com[.]okavwx[.]kuizrpxo[.]apk

Sharing

Reason

open /tmp/unpacked-apk887303/assets/kyIrFHNsvplI0DF0En8pjdmDdaHlqtturQM8v5iUcL6ercmEUyh91y2xleoF0Bcc61ru2HOJeomJiimbZcC2luE3YoWqROULI4iAV2MmUI4Mltpd3mQ80k1MxyHOVy3BFMao0Wq7BqiOB2RE0TxE8XMxcHdwv9BvQDhKsadh7TGTcnkFScOcbyDS0NmDS4MDZX98Uhm9PqIoq3v0wIPsuzur0zKPZLzchd5pomVL1QyV1oChswgkpuiACS9uHHkd2Fhm9fMjXeCPbKAV8DwDEoYX6FYHoBdt: file name too long

General

Target

com.okavwx.kuizrpxo.apk
Size

21.2MB
MD5

eb3d2e6dfd34cea2333f5630d34ee856
SHA1

6e22b23a73982bef9e8c8dd92fbfa0a23fe5fe9a
SHA256

c6e30b350761f89dd30bdd26eba05a66f6defea924e04b82ab2d9af1314a7509
SHA512

1e0908777e0ca0696fde3b9d978e389bda4e2d85398c685bf927a699cf3f2d4a349e51e595b20be32d5c608dfd9ec3721d666bd490ae4b35133fab8ebab952e1
SSDEEP

393216:s1Cb6w7j6t111c59c8p9IpN+eEXZhnEDCsqbueeGVfYNL0VnfLRfwzXd/+Vt6MB+:s1CbvHGG59l8EJtEpqkGVf5VfLR68t6/

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

com.okavwx.kuizrpxo.apk
.apk android arch:arm

Password: spf200
04cOfKLcM36yXJwjdDTJyU16IEvpALHPEZuQ0Jw
0dPrW3MHY3
0ni26DAwiKGR7owSnt4XGH3007WQ7GgNpb2Jex
1TsKMcNcH3L0lB3zQ6pwJuJQlOHt61CA7X7PuHP0I1RH3u62xH7P2wBGkNz9FugRAk4zFoejqqYSObX1SP6z4XJKvAERhR
1X5p0rFN8X5ulR2ciGTDIVNy7KPXSyPMs4BEldzzXdADF8S
6EAeDSwYxc04PzVclED2LnHdOsokgdt2fR9tcNpYEnKyP8Y5VlLHOgzS7
AhvbgMrCg7mbtRyrjFdIw8WBkYo7HSQNl
BeeVO55QF4m95ieBvkz2f5wOF90zZpwDhODEh67PzTcErg4A1LM5NL5GTA
BmozHtf3A1LnL7yQ2x4uZRy0HVF11wjktVzJvZY4u8nf
BoB
Bx6AOEGY9wPFU0mP5OBeBmeDAkSQn6dlxiQ
DdjHJCO
DxEDhThiPt46b3Wf9gnCnjVqGJITW4zrBz1v0cBubRmiIZMoFBIH03YtNo7JkywW5MFNcAq7P4BG8
F4pUYkC8B1KSGztMjHIktYDUOSJnFVwTcIPzkWFQexL0VQMsUArq0ARRAGgfMoCRF2P8V4Cyc3f7nO09gqEfEf4N180PPzd065u3
GoogleSans-Regular.ttf
HShNbCyT3DFIruA
JC4tqnhPMqANRzFJRAkQVDei4BgSDSqsN6
Jb6eUd6Oz
K00b0pmpWbLAKjdT7yvL
KNj0I
MyP2I85ZthcQ0
NCzZs72rbNWSMvDSuibNsGzUVFhrAe8lASBvLQ2Z6Gt5clZTHv3
NGLf73XBs8i7ZNLsLTldwz4vE4z519ptuSLPemDQhoqXN4egeWoUFOOoMpLcE2KuTZNhc7ozqG7ijhSLZt1fUFZQdxc0MBmpO7dZq8diI0E0SGeF
O6blTV7KWmmC10
PD8O7TydcR0er84spj0o6zDKSkrqzkX5UCIKI6ZX8kLkVD7RE2vzkzeq0x7WCiP24evZzt
RTsskJ94YmiEFsmC8NCBsLQ4dPenPc7cPT87dKLGbhOsH0NOYnThiQTfcyoFFVoVpfZW
RjEpyY77zmW6UGR5TV80EeHCQJvK4uCFdJ0mG0JfE7Zxk0tCCPkLerGNNcJ0CwceUr2kREy4m3vIqjrRp4ioj2AXcm
V4HyA9tIsUc0hn86cmX8p7F2m4UtM95EdpuLq
VdoCjw8MmLAIyq4vF19j9QvjIUuxoprwkCm20JtQZHNzSsTjP2HshwbfTe5AbKy7t
VmilSAFQEjqvTEKPWkIPPs0icTViiQDSuGZjYP1rRDxAsi28
XyUiVA8nmVdXyjZ1scJUbyKYxCDRdb1rOO77ZXEv9GwZtgAnGRPGnB9zY6Vs8qj
cJzk92kv2z9WiRLKurDOOItrGyrlMeTpz7QoShluCKM0oiTMP9vK2vxFphOKK9TXRUxlbw2ngjmd6EdxPPGOUiyeKl0LD
config.json
dNwn4LT0MjJ9zmW4TDDuyCyebN41vUe89SX15JhuzkZzubUMYWP69gNMpslrS3E2fM0
dWiNe2NJMVWd9D9x
easyagent
.apk android

Password: spf200

com.google.android.cts

Permissions

android.permission.ACCESS_MOCK_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.INTERNET
android.permission.DISABLE_KEYGUARD
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.GET_ACCOUNTS
android.permission.MANAGE_ACCOUNTS
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_EXTERNAL_STORAGE

Services

com.xts.uievent.script.service.ScriptServerService

SCRIPT.SERVER.STARTED.ACTION
SCRIPT.SERVER.STOP.ACTION
SCRIPT.EXEC.START.ACTION
SCRIPT.EXEC.START.FILE.ACTION
ectemplate
ecurl.dat
gG03PnSrlIugGtpNt0mcpUnUreDUoPt87xNn0MokXgS4ec4vU0eCXWVxtgMKU9cHowkiRb
gRkZyr2Y4oM7jYw0PO9gjQv3sJwU1E5tJuh0TjFN0UpesxNihXYv0G1AvsGZ6i7Auty0RxgGjwgABqK67nMdQJtdEROBNQS2XZV09YCVRsmOzA9eSK3SG
go2ErvfgDPN0Kqxr1PKLCcYWUiCXZBJ9eOhNjhAgYf51r34
hk
iMSuPK3
index.html
lpt1.co9S
n3LMRwZWdBhTxstpbOGwCrBYVTfBR1xp74pNGwU3ND0yiH280RcLk9I7BX28qxene3XDcRTP5NT0BdQn2
oGvcz5RS8qbyj1k8tUsg0VvnExbnY4TK4Mo3fvjCF37NT2NWSxY
r3c0is8W7r0vObYQyO09hHgxbMALp5tI17v8iH30sm0x1qP5k3dpn24VWP
sufIhkDMCEtDIjw8YkhYdwWGKdTVwAWAMcFccF1lmCSZyo9UzSCrMp86IK9eBSpcS31GPu6tu6MLP8ive0wP8FZxeJEDGXUEmPgFyDeeWj7QNwrKBO0BwLeneEBf0DXIlhz01N7M6r3ZIiUTr5b3Xsi
supplierconfig.json
t10yhcqnC0W3lK0FtNFPjFfei
txeJEJ1XE9zT2LPE
vers.dat
w0q1dPc7
xEgmfwUNZh4wBBXFNFHqQQkJFcr48uuUbl0w6sDSyOB22vLjgMwhzSuSuIRdf0QEXkvpBBJvbZ2cpsSkC
y2SAXnEL39rcmfOu0HMX
yIDdWMDO7GdhQw3
yeGCA78Hilhhu5uAUJL4Bs96m0lhF4wOLt8T76

Sharing

Errors

General

Malware Config

Signatures

Files

Password: spf200

Password: spf200

com.google.android.cts

Permissions

Services

com.xts.uievent.script.service.ScriptServerService