Hide[.]me-4[.]0[.]2[.]apk

Sharing

Copy URL Twitter E-mail

General

Target

Hide.me-4.0.2.apk
Size

31.8MB
MD5

48d9a1eae6fbd9bd8983ef8727e777dc
SHA1

57844c836b4b1c242da6d19867ac04b2ed0a2047
SHA256

021d71c57b31c1d0067eac4ca6e1a23334a3976366566bbf9150966ac3d32117
SHA512

b9c367878c81f7fe52c2467030c3233ea1b1b65a5b77213dc047964b70745a78a7d3a2e30540926b7a7f7e8ba0f90d341f312c93d06f51c407b049c16ab280de
SSDEEP

786432:AwjAwQfoR/FwQUyWCd54EUvj3A6eEoJKrN7RHKmct6M:jAwh/FzUyWCdyEUbw61frN7xy6M

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access location in the background.	android.permission.ACCESS_BACKGROUND_LOCATION
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS

Files

Hide.me-4.0.2.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

hideme.android.vpn.noPlayStore

com.android.vpn.activities.LoginActivity

Activities

com.android.vpn.activities.InstallerTabBarActivity

android.intent.action.VIEW

com.android.vpn.activities.LoginActivity

android.intent.action.MAIN
android.intent.action.MAIN

com.android.vpn.activities.VPNAppAction

android.intent.action.VIEW

com.android.vpn.activities.WidgetConfigurationActivity

android.appwidget.action.APPWIDGET_CONFIGURE

Permissions

android.permission.REQUEST_INSTALL_PACKAGES
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_BACKGROUND_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.QUERY_ALL_PACKAGES
android.permission.POST_NOTIFICATIONS
hideme.android.vpn.noPlayStore.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

com.android.vpn.receivers.BootBroadcastReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_EXTERNAL_APPLICATIONS_AVAILABLE

com.android.vpn.widgets.ConnectionToggleWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE
android.intent.action.USER_PRESENT

com.android.vpn.widgets.ConnectionToggleWithSettingsWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE
android.intent.action.USER_PRESENT

com.wireguard.android.model.TunnelManager$IntentReceiver

com.wireguard.android.action.REFRESH_TUNNEL_STATES
com.wireguard.android.action.SET_TUNNEL_UP
com.wireguard.android.action.SET_TUNNEL_DOWN

Services

com.android.vpn.services.ProxyService

android.net.VpnService

org.strongswan.android.logic.CharonVpnService

android.net.VpnService

com.android.vpn.services.ExtendedOpenVPNService

android.net.VpnService

com.android.vpn.services.ExtendedSSTPService

android.net.VpnService

com.android.vpn.services.MyTileService

android.service.quicksettings.action.QS_TILE

de.blinkt.openvpn.core.OpenVPNService

android.net.VpnService

com.wireguard.android.backend.GoBackend$VpnService

android.net.VpnService
FA5Pro-Regular.otf
FontAwesome-Messages.ttf
FontAwesome5Pro-Light-300.otf
FontAwesome5Pro-Regular-400.otf
FontAwesome5Pro-Solid-900.otf
Frankfurt.ovpn
Helvetica.ttf
OpenSans-Bold.ttf
OpenSans-Italic.ttf
OpenSans-Light.ttf
OpenSans-Regular.ttf
OpenSans-Semibold.ttf
baseline.prof
baseline.profm
full_licenses.html
licenses.txt
.html
nopie_openvpn.arm64-v8a
.elf linux aarch64
nopie_openvpn.armeabi
.elf linux arm
nopie_openvpn.armeabi-v7a
.elf linux arm
nopie_openvpn.x86
.elf linux x86
nopie_openvpn.x86_64
.elf linux x64
pie_openvpn.arm64-v8a
.elf linux aarch64
pie_openvpn.armeabi
.elf linux arm
pie_openvpn.armeabi-v7a
.elf linux arm
pie_openvpn.x86
.elf linux x86
pie_openvpn.x86_64
.elf linux x64
update_text.txt

Android Permissions

Hide.me-4.0.2.apk

Permissions

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_BACKGROUND_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.QUERY_ALL_PACKAGES

android.permission.POST_NOTIFICATIONS

hideme.android.vpn.noPlayStore.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Sharing

General

Malware Config

Signatures

Files

hideme.android.vpn.noPlayStore

com.android.vpn.activities.LoginActivity

Activities

com.android.vpn.activities.InstallerTabBarActivity

com.android.vpn.activities.LoginActivity

com.android.vpn.activities.VPNAppAction

com.android.vpn.activities.WidgetConfigurationActivity

Permissions

Receivers

com.android.vpn.receivers.BootBroadcastReceiver

com.android.vpn.widgets.ConnectionToggleWidgetProvider

com.android.vpn.widgets.ConnectionToggleWithSettingsWidgetProvider

com.wireguard.android.model.TunnelManager$IntentReceiver

Services

com.android.vpn.services.ProxyService

org.strongswan.android.logic.CharonVpnService

com.android.vpn.services.ExtendedOpenVPNService

com.android.vpn.services.ExtendedSSTPService

com.android.vpn.services.MyTileService

de.blinkt.openvpn.core.OpenVPNService

com.wireguard.android.backend.GoBackend$VpnService

Android Permissions

Hide.me-4.0.2.apk