ilxtjzye.awngzjehdigpgowzqszcpfid.ogfljchqh.qrdj
android.intent.action.SEND
android.intent.action.SENDTO
ilxtjzye.awngzjehdigpgowzqszcpfid.ogfljchqh.iyej
android.intent.action.MAIN
General
-
Target
base.apk
-
Size
2.5MB
-
MD5
4726939e317f3a957e9fced1276962b1
-
SHA1
60d84eb856ffc913ebe3a04c4c1e772605fed636
-
SHA256
240da0fbd21f9a0d5fcd1fbc1282979bba70970369d484861353f9bc5d10e5a7
-
SHA512
af2384922fbedc85195379e2f71580c23c2bd694dab8742eedbb0c4934169dfb71b0611af78d8870fc683f2233d1e42d2d1c6565a55e4be13eb7b8c0f89c556a
-
SSDEEP
49152:30nyvL3ZQhofkeO/YksW69kV2P6xgEyesR8gepFeSOCHFmErw1/dB:30yv9QhofkeO/0QgfZenZNq
Score
7/10
Malware Config
Signatures
-
Requests dangerous framework permissions 10 IoCs
Files
-
base.apk
klnxoa.djhtwk.qiusxjq
ilxtjzye.awngzjehdigpgowzqszcpfid.ogfljchqh.iyej
-
00_arrow.png
-
01_page_point_off.png
-
01_page_point_on.png
-
02_img_sd-card.png
-
03_img_phone.png
-
14110301_TEST01_1.html
-
MaterialIcons-Regular.ttf
-
activity_01.png.jpg
-
activity_02.png.jpg
-
activity_03.png.jpg
-
activity_04.png.jpg
-
activity_05.png.jpg
-
activity_06.png.jpg
-
activity_07.png.jpg
-
activity_08.png.jpg
-
activity_base.png.jpg
-
activity_outside.png.jpg
-
au_terms_meta.json
-
checked.png
-
crashlytics-build.properties
-
db_crt.dat
-
db_dex.nmp
-
db_elfa.map
-
db_elfa.nmp
-
db_evoapk.dat
-
demo_affirmation_state_workflow.json
-
demo_check_credit_card_order.json
-
demo_credit_card_kladr_workflow.json
-
demo_credit_card_segment_get.json
-
demo_credit_card_segment_get_new_params.json
-
demo_exit_workflow_state.json
-
demo_long_form_detailed_info_state_workflow.json
-
demo_long_form_family_info_state_workflow.json
-
demo_long_form_work_duration_state_workflow.json
-
demo_long_form_work_experience_state_workflow.json
-
demo_long_form_workflow.json
-
demo_pdf_card_info.json
-
demo_person_info_workflow.json
-
demo_short_form_card_parameters_state_workflow.json
-
demo_short_form_contacts_and_income_state_workflow.json
-
demo_short_form_workflow.json
-
demo_status_change_limit_state_workflow.json
-
demo_status_change_pers_data_state_workflow.json
-
demo_status_need_more_info_state_workflow.json
-
demo_status_success_state_workflow.json
-
demo_status_success_with_cvv_info.json
-
demo_techbreak_workflow.json
-
demo_workflow_error_message.json
-
eula.html
-
feed-ams-appwall.json
-
feed-ams-avscan-progress.json
-
feed-ams-avscan-storage.json
-
feed-ams-boost-progress.json
-
feed-ams-cleanup-progress.json
-
feed-ams-dashboard-pro.json
-
feed-ams-dashboard.json
-
feed-ams-data-usage-activity.json
-
feed-ams-dialog.json
-
feed-ams-feature-results.json
-
feed-ams-main-pro.json
-
feed-ams-subscription-settings.json
-
feed-ams-vpn-activity.json
-
feed-ams-wifiscan-progress.json
-
feed-ams-wifispeed-progress.json
-
gemcbp.properties
-
init_moneyboxes.xml
-
new-joe-kuo-6.1000
-
nopie_openvpn.arm64-v8a
-
nopie_openvpn.armeabi-v7a
-
nopie_openvpn.x86
-
nopie_openvpn.x86_64
-
offer.html
-
pie_openvpn.arm64-v8a
-
pie_openvpn.armeabi-v7a
-
pie_openvpn.x86
-
pie_openvpn.x86_64
-
pp.html
-
privacy_policy.html
-
rages.properties
-
sign.axml
-
sign.crt
-
sign.mf
-
supplierconfig.json
-
vpn.conf
-
vps.prop
-
yOB.json
Android Permissions
base.apk
Permissions
android.permission.INTERNET
android.permission.RECORD_AUDIO
android.permission.WAKE_LOCK
android.permission.MANAGE_OWN_CALLS
android.permission.USE_FULL_SCREEN_INTENT
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.CALL_PHONE
android.permission.READ_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REQUEST_DELETE_PACKAGES
android.permission.RECEIVE_SMS
android.permission.GET_ACCOUNTS
android.permission.READ_CONTACTS
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.FOREGROUND_SERVICE
android.permission.SEND_SMS
android.permission.READ_EXTERNAL_STORAGE