Overview

overview

7

Static

static

7

n_i_c_e (g...18.apk

android-9-x86

7

nopie_open...64-v8a

ubuntu-18.04-amd64

nopie_open...64-v8a

debian-9-armhf

nopie_open...64-v8a

debian-9-mips

nopie_open...64-v8a

debian-9-mipsel

nopie_open...bi-v7a

debian-9-armhf

nopie_openvpn.x86

ubuntu-18.04-amd64

nopie_openvpn.x86_64

ubuntu-18.04-amd64

pie_openvpn.arm64-v8a

ubuntu-18.04-amd64

pie_openvpn.arm64-v8a

debian-9-armhf

pie_openvpn.arm64-v8a

debian-9-mips

pie_openvpn.arm64-v8a

debian-9-mipsel

pie_openvp...bi-v7a

debian-9-armhf

pie_openvpn.x86

ubuntu-18.04-amd64

pie_openvpn.x86_64

ubuntu-18.04-amd64

Sharing

Copy URL Twitter E-mail

General

  • Target

    n_i_c_e (girl) SX ~v.P.N~18.apk

  • Size

    29.3MB

  • MD5

    95f7b881f05ac47768c748911b3b8b87

  • SHA1

    f0516cbd99b33e7910f73b9c5bc9b09850afc8d3

  • SHA256

    95539c597354a4eff8c098ec6a6d6be352ae13481a88cfd7c9df3b02ad8d0297

  • SHA512

    fe996e5a95dc74e937db4178489e80ad228e809c771c4407e9728fb70a8ba318b7375558650b5e93d819699b4ca25a9e07a3b8c082d3d938f25bb720aeee14fb

  • SSDEEP

    786432:sljh5eYRShB5MH1ZpVGsanq8q/1oas1CvnzAzfbw:sl15b4hXCxVGs0OtoWzAzbw

Score
7/10

Malware Config

Signatures

  • Requests dangerous framework permissions 1 IoCs

Files

  • n_i_c_e (girl) SX ~v.P.N~18.apk
    .apk android arch:arm64 arch:arm

    com.appforgalaxyvpnfast.freevpnfast

    dev.dev7.dvpn.MainActivity


  • app_data.json
  • baseline.prof
  • baseline.profm
  • geoip.dat
  • geosite.dat
  • nopie_openvpn.arm64-v8a
    .elf linux aarch64
  • nopie_openvpn.armeabi-v7a
    .elf linux arm
  • nopie_openvpn.x86
    .elf linux x86
  • nopie_openvpn.x86_64
    .elf linux x64
  • pie_openvpn.arm64-v8a
    .elf linux aarch64
  • pie_openvpn.armeabi-v7a
    .elf linux arm
  • pie_openvpn.x86
    .elf linux x86
  • pie_openvpn.x86_64
    .elf linux x64
  • s.json

Android Permissions

n_i_c_e (girl) SX ~v.P.N~18.apk

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.FOREGROUND_SERVICE

android.permission.ACCESS_WIFI_STATE

com.google.android.gms.permission.AD_ID

android.permission.QUERY_ALL_PACKAGES

android.permission.POST_NOTIFICATIONS

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

android.permission.VIBRATE

android.permission.RECEIVE_BOOT_COMPLETED

com.appforgalaxyvpnfast.freevpnfast.batch.permission.INTERNAL_BROADCAST

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE