protohax-1[.]4[.]0-armv7[.]apk

Sharing

Copy URL Twitter E-mail

General

Target

protohax-1.4.0-armv7.apk
Size

8.7MB
MD5

21cfd74137c9d9f46400f15c352c655d
SHA1

44bfea98de9f5ec6838c6a763c8bed3c33a31227
SHA256

8d87dee4c5cd630b16b89c5080f702dc1edc0549e6e77651104a568e5ad068c5
SHA512

4871e79cb13be00d2835d0541c6b59264c49a073e43d8cac9d834e73c57d9013aadcbbf76add89d6ab7946d63925690046dd216f5b58f2c7eb0511b4efa1d095
SSDEEP

98304:m44pnkcqr1YWadHLh7KMydlIj0844PBGENPKIDTkdFM8LZ3n6jSRQBoMdn:m7nIr1Y99Lh78l4x4aoIkN3n6jt/n

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS

Files

protohax-1.4.0-armv7.apk
.apk android arch:arm

dev.sora.protohax

dev.sora.protohax.ui.activities.MainActivity

Activities

dev.sora.protohax.ui.activities.MainActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.QUERY_ALL_PACKAGES
android.permission.FOREGROUND_SERVICE_SPECIAL_USE
android.permission.POST_NOTIFICATIONS
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.gms.permission.AD_ID
dev.sora.protohax.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

Services

dev.sora.protohax.relay.service.AppService

android.net.VpnService
dev.sora.libmitm.vpn.start
dev.sora.libmitm.vpn.stop
baseline.prof
baseline.profm
block_hardness.json
canonical_block_states_419.nbt.gz
.gz
canonical_block_states_419.nbt
canonical_block_states_428.nbt.gz
.gz
canonical_block_states_428.nbt
canonical_block_states_440.nbt.gz
.gz
canonical_block_states_440.nbt
canonical_block_states_448.nbt.gz
.gz
canonical_block_states_448.nbt
canonical_block_states_465.nbt.gz
.gz
canonical_block_states_465.nbt
canonical_block_states_471.nbt.gz
.gz
canonical_block_states_471.nbt
canonical_block_states_486.nbt.gz
.gz
canonical_block_states_486.nbt
canonical_block_states_503.nbt.gz
.gz
canonical_block_states_503.nbt
canonical_block_states_527.nbt.gz
.gz
canonical_block_states_544.nbt.gz
.gz
canonical_block_states_560.nbt.gz
.gz
canonical_block_states_567.nbt.gz
.gz
canonical_block_states_575.nbt.gz
.gz
canonical_block_states_582.nbt.gz
.gz
canonical_block_states_589.nbt.gz
.gz
index.json
item_tags.json
legacy_block_states.nbt.gz
.gz
music.nbs
runtime_item_states_419.json
runtime_item_states_440.json
runtime_item_states_448.json
runtime_item_states_475.json
runtime_item_states_486.json
runtime_item_states_503.json
runtime_item_states_527.json
runtime_item_states_534.json
runtime_item_states_560.json
runtime_item_states_567.json
runtime_item_states_575.json
runtime_item_states_582.json
runtime_item_states_589.json

Android Permissions

protohax-1.4.0-armv7.apk

Permissions

android.permission.INTERNET

android.permission.FOREGROUND_SERVICE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.QUERY_ALL_PACKAGES

android.permission.FOREGROUND_SERVICE_SPECIAL_USE

android.permission.POST_NOTIFICATIONS

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.google.android.gms.permission.AD_ID

dev.sora.protohax.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Sharing

General

Malware Config

Signatures

Files

dev.sora.protohax

dev.sora.protohax.ui.activities.MainActivity

Activities

dev.sora.protohax.ui.activities.MainActivity

Permissions

Receivers

androidx.profileinstaller.ProfileInstallReceiver

Services

dev.sora.protohax.relay.service.AppService

Android Permissions

protohax-1.4.0-armv7.apk