Overview

overview

8

Static

static

7

188540f5a1...16.apk

android-9-x86

7

188540f5a1...16.apk

android-10-x64

8

188540f5a1...16.apk

android-11-x64

8

bubble.js

windows7-x64

1

bubble.js

windows10-2004-x64

1

consentform.html

windows7-x64

1

consentform.html

windows10-2004-x64

1

contact.html

windows7-x64

1

contact.html

windows10-2004-x64

1

flash.js

windows7-x64

1

flash.js

windows10-2004-x64

1

main.fb812...unk.js

windows7-x64

1

main.fb812...unk.js

windows10-2004-x64

1

slardar_bridge.js

windows7-x64

1

slardar_bridge.js

windows10-2004-x64

1

slardar_sdk.js

windows7-x64

1

slardar_sdk.js

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    188540f5a1662472463de4f3d6932bc07cb26414246406fcc0f7ec3b3bc94516.bin

  • Size

    2.3MB

  • MD5

    a4c17d29a0f21d9291a662b36a106a72

  • SHA1

    2a8705c75b1de3ef2bf90c1b02f254b029bddc90

  • SHA256

    188540f5a1662472463de4f3d6932bc07cb26414246406fcc0f7ec3b3bc94516

  • SHA512

    07977f0e375fc506699e5e84e47a28be5c32e8833aa6fcb06e7e527526008de7bcfcf3ac28a851e4f399d52198a490e23f23aa7d3dbcf485e522d9fe6465339f

  • SSDEEP

    49152:q2jRc2LGG+ccECFziX5/JJ9ig1VvSOojmyzq83OUl/yEeTzfU3n:S2SUCFzs3MmVqOojmUq8ecp8Q3n

Score
7/10

Malware Config

Signatures

  • Requests dangerous framework permissions 9 IoCs

Files

  • 188540f5a1662472463de4f3d6932bc07cb26414246406fcc0f7ec3b3bc94516.bin
    .apk android

    com.brother.firm

    com.tram.omj.MainActivity


  • 1.json
  • 2.json
  • 3.json
  • BNCKekP.json
  • adapters.json
  • awesome.json
  • bubble.json
    .js
  • button_loading.json
  • button_loading_grey.json
  • button_loading_orange.json
  • button_loading_red.json
  • consentform.html
    .html .js
  • contact.html
    .html
  • countries.json
  • data.json
  • down-arrow.svg
  • flash.json
    .js
  • img_0.png
  • img_0.webp
  • img_1.png
  • img_1.webp
  • img_2.png
  • img_2.webp
  • img_3.png
  • img_3.webp
  • img_4.webp
  • main.fb81220a.chunk.js.map
    .js
  • networks.json
  • points_answer_gift.json
  • red_point_anim.json
  • remind.json
  • slardar_bridge.js
    .js
  • slardar_sdk.js
    .js
  • solving_loading.json
  • solving_looping.json
  • solving_video_generating.json
  • supplierconfig.json
  • terrible.json
  • ticket_dark_add_count_view.json
  • ticket_dark_sub_count_view.json
  • ticket_red_add_count_view.json
  • ticket_red_sub_count_view.json
  • ticket_white_add_count_view.json
  • ticket_white_sub_count_view.json
  • ui_standard_redhat_text_regular.ttf
  • uikit_refresh_out.json
  • youtube_sans_medium.xml
    .xml
  • youtube_sans_semibold.xml
    .xml

Android Permissions

188540f5a1662472463de4f3d6932bc07cb26414246406fcc0f7ec3b3bc94516.bin

Permissions

android.permission.GET_ACCOUNTS

android.permission.POST_NOTIFICATIONS

android.permission.READ_PRIVILEGED_PHONE_STATE

android.permission.REQUEST_COMPANION_RUN_IN_BACKGROUND

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACTION_MANAGE_OVERLAY_PERMISSION

android.permission.VIBRATE

android.permission.WRITE_SMS

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.RECEIVE_SMS

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.READ_CONTACTS

android.permission.READ_SMS

com.google.android.c2dm.permission.RECEIVE

android.permission.USES_POLICY_FORCE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_MEDIA_IMAGES

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_MMS

android.permission.INSTALL_SHORTCUT

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.RECEIVE_BOOT_COMPLETED

com.tram.mj.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.QUERY_ALL_PACKAGES

andstartScreenroid.permission.READ_EXTERNAL_STORAGE

android.permission.REQUEST_COMPANION_RUN_IN_BACKGROUND

android.permission.ACCESS_NETWORK_STATE

android.permission.INSTALL_PACKAGES

android.permission.WRITE_SETTINGS

android.permission.WAKE_LOCK

android.permission.WAKE_LOCK

android.permission.DISABLE_KEYGUARD

android.permission.SEND_SMS