afe9e7bd6548fccc6c9cdfe058b0cae03511a63c26755e7121e94f35c9dcdac2[.]apk[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

afe9e7bd6548fccc6c9cdfe058b0cae03511a63c26755e7121e94f35c9dcdac2.apk.zip
Size

19.9MB
MD5

26f1a0bd93461995f725f675d94dacfa
SHA1

84399a2c9f47ee9c2837ff09abed4435e0e134b3
SHA256

b885bbd5842520289f695546db104a932ff8c3bfd4540a23edc26406805e2023
SHA512

bb60257136d8e0aa45b8c1f79d119cd177e401e94b3878a8b5936ee28affa30dc51c52444224e45cd63aafa36bb4696f6b18ada4235e33eb9ac5fd7d6cedfaf7
SSDEEP

393216:ChlSbjp1JjobIxxNeek5Z4EOpUz8FYjXI0UsudRHS/qmZbiYyzcNCAdtoPZjK:CqxbxxNlkoEOpUNjX2s6KjZbiYScAAdD

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

afe9e7bd6548fccc6c9cdfe058b0cae03511a63c26755e7121e94f35c9dcdac2.apk.zip
.zip

Password: infected
afe9e7bd6548fccc6c9cdfe058b0cae03511a63c26755e7121e94f35c9dcdac2.apk
.apk android arch:arm64

com.bubblesoft.android.bubbleupnp

com.bubblesoft.android.bubbleupnp.MainActivity

Activities

com.dropbox.core.android.AuthActivity

android.intent.action.VIEW

com.bubblesoft.android.bubbleupnp.MainActivity

android.intent.action.MAIN
android.intent.action.SEARCH
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.bubblesoft.android.bubbleupnp.TraktPrefsActivity

android.intent.action.VIEW

com.bubblesoft.android.bubbleupnp.AppWidgetPrefsActivity41

android.appwidget.action.APPWIDGET_CONFIGURE

com.bubblesoft.android.bubbleupnp.AppWidgetPrefsActivity42

android.appwidget.action.APPWIDGET_CONFIGURE

com.bubblesoft.android.bubbleupnp.AppWidgetPrefsActivity44

android.appwidget.action.APPWIDGET_CONFIGURE

Permissions

android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.BROADCAST_STICKY
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REORDER_TASKS
android.permission.FOREGROUND_SERVICE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.USE_CREDENTIALS
com.sony.mobile.permission.SYSTEM_UI_VISIBILITY_EXTENSION

Receivers

com.bubblesoft.android.bubbleupnp.StartupIntentReceiver

android.intent.action.BOOT_COMPLETED

com.bubblesoft.android.bubbleupnp.RemotePlaybackControlReceiver

android.intent.action.MEDIA_BUTTON

com.bubblesoft.android.bubbleupnp.MainAppWidgetProvider41

android.appwidget.action.APPWIDGET_UPDATE

com.bubblesoft.android.bubbleupnp.MainAppWidgetProvider42

android.appwidget.action.APPWIDGET_UPDATE

com.bubblesoft.android.bubbleupnp.MainAppWidgetProvider44

android.appwidget.action.APPWIDGET_UPDATE
android.appwidget.action.ACTION_APPWIDGET_DELETED

com.bubblesoft.android.bubbleupnp.StartServiceReceiver

com.bubblesoft.android.bubbleupnp.START_SERVICE
com.bubblesoft.android.bubbleupnp.STOP_SERVICE
com.bubblesoft.android.bubbleupnp.SET_RENDERER
com.bubblesoft.android.bubbleupnp.TOGGLE_AUDIO_CAST
com.bubblesoft.android.bubbleupnp.VOLUME_INC
com.bubblesoft.android.bubbleupnp.VOLUME_DEC

com.amazon.device.iap.ResponseReceiver

com.amazon.inapp.purchasing.NOTIFY

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

Services

com.bubblesoft.android.bubbleupnp.ChooserTargetService

android.service.chooser.ChooserTargetService

com.bubblesoft.android.bubbleupnp.xmod.RemoteService

BIND_SERVICE
AndroidClockMono-Thin.ttf
ChromecastPrefsActivity.html
.html
HideDevicesActivity.html
.html
LocalRendererPrefsActivity.html
.html
MaterialIcons-Regular.ttf
RendererDevicePrefsActivity.html
.html
Roboto-Bold.ttf
Roboto-Light.ttf
Roboto-Medium.ttf
Roboto-Regular.ttf
RobotoCondensed-Regular.ttf
android-iconify-fontawesome.ttf
android-iconify-ionicons.ttf
changelog.html
consentform.html
.html .js
help.css
privacy_policy.html
.html

Sharing

General

Malware Config

Signatures

Files

Password: infected

com.bubblesoft.android.bubbleupnp

com.bubblesoft.android.bubbleupnp.MainActivity

Activities

com.dropbox.core.android.AuthActivity

com.bubblesoft.android.bubbleupnp.MainActivity

com.bubblesoft.android.bubbleupnp.TraktPrefsActivity

com.bubblesoft.android.bubbleupnp.AppWidgetPrefsActivity41

com.bubblesoft.android.bubbleupnp.AppWidgetPrefsActivity42

com.bubblesoft.android.bubbleupnp.AppWidgetPrefsActivity44

Permissions

Receivers

com.bubblesoft.android.bubbleupnp.StartupIntentReceiver

com.bubblesoft.android.bubbleupnp.RemotePlaybackControlReceiver

com.bubblesoft.android.bubbleupnp.MainAppWidgetProvider41

com.bubblesoft.android.bubbleupnp.MainAppWidgetProvider42

com.bubblesoft.android.bubbleupnp.MainAppWidgetProvider44

com.bubblesoft.android.bubbleupnp.StartServiceReceiver

com.amazon.device.iap.ResponseReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

Services

com.bubblesoft.android.bubbleupnp.ChooserTargetService

com.bubblesoft.android.bubbleupnp.xmod.RemoteService