1b54a48f444efbbe7a6da06b431b97f118ba245619242611e601bc250a56bfd0[.]apk[.]zip

Sharing

Copy URL

Twitter E-mail

Reason

invalid header size: 237051206

General

Target

1b54a48f444efbbe7a6da06b431b97f118ba245619242611e601bc250a56bfd0.apk.zip
Size

23.2MB
MD5

487c22c62c29b0d8d1960694cd8fc96e
SHA1

6d1eae0bb799ab84f41c4285a171d374e1ca6cc4
SHA256

e69e18d209029d4f5985a1655999f72b5146a3a4e6cd926cb7a6ecaa913f3b40
SHA512

d9f745a4f0b11cd8b210a8f9bce0069f29993dd6cfc3ef0c464061d42c9ab90efa676bbd9b5ec2fe85c7c63805e94469765663df508c72e0999b44ec5107ed59
SSDEEP

393216:xc2lsSGjA/uEaIxXOmoW3i4pAz1w8sDv+MvVMDbzrJjh/hvEaAHlkOLnSRZtjNll:xv6RjAmEaIx+mn7WwoImDhvv0l5Suf/K

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION

Files

1b54a48f444efbbe7a6da06b431b97f118ba245619242611e601bc250a56bfd0.apk.zip
.zip

Password: infected
1b54a48f444efbbe7a6da06b431b97f118ba245619242611e601bc250a56bfd0.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.playnet.androidtv.ads

.dzgFkrifbzdAb

Activities

.mmozrlAsccBDh

android.intent.action.MAIN

.dzgFkrifbzdAb

android.intent.action.MAIN

.dnbCEyoDEEmcy

android.intent.action.MAIN

.bmctAkjyCuBth

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_WIFI_STATE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.REQUEST_DELETE_PACKAGES
android.permission.QUERY_ALL_PACKAGES
com.google.android.c2dm.permission.RECEIVE
com.playnet.androidtv.permission.C2D_MESSAGE
android.permission.FOREGROUND_SERVICE
com.playnet.androidtv.ads.permission.C2D_MESSAGE
android.permission.VIBRATE
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
android.permission.READ_APP_BADGE
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
me.everything.badger.permission.BADGE_COUNT_READ
me.everything.badger.permission.BADGE_COUNT_WRITE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.CHANGE_WIFI_STATE

Receivers

.iFzBAAindFEoe

android.intent.action.BOOT_COMPLETED

.jdyyrspedAekB

android.net.conn.CONNECTIVITY_CHANGE

.jEiffqnoAuxyp

com.google.android.c2dm.intent.RECEIVE

.iFuxAcrfdqddb

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON

.diivCEFBrtdzq

android.intent.action.MY_PACKAGE_REPLACED

.ekmCBtEgkcokB

com.google.android.c2dm.intent.RECEIVE

.fekDpowlhgfj

android.intent.action.BOOT_COMPLETED

.mduhatkrffCth

android.net.conn.CONNECTIVITY_CHANGE

.bBlycbuFzwzot

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

.fkzuewdiaBrAg

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

.gbFmndhiohmld

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

.fkafllonkrbkF

android.net.conn.CONNECTIVITY_CHANGE

.jBwsyrvmnpqay

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

.guxAjApnnmiar

androidx.work.impl.background.systemalarm.UpdateProxies

Services

.eyppAofbfmabk

com.onesignal.NotificationExtender

.lfeehzaeflxtn

com.huawei.push.action.MESSAGING_EVENT

.nopksAhgcBDlj

com.google.firebase.MESSAGING_EVENT

.daqzhjblpwreD

android.net.VpnService
Hello.txt
btylusqrepu.dat
classes0.dex.dat
consentform.html
.html .js
dp.arm-v7.so.dat
dp.arm-v8.so.dat
dp.mp3
dp.x86.so.dat
dp.x86_64.so.dat
ic.dat
mm.dat
peer5.html
.html
regtbeonuev.dat
resources.dat
.ps1
scripts-retry.js
.js
se.dat
text-encoder-polyfill.js
.js
zpoasosdi.dat

Sharing

Errors

General

Malware Config

Signatures

Files

Password: infected

com.playnet.androidtv.ads

.dzgFkrifbzdAb

Activities

.mmozrlAsccBDh

.dzgFkrifbzdAb

.dnbCEyoDEEmcy

.bmctAkjyCuBth

Permissions

Receivers

.iFzBAAindFEoe

.jdyyrspedAekB

.jEiffqnoAuxyp

.iFuxAcrfdqddb

.diivCEFBrtdzq

.ekmCBtEgkcokB

.fekDpowlhgfj

.mduhatkrffCth

.bBlycbuFzwzot

.fkzuewdiaBrAg

.gbFmndhiohmld

.fkafllonkrbkF

.jBwsyrvmnpqay

.guxAjApnnmiar

Services

.eyppAofbfmabk

.lfeehzaeflxtn

.nopksAhgcBDlj

.daqzhjblpwreD