Resubmissions

31-08-2023 19:47

230831-yhsnlaaa37 8

31-08-2023 19:43

230831-yfqffshg3s 8

31-08-2023 19:36

230831-ybq67ahh83 8

General

  • Target

    f75e26936a8f3b55065cdad25ee3e37bdf94054bc5e242dc72ebb073e4f73c3d

  • Size

    7.3MB

  • MD5

    0b7f5acaf4aa7dc5b5c4afa5c3c16f2d

  • SHA1

    b5d780dc90fcc2534d331f1b369646fdafe523dd

  • SHA256

    f75e26936a8f3b55065cdad25ee3e37bdf94054bc5e242dc72ebb073e4f73c3d

  • SHA512

    ced766814016f4a4ba38c87a895009c87ef63cf68fedab51e0c8f50858ee30e11577b7ad3b21c6071db30721461da46a9011a67447ea38d087ff88d9daf61d39

  • SSDEEP

    196608:hS8UtDZrJpYYbnq86lXKV5Xv9/ZLJnLxn271L4CC7FgBSwM:kDrnhTjZrn

Score
7/10

Malware Config

Signatures

  • Requests dangerous framework permissions 17 IoCs

Files

  • f75e26936a8f3b55065cdad25ee3e37bdf94054bc5e242dc72ebb073e4f73c3d
    .apk android arch:arm64 arch:arm arch:x64

    com.gjf2.office

    com.exam.remo.Launcher


  • ar.json
  • arabic.json
  • armenian.json
  • azerbaijani.json
  • azerty.json
  • baseline.prof
  • baseline.profm
  • bengali.json
  • bepo.json
  • bg.json
  • bone.json
  • bulgarian_bds.json
  • bulgarian_phonetic.json
  • ca.json
  • canadian_french.json
  • catalan.json
  • catalan_accents.json
  • cjk.json
  • ckb.json
  • clipboard_cursor_row.json
  • colemak.json
  • colemak_dh.json
  • cs.json
  • da.json
  • danish.json
  • de-DE-neobone.json
  • de.json
  • default.json
  • devanagari.json
  • dvorak.json
  • dvorak_es.json
  • eastern.json
  • eastern_arabic.json
  • eastern_armenian.json
  • el.json
  • emoticons.json
  • en.json
  • eo.json
  • es.json
  • esperanto.json
  • esperanto_with_hx.json
  • extension.json
  • fa.json
  • fa2.json
  • fa3.json
  • faroese.json
  • fi.json
  • floris_day.json
  • floris_day_borderless.json
  • floris_night.json
  • floris_night_borderless.json
  • floris_pure_night.json
  • floris_pure_night_borderless.json
  • fo.json
  • fr.json
  • gboard_day.json
  • gboard_night.json
  • german.json
  • german2.json
  • greek.json
  • gujarati.json
  • gurmukhi.json
  • halmak.json
  • hebrew.json
  • hr.json
  • hu.json
  • hungarian.json
  • hy.json
  • icelandic.json
  • id.json
  • igbo.json
  • ipa.json
  • is.json
  • it.json
  • iw.json
  • ja-JP-jis.json
  • jcuken_russian.json
  • jcuken_ukrainian.json
  • jis.json
  • kannada.json
  • ko.json
  • korean.json
  • ku.json
  • kurdish.json
  • kurdish_kurmanci.json
  • kurdish_standard.json
  • lt.json
  • lv.json
  • malayalam.json
  • nalmy.json
  • nb.json
  • neo2.json
  • nn.json
  • norwegian.json
  • oriya.json
  • persian.json
  • persian2.json
  • persian3.json
  • pl.json
  • pt-BR.json
  • pt.json
  • qwerty.json
  • qwertz.json
  • ro.json
  • root.txt
  • ru.json
  • rue.json
  • rusyn.json
  • rusyn_us.json
  • sangaline.json
  • serbian_cyrillic.json
  • serbian_latin.json
  • sk.json
  • spanish.json
  • sr.json
  • sv.json
  • swedish_finnish.json
  • swiss_french.json
  • swiss_german.json
  • swiss_italian.json
  • tamil.json
  • telpad.json
  • telugu.json
  • thai.json
  • thai_kedmanee.json
  • thai_manoonchai.json
  • tr.json
  • turkish_f.json
  • turkish_q.json
  • uk-cyr-ext.json
  • uk.json
  • ur-PK.json
  • urdu_phonetic.json
  • vi-VN.json
  • warang_citi.json
  • western.json
  • western_additional_symbols.json
  • western_arabic.json
  • western_arabic_pc.json
  • western_armenian.json
  • workman.json

Android Permissions

f75e26936a8f3b55065cdad25ee3e37bdf94054bc5e242dc72ebb073e4f73c3d

Permissions

android.permission.INTERNET

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_WIFI_STATE

android.permission.VIBRATE

android.permission.POST_NOTIFICATIONS

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MANAGE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.READ_PHONE_NUMBERS

android.permission.ACCESS_NETWORK_STATE

android.permission.DISABLE_KEYGUARD

android.permission.REORDER_TASKS

android.permission.SEND_SMS

android.permission.WRITE_SMS

android.permission.CALL_PHONE

android.permission.CAMERA

android.permission.WAKE_LOCK

android.permission.READ_CONTACTS

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.FOREGROUND_SERVICE

android.permission.READ_SMS

android.permission.RECEIVE_MMS

android.permission.RECEIVE_SMS

android.permission.RECEIVE_WAP_PUSH

android.permission.SEND_SMS

android.permission.WRITE_SMS

android.permission.BROADCAST_SMS

android.permission.BROADCAST_WAP_PUSH

android.permission.SEND_RESPOND_VIA_MESSAGE

android.permission.REQUEST_ROLE

android.permission.SET_DEFAULT_APPLICATIONS

android.permission.CHANGE_COMPONENT_ENABLED_STATE

android.permission.WRITE_MEDIA_STORAGE

android.permission.READ_MEDIA_IMAGES

android.permission.READ_MEDIA_VIDEO

android.permission.QUERY_ALL_PACKAGES

android.permission.READ_SMS

android.permission.REQUEST_DELETE_PACKAGES

android.permission.GET_TASKS

android.permission.RECEIVE_BOOT_COMPLETED

com.gjf2.office.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.WRITE_SETTINGS

com.asus.msa.SupplementaryDID.ACCESS

freemme.permission.msa