42197636b8d24e40f69b41f8daa1a773[.]bin

Sharing

Copy URL

Twitter E-mail

General

Target

42197636b8d24e40f69b41f8daa1a773.bin
Size

5.9MB
MD5

cfd38a4778a926f09d06d22dabc738eb
SHA1

8af1f399a70c242c7b546898cc35b96caf41b208
SHA256

97c03742df146fe7c443d0b5e65dc2c7e775a0c5c50ed18a29e857c90120dbc5
SHA512

41d8faa66da759093b9c395c7a73f34265440334cb8788d5e871a5e9464e944b8c6ab1497ef2158b5ddb12aed04706f5638ab7723f29f0cb3f6f1fa546c4ea9c
SSDEEP

98304:k2l++Vp3Raxwd9mNCPG3LHQHBifHsAIKcnkyBF3Hsd9zi1L/Uac6JIinfaqlwGo/:duxiUC+2IUZbnky3cdQ1t7JBnpoXGS

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

42197636b8d24e40f69b41f8daa1a773.bin
.zip

Password: infected
3dd3a843e1f714b3a6ec6dbdc4307ad52060b06a9fa8344a3826f3c3f067fad4.apk
.apk android

Password: infected

com.dnyfunny.giftsticker

com.app.whatsapp.sticker.ui.MainActivity

Activities

com.app.whatsapp.sticker.ui.MainActivity

android.intent.action.MAIN

com.app.whatsapp.sticker.ui.DebugModeActivity

com.app.whatsapp.sticker.ui.DebugModeActivity

com.oksecret.whatsapp.sticker.ui.EditStickerActivity

com.oksecret.whatsapp.sticker.ui.EditStickerActivity

com.oksecret.whatsapp.sticker.ui.StickerBackupActivity

com.whatsapp.sticker.StickerBackupActivity

com.oksecret.whatsapp.sticker.ui.SelectFromPackListActivity

com.oksecret.whatsapp.sticker.ui.SelectFromPackListActivity

com.oksecret.whatsapp.gif.ui.GifMainActivity

com.whatsapp.sticker.gif.GifMainActivity

com.oksecret.whatsapp.gif.ui.GifBackupActivity

com.whatsapp.sticker.gif.GifBackupActivity

com.app.whatsapp.base.ui.AccountLoginActivity

com.dnyfunny.giftsticker.action.login

com.oksecret.whatsapp.sticker.ui.AppMateAppsActivity

com.dnyfunny.giftsticker.action.team.apps

com.oksecret.whatsapp.sticker.ui.HowPlayYTActivity

com.dnyfunny.giftsticker.action.YT.player.guide

com.google.firebase.auth.internal.GenericIdpActivity

android.intent.action.VIEW

com.google.firebase.auth.internal.RecaptchaActivity

android.intent.action.VIEW

com.weimi.library.base.ui.PermissionTipActivity

com.dnyfunny.giftsticker.action.permission.tip

Permissions

com.whatsapp.sticker.READ
android.permission.FOREGROUND_SERVICE
android.permission.PACKAGE_USAGE_STATS
com.gbwhatsapp.sticker.READ
android.permission.READ_EXTERNAL_STORAGE
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.POST_NOTIFICATIONS
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.USE_FULL_SCREEN_INTENT
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.dnyfunny.giftsticker.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
android.permission.CHANGE_WIFI_STATE

Receivers

com.oksecret.whatsapp.sticker.receiver.FeedbackReceiver

com.dnyfunny.giftsticker.feedback

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.weimi.library.base.notification.NotificationActionReceiver

com.oksecret.action.action.cancel

com.weimi.library.base.init.InitTriggerReceiver

com.oksecret.intent.action.USER_PRESENT
com.weimi.action.remote.config.updated

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.work.diagnostics.REQUEST_DIAGNOSTICS

Services

com.dnyfunny.giftsticker.StickerUpdateNotify

android.service.notification.NotificationListenerService

com.oksecret.whatsapp.sticker.notification.ProtectedNotificationListenerService

android.service.notification.NotificationListenerService

com.weimi.lib.push.PushMessageService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT
baseline.prof
baseline.profm
emoji_info
filedownloader.properties
guide
key_category_search
key_trending_data
key_trending_search
privacy_en.html
stickers

Sharing

General

Malware Config

Signatures

Files

Password: infected

Password: infected

com.dnyfunny.giftsticker

com.app.whatsapp.sticker.ui.MainActivity

Activities

com.app.whatsapp.sticker.ui.MainActivity

com.app.whatsapp.sticker.ui.DebugModeActivity

com.oksecret.whatsapp.sticker.ui.EditStickerActivity

com.oksecret.whatsapp.sticker.ui.StickerBackupActivity

com.oksecret.whatsapp.sticker.ui.SelectFromPackListActivity

com.oksecret.whatsapp.gif.ui.GifMainActivity

com.oksecret.whatsapp.gif.ui.GifBackupActivity

com.app.whatsapp.base.ui.AccountLoginActivity

com.oksecret.whatsapp.sticker.ui.AppMateAppsActivity

com.oksecret.whatsapp.sticker.ui.HowPlayYTActivity

com.google.firebase.auth.internal.GenericIdpActivity

com.google.firebase.auth.internal.RecaptchaActivity

com.weimi.library.base.ui.PermissionTipActivity

Permissions

Receivers

com.oksecret.whatsapp.sticker.receiver.FeedbackReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.weimi.library.base.notification.NotificationActionReceiver

com.weimi.library.base.init.InitTriggerReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.diagnostics.DiagnosticsReceiver

Services

com.dnyfunny.giftsticker.StickerUpdateNotify

com.oksecret.whatsapp.sticker.notification.ProtectedNotificationListenerService

com.weimi.lib.push.PushMessageService

com.google.firebase.messaging.FirebaseMessagingService