com.neonet.app.reader.MainActivity
android.intent.action.MAIN
com.neonet.app.reader.Settings
android.intent.action.MAIN
Static task
static1
1 signatures
General
-
Target
f918a6ecba56df298ae635a6a0f008607b0420b9.zip
-
Size
2.6MB
-
MD5
e49bc98b4f2e827db42e83ccbb9ab938
-
SHA1
310087089f5ef2830ea23c667df99273db56d645
-
SHA256
582dadc16985dee96524bb63bcf754401c7088de6d81698bc46ef14af6610b8e
-
SHA512
de3e74b0fbf93e9b03919f0ec45f33378366a2132f0801d5e6c561d625e73fc19871748ae9ba0b6adecc91d26f737799493532b1e19d3e10a3a56b3ff3d1813f
-
SSDEEP
49152:Yp7vNH0xl+1ZvSppWijMa8J2xv1sFLprjcg4x4EpRwmO2aVX3t2+nX6ZCIS:Ypxt1Z6ppBv8JSNsXrX4KEp2mOrhFXRL
Score
7/10
Malware Config
Signatures
-
Requests dangerous framework permissions 9 IoCs
description ioc Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE Allows read access to the device's phone number(s). android.permission.READ_PHONE_NUMBERS Allows an application to receive SMS messages. android.permission.RECEIVE_SMS Allows an application to read SMS messages. android.permission.READ_SMS Allows an app to access location in the background. android.permission.ACCESS_BACKGROUND_LOCATION Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION
Files
-
f918a6ecba56df298ae635a6a0f008607b0420b9.zip.zip
Password: infected
-
052afe724e73e2b95e92ebe30443f29b785a6f002fb0679e627a0a1cec036ecc.apk android
com.mirror.elbow
com.neonet.app.reader.MainActivity
Activities
Permissions
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.RECEIVE_LAUNCH_BROADCASTS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.GET_TASKS
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_NUMBERS
com.google.android.gms.permission.ACTIVITY_RECOGNITION
android.permission.RECEIVE_SMS
android.permission.DISABLE_KEYGUARD
android.permission.READ_SMS
android.permission.VIBRATE
android.permission.USE_FINGERPRINT
android.permission.ACCESS_BACKGROUND_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.ACTION_MANAGE_OVERLAY_PERMISSION
android.permission.WAKE_LOCK
android.permission.ACCESS_WIFI_STATE
android.permission.QUERY_ALL_PACKAGES
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.SYSTEM_ALERT_WINDOW
android.permission.QUICKBOOT_POWERON
android.permission.BLUETOOTH
android.permission.ACCESS_FINE_LOCATION
android.permission.INTERNET
Receivers
com.neonet.app.reader.SMSBroadcastReader
android.provider.Telephony.SMS_RECEIVED
com.neonet.app.reader.NetBroadcastReceiver
android.net.conn.CONNECTIVITY_CHANGE
-
7zipextensions.txt
-
Baker.png
-
Barmaid_slim.png
-
Barman.png
-
Baron.png
-
Baroness.png
-
Blacksmith.png
-
ButcherSkin.png
-
Carpenter.png
-
Chef.png
-
DialogAnimation.xml
-
HEB.json
-
HolyMan.png
-
HolyWoman.png
-
Jailer.png
-
King.png
-
Mage.png
-
Postman.png
-
Queen.png
-
ScreenAnimation.xml
-
SegoeWP.ttf
-
Shoemaker.png
-
Vanilla.json
-
Victorian.png
-
Watchman.png
-
WeaponSmith.png
-
addnewbtn.png
-
albumart.jpg.jpg
-
callout_11_shadow.svg.xml
-
callout_7_overlay.svg.xml
-
callout_8_overlay.svg.xml
-
callout_cloud.svg.xml
-
callout_dest_bubble.svg.xml
-
callout_shape_2.svg.xml
-
callout_shape_4.svg.xml
-
callout_shape_5.svg.xml
-
callout_shape_6.svg.xml
-
copybtn.png
-
deletebtn.png
-
dn.gif.gif
-
equalizerbtn.png
-
exitbtn.png
-
file.gif.gif
-
folder.gif.gif
-
get_it_on_play_logo_small.png
-
gobackbtn.png
-
goforwardbtn.png
-
help.htm.html
-
help_cs.htm.html
-
help_de.htm.html
-
help_es.htm.html
-
help_ru.htm.html
-
help_uk.htm.html
-
i_message_1.svg.xml
-
i_message_2.svg.xml
-
i_message_3.svg.xml
-
i_message_4.svg.xml
-
icon.png
-
index.html.html
-
jumpbackward_button.png
-
jumpforward_button.png
-
license.htm.html
-
pausebtn.png
-
playback_speed.png
-
playbtn.png
-
playstore.htm.html
-
realms_world_section.json
-
secondarybtn.png
-
selbtn.png
-
settings_common.json
-
silence.mp3
-
sleep_timer.png
-
sortnamebtn.png
-
strings.txt
-
totalcmd_datenschutzerklaerung.htm.html
-
totalcmd_privacy_policy.htm.html
-
up.gif.gif
-
valentine_cloud.svg.xml
-
valentine_cloud_overlay.svg.xml
-
valentine_red_heart.svg.xml
-
youtube_sans_light.xml.xml
-
youtube_sans_medium.xml.xml
-
youtube_sans_semibold.xml.xml
-
zip.gif.gif
-
zipbtn.png
-
zoombtn.png