha72 10

27-05-2023 19:22

230527-x3jqrach68 10

27-05-2023 19:19

230527-x1ph8adc8s 10

06-05-2023 03:47

230506-ecc66sab7y 10

General

  • Target

    ee6aec48e19191ba6efc4c65ff45a88e.bin

  • Size

    7.4MB

  • MD5

    ee6aec48e19191ba6efc4c65ff45a88e

  • SHA1

    f3b135555ae731b5499502f3b69724944ab367d5

  • SHA256

    0fdfbf20e59b28181801274ad23b951106c6f7a516eb914efd427b6617630f30

  • SHA512

    0f1fb2554bd05df4c4987f64fc9c22695cb2f0951b1b46202fb0aa24ff5008d14dfd2782e1c508b5534c16c024034d75b72cee2aebeeb4337e0fda69314ee0db

  • SSDEEP

    196608:Cej0iP9EswQ2qypeQa/twJFQdKShmodX34Rd1k7Q8Ufy6mC:CUvP9ryjeQa/tYFQRtd4be7cfZmC

Score
10/10

Malware Config

Extracted

Family

daam

C2

http://192.99.251.51:3000

Attributes
  • uri

    /socket.io

Signatures

  • Daam family
  • Requests dangerous framework permissions 15 IoCs

Files

  • ee6aec48e19191ba6efc4c65ff45a88e.bin
    .apk android

    com.devnied.currency.pro

    fr.devnied.currency.activity.HomeActivity


  • AndroidClockMono-Thin.ttf
  • Roboto-Bold.ttf
  • Roboto-Light.ttf
  • android-iconify-fontawesome.ttf
  • backward
  • crashlytics-build.properties
  • zone.tab

Android Permissions

ee6aec48e19191ba6efc4c65ff45a88e.bin

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.GET_ACCOUNTS

android.permission.READ_CALL_LOG

android.permission.WRITE_CALL_LOG

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.CAMERA

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.RECORD_AUDIO

android.permission.READ_PHONE_STATE

android.permission.READ_HISTORY_BOOKMARKS

com.android.callservice.permission.READ_WRITE_BOOKMARK_FOLDERS

com.android.browser.permission.READ_HISTORY_BOOKMARKS

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.RECEIVE_BOOT_COMPLETED