cat.udon.UdonActivity
android.intent.action.MAIN
com.facebook.CustomTabActivity
android.intent.action.VIEW
com.onesignal.NotificationOpenedActivityHMS
android.intent.action.VIEW
Static task
static1
1 signatures
General
-
Target
custom-udon-v4.7.0.apk
-
Size
40.7MB
-
MD5
31f9aee5ff03f01b5b03d5d3c3b782d5
-
SHA1
53ff05da49cc98ce547f3876ef75ec3ee10bd726
-
SHA256
4c09123ba47687e1e499b2f6175be3c7cd1b64be32a849d6b2e51928fc080288
-
SHA512
154c9377a9bc5236e5b5a9e4b8d13a6192f6afea61783ae6bdc6ff1ef24f04d8df9963cc89d0721fb2c8f1c25a6449f8e7c78b90202e0c02dc864e4af36ff7eb
-
SSDEEP
786432:5S51RDAuGnCdqoOXQNWAo/yfeHseXpVbW5SwLuIONF1aauze52RtzC8oT1z+pEJs:s51CJZLkQqGsefbW8rke52Rawp4s
Score
7/10
Malware Config
Signatures
-
Requests dangerous framework permissions 5 IoCs
description ioc Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call. android.permission.CALL_PHONE Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION Required to be able to access the camera device. android.permission.CAMERA
Files
-
custom-udon-v4.7.0.apk.apk android arch:arm64 arch:arm
cat.udon
cat.udon.UdonActivity
Activities
Permissions
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CALL_PHONE
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.INTERNET
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CAMERA
cat.udon.permission.C2D_MESSAGE
com.google.android.c2dm.permission.RECEIVE
android.permission.RECEIVE_BOOT_COMPLETED
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
android.permission.READ_APP_BADGE
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
me.everything.badger.permission.BADGE_COUNT_READ
me.everything.badger.permission.BADGE_COUNT_WRITE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.gms.permission.AD_ID
Receivers
cat.start.network.WifiReceiver
android.net.wifi.STATE_CHANGE
com.onesignal.BootUpReceiver
android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
com.onesignal.UpgradeReceiver
android.intent.action.MY_PACKAGE_REPLACED
com.onesignal.GcmBroadcastReceiver
com.google.android.c2dm.intent.RECEIVE
com.google.android.gms.measurement.AppMeasurementReceiver
com.google.android.gms.measurement.UPLOAD
com.google.firebase.iid.FirebaseInstanceIdReceiver
com.google.android.c2dm.intent.RECEIVE
com.facebook.CurrentAccessTokenExpirationBroadcastReceiver
com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED
com.facebook.AuthenticationTokenManager$CurrentAuthenticationTokenChangedBroadcastReceiver
com.facebook.sdk.ACTION_CURRENT_AUTHENTICATION_TOKEN_CHANGED
Services
cat.udon.gcm.GcmIntentService
com.google.android.c2dm.intent.RECEIVE
com.google.android.c2dm.intent.SEND
cat.udon.gcm.GcmIDListenerService
com.google.android.gms.iid.InstanceID
com.onesignal.HmsMessageServiceOneSignal
com.huawei.push.action.MESSAGING_EVENT
com.google.firebase.messaging.FirebaseMessagingService
com.google.firebase.MESSAGING_EVENT
-
712.gif.gif
-
Banda-Bold.ttf
-
Banda-BoldItalic.ttf
-
Banda-ExtraLight.ttf
-
Banda-ExtraLightItalic.ttf
-
Banda-Light.ttf
-
Banda-LightItalic.ttf
-
Banda-Regular.ttf
-
Banda-RegularItalic.ttf
-
GoogleService-Info.plist.xml
-
InputControl.js.bin
-
JWPlayer.js.bin
-
KievitOT-Black.ttf
-
KievitOT-BlackItalic.ttf
-
KievitOT-Bold.ttf
-
KievitOT-BoldItalic.ttf
-
KievitOT-Book.ttf
-
KievitOT-BookItalic.ttf
-
KievitOT-ExtraBold.ttf
-
KievitOT-ExtraBoldItalic.ttf
-
KievitOT-ExtraLight.ttf
-
KievitOT-ExtraLightItalic.ttf
-
KievitOT-Light.ttf
-
KievitOT-LightItalic.ttf
-
KievitOT-Medium.ttf
-
KievitOT-MediumItalic.ttf
-
KievitOT-Regular.ttf
-
KievitOT-RegularItalic.ttf
-
KievitOT-Thin.ttf
-
KievitOT-ThinItalic.ttf
-
LICENSE
-
NicknameInputControl.js.bin
-
Order.js.bin
-
OrderInApp.js.bin
-
OrderSummary.js.bin
-
Step.js.bin
-
StepAddress.js.bin
-
StepComplete.js.bin
-
StepPaymentMethod.js.bin
-
StepPointsExchange.js.bin
-
StepRestaurant.js.bin
-
StepSummary.js.bin
-
_app_props_.json.bin
-
_env_.json.bin
-
activity.js.bin
-
address.js.bin
-
admob.js.bin
-
animation.js.bin
-
apiCall.js.bin
-
app.js.bin
-
appRating.js.bin
-
appicon.png.png
-
appsflyer.js.bin
-
async.js.bin
-
async.min.js.bin
-
att.js.bin
-
badge.js.bin
-
basicMarkdown.js.bin
-
binding.js.js
-
binding.min.js.js
-
bootstrap.json.bin
-
bottom.js.bin
-
button.js.bin
-
cache.json
-
card.js.bin
-
cardLauncher.js.bin
-
cardLndEpgThumbVideo.js.bin
-
cardLndInfoThumbVideo.js.bin
-
cardLndThumbVideo.js.bin
-
cardPorThumbVideo.js.bin
-
cardSlide.js.bin
-
cartFooter.js.bin
-
cartHeader.js.bin
-
cartList.js.bin
-
cartListTemplate.js.bin
-
cartProduct.js.bin
-
cat.start.controllers.js.bin
-
cat.start.controls.js.bin
-
cat.start.corus.js.bin
-
cat.start.deviceModels.js.bin
-
cat.start.geolocation.js.bin
-
cat.start.images.js.bin
-
cat.start.navigation.js.bin
-
cat.start.permissions.js.bin
-
cat.start.ui.js.bin
-
cat.start.utils.js.bin
-
cat.start.window.js.bin
-
chat.js.bin
-
checkbox.js.bin
-
checksums.js.bin
-
chromecast.js.bin
-
chromecastPlayer.js.bin
-
cntAd.js.bin
-
cntGrid.js.bin
-
cntHeroSlider.js.bin
-
cntLauncher.js.bin.ps1
-
cntRow.js.bin
-
collection.js.bin
-
color.js.bin
-
commentsModal.js.bin
-
component.js.bin
-
control.js.bin
-
controls.js.bin
-
datePicker.js.bin
-
default.jpg
-
delivery.js.bin
-
details.js.bin
-
downloadManager.js.bin
-
downloader.js.bin
-
dropdown.js.bin
-
dropdownIcon.js.bin
-
edit.js.bin
-
emailValidation.js.bin
-
error.js.bin
-
exoplayer.js.bin
-
family.js.bin
-
familyCover.js.bin
-
familyListCover.js.bin
-
filesystem.js.bin
-
filters.js.bin
-
filtersBar.js.bin
-
filtersSelector.js.bin
-
firebase.js.bin
-
firebaseCat.js.bin
-
floatingButton.js.bin
-
floatingView.js.bin
-
fullscreenError.js.bin
-
gamaListTemplate.js.bin
-
gradient.js.bin
-
gradients.js.bin
-
grid.js.bin
-
gridCell.js.bin
-
header.js.bin
-
horizontalSelector.js.bin
-
images.js.bin
-
inAppConfirmationModal.js.bin
-
inapp.js.bin
-
inapp_purchase.js.bin
-
index.json
-
infoCard.js.bin
-
infoPanel.js.bin
-
infoPanelVersion.js.bin
-
input.js.bin
-
json2.js.js
-
keychain.js.bin
-
lateralToolbar.js.bin
-
layout.js.bin
-
list.js.bin
-
listTemplate.js.bin
-
loadMore.js.bin
-
loader.js.bin
-
loader_v3.json
-
loader_v4.json
-
loader_v5.json
-
loader_v6.json
-
loader_v6_white.json
-
loader_v7.json
-
loader_v8.json
-
login.js.bin
-
main.js.bin
-
main_backup.js.bin
-
manifest
-
markdown.js.bin
-
menu.js.bin
-
menuGroup.js.bin
-
menuListTemplate.js.bin
-
menuProduct.js.bin
-
menu_details.js.bin
-
message.js.bin
-
modifiersSelector.js.bin
-
moment-with-locales.js.bin
-
moment.js.bin
-
moment.min.js.bin
-
msgError.js.bin
-
msgJoinLeave.js.bin
-
msgNormal.js.bin
-
msgTimestamp.js.bin
-
multisafepay.js.bin
-
navbar.js.bin
-
navigation.js.bin
-
network.js.bin
-
network_activity.js.bin
-
new.js.bin
-
newStampQR.js.bin
-
noProducts.js.bin
-
noResults.js.bin
-
noodleFun.js.bin
-
notification.js.bin
-
onesignal.js.bin
-
order.js.bin
-
orderDetails.js.bin
-
orderFiltersSelector.js.bin
-
order_item.js.bin
-
order_steps.js.bin
-
orders.js.bin
-
package.json
-
paypal.html.html .js
-
paypal.js.bin
-
planPrice.js.bin
-
playerToolbar.js.bin
-
policy_modal.js.bin
-
polling.js.js
-
polling.min.js.js
-
product.js.bin
-
product_disabled.js.bin
-
productsList.js.bin
-
profile.js.bin
-
purchaseType.js.bin
-
push.js.bin
-
quick_menu.js.bin
-
radioButton.js.bin
-
ratio.js.bin
-
registration.js.bin
-
resetPassword.js.bin
-
restaurantSelector.js.bin
-
restaurantsList.js.bin
-
rightWindow.js.bin
-
sda.js.bin
-
searchBar.js.bin
-
searchGrid.js.bin
-
searchTrend.js.bin
-
sectionSelector.js.bin
-
select.js.bin
-
selectGroup.js.bin
-
selectOption.js.bin
-
selector.js.bin
-
sermepa.html.html .js
-
sermepa.js.bin
-
sermepa_test.html.html .js
-
settings.js.bin
-
setup.js.bin
-
shortcuts.js.bin
-
sidebar.js.bin
-
size.js.bin
-
sliderBullets.js.bin
-
socialWiBox.js.bin
-
spacing.js.bin
-
splash.js.bin
-
stamp.html.html .js
-
stamp_success.js.bin
-
stamp_win.js.bin
-
stamps.js.bin
-
steps.js.bin
-
storekit.js.bin
-
styles.js.bin
-
success.js.bin
-
surveys.js.bin
-
sync.js.bin
-
tabGroup.js.bin
-
tabGroup.tv.js.bin
-
takeaway.js.bin
-
textArea.js.bin
-
theoPlayer.js.bin
-
ti.kernel.js.bin
-
ti.main.js.bin
-
timing.js.bin
-
typography.js.bin
-
udon.json
-
universalLinks.js.bin
-
userMenu.js.bin
-
userMenuIcon.js.bin
-
utils.js.bin
-
verticalSelector.js.bin
-
videoCover.js.bin
-
videoErrorCover.js.bin
-
videoStateButton.js.bin
-
walktrough.js.bin
-
walktrough_nf.js.bin
-
websockets.js.bin
-
wifi.js.bin
-
winter-mobile.mp4
Android Permissions
custom-udon-v4.7.0.apk
Permissions
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CALL_PHONE
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.INTERNET
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CAMERA
cat.udon.permission.C2D_MESSAGE
com.google.android.c2dm.permission.RECEIVE
android.permission.RECEIVE_BOOT_COMPLETED
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
android.permission.READ_APP_BADGE
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
me.everything.badger.permission.BADGE_COUNT_READ
me.everything.badger.permission.BADGE_COUNT_WRITE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.gms.permission.AD_ID