Overview

overview

8

Static

static

1

5bc5abfbd9...74.apk

android-9-x86

8

5bc5abfbd9...74.apk

android-10-x64

8

__xadsdk__...__.apk

android-9-x86

__xadsdk__...__.apk

android-10-x64

__xadsdk__...__.apk

android-11-x64

actionsQueue.js

windows7-x64

1

actionsQueue.js

windows10-2004-x64

1

fyb_iframe...l.html

windows7-x64

1

fyb_iframe...l.html

windows10-2004-x64

1

gift_catch.html

windows7-x64

1

gift_catch.html

windows10-2004-x64

1

github_mraid.js

windows7-x64

1

github_mraid.js

windows10-2004-x64

1

libwbsafeedit_64

ubuntu-18.04-amd64

libwbsafeedit_64

debian-9-armhf

libwbsafeedit_64

debian-9-mips

libwbsafeedit_64

debian-9-mipsel

libwbsafeedit_x86

ubuntu-18.04-amd64

1

mm.js

windows7-x64

1

mm.js

windows10-2004-x64

1

mraid.js

windows7-x64

1

mraid.js

windows10-2004-x64

1

vpaid.js

windows7-x64

1

vpaid.js

windows10-2004-x64

5

Sharing

Copy URL Twitter E-mail

General

  • Target

    5bc5abfbd947ebac74fa35e1f756cf26153e572e1aebc69a9f177e33b1200d74.bin

  • Size

    4.9MB

  • MD5

    765cbb7f6cd96638cedfc361bed9b47e

  • SHA1

    c643eb2588693cd3bd454255640d12b591d13e07

  • SHA256

    5bc5abfbd947ebac74fa35e1f756cf26153e572e1aebc69a9f177e33b1200d74

  • SHA512

    b3d747033c416f94556627cfd9cd4d44103bb0e33cd4f3851fdb8cbeda5fe93a2f8c0cdceddf565999e6fe65cc1c239381aeaf896eb8435e21f7fce3c4c2b05c

  • SSDEEP

    98304:v8QCzw2r4tGRuNc8S5NlyD8nd5FFJ7PUr24L/7/BaACs5izlsN6uB2i:UQX24tGRd8j+FFJQy4xPYzlHuBr

Score
1/10

Malware Config

Signatures

Files

  • 5bc5abfbd947ebac74fa35e1f756cf26153e572e1aebc69a9f177e33b1200d74.bin
    .apk android arch:arm arch:arm64 arch:x64 arch:x86

    net.lovoo.android

    com.wemesh.android.drtoxaz


  • AntDesign.ttf
  • BrandonText-Light.otf
  • BrandonText-Thin.otf
  • Calibre-Bold.otf
  • Calibre-Light.otf
  • Calibre-Medium.otf
  • Calibre-Regular.otf
  • Effra-Bold.ttf
  • Effra-BoldItalic.ttf
  • Effra-Light.ttf
  • Effra-Medium.ttf
  • Effra-Regular.ttf
  • Entypo.ttf
  • EvilIcons.ttf
  • Feather.ttf
  • FontAwesome5_Regular.ttf
  • Foundation.ttf
  • HbJhSql.json
  • MaterialIcons-Regular.otf
  • NOTICES.Z
    .gz
  • NOTICES.Z
  • Octicons.ttf
  • OpenSans-SemiBold.ttf
  • RobotoCondensed-Bold.ttf
  • SimpleLineIcons.ttf
  • Zocial.ttf
  • __xadsdk__remote__final__.jar
    .apk android
  • actionsQueue.js
    .js
  • all_error_handle_ic.gif
    .gif
  • any.proto
  • api.proto
  • card_font_normal.ttf
  • default_handshake.json
  • duration.proto
  • empty.proto
  • field_mask.proto
  • fyb_iframe_endcard_tmpl.html
    .html
  • game_icon_halo.gif
    .gif
  • gift_catch.html
    .html .js
  • github_mraid.js
    .js
  • grs_sdk_global_route_config_apptouchupdatesdk.json
  • grs_sdk_global_route_config_opendevicesdk.json
  • grs_sdk_global_route_config_opensdkService.json
  • grs_sdk_global_route_config_updatesdk.json
  • grs_sp.bks
  • h5_qr_back.png
  • hianalytics_njjn
  • hmsincas.bks
  • homeLoading.json
  • home_quality_moutai_big_img.png
  • home_quality_moutai_small_img.png
  • iadeyok.json
  • ic_online_service.png
  • ic_reservation.png
  • iletisim.json
  • libwbsafeedit_64
    .elf linux aarch64
  • libwbsafeedit_x86
    .elf linux x86
  • like.json
  • lottie_new.json
  • lottie_pull_to_refresh.json
  • lpms.json
  • mm.js
    .js
  • mraid.js
    .js
  • nedig.properties
  • noOrderRefund.json
  • nsecmetadata.png
  • octagon.png
    .png
  • off.png
    .png
  • on.png
    .png
  • sepetbos.json
  • shoppingBag.json
  • siparisonay.json
  • source_context.proto
  • spinner_profile.json
  • struct.proto
  • timestamp.proto
  • triangle.png
    .png
  • type.proto
  • updatesdkcas.bks
  • vagrounded_bold.ttf
  • vpaid.js
    .js
  • vpaid_close_button.txt
  • vpaid_skip_button.txt
  • vpaid_spinner.txt
  • wrappers.proto
  • youtube_sans_medium.xml
    .xml
  • youtube_sans_semibold.xml
    .xml
  • zlhdin.dat

Android Permissions

5bc5abfbd947ebac74fa35e1f756cf26153e572e1aebc69a9f177e33b1200d74.bin

Permissions

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.ACCESS_WIFI_STATE

android.permission.QUERY_ALL_PACKAGES

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.DISABLE_KEYGUARD

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

com.google.android.gms.permission.AD_ID

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE