2c31663b9422cf5b1c593c789ecf45f49fdb21aceafc79200454c59cac05ffbf[.]apk[.]zip

Sharing

Copy URL Twitter E-mail

Reason

invalid header size: 4143941886

General

Target

2c31663b9422cf5b1c593c789ecf45f49fdb21aceafc79200454c59cac05ffbf.apk.zip
Size

23.1MB
MD5

35830f7f7aece29de3cfd983fb8cd9bc
SHA1

9682ded663a16772b518169836978fc4c3eeea20
SHA256

fa6a6127edd8572f562f63b057072229928ca93e22955fab863eb0b19c4ce12b
SHA512

8483b26f28ad4e089551b7a61fceb57ebd1fe9bb8dcaaee8b00fbc76d3402b25994fc34bd5caff0194235f92005efe65f4fbc084b4fdaffa994bbeeb356d8fd9
SSDEEP

393216:U4f5+rrSAl/coyV3n7hN2Mi/6PIHGzlHah+rNRcTQXhB4Vc8PHy2/yzJ60:U4xqmYcoyZn7hVQY1rfcTQxQc8rK1d

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION

Files

2c31663b9422cf5b1c593c789ecf45f49fdb21aceafc79200454c59cac05ffbf.apk.zip
.zip

Password: infected
2c31663b9422cf5b1c593c789ecf45f49fdb21aceafc79200454c59cac05ffbf.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.playnet.androidtv.ads

.dzgFkrifbzdAb

Activities

.mmozrlAsccBDh

android.intent.action.MAIN

.dzgFkrifbzdAb

android.intent.action.MAIN

.dnbCEyoDEEmcy

android.intent.action.MAIN

.bmctAkjyCuBth

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_WIFI_STATE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.REQUEST_DELETE_PACKAGES
android.permission.QUERY_ALL_PACKAGES
com.google.android.c2dm.permission.RECEIVE
com.playnet.androidtv.permission.C2D_MESSAGE
android.permission.FOREGROUND_SERVICE
com.playnet.androidtv.ads.permission.C2D_MESSAGE
android.permission.VIBRATE
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
android.permission.READ_APP_BADGE
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
me.everything.badger.permission.BADGE_COUNT_READ
me.everything.badger.permission.BADGE_COUNT_WRITE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.CHANGE_WIFI_STATE

Receivers

.iFzBAAindFEoe

android.intent.action.BOOT_COMPLETED

.jdyyrspedAekB

android.net.conn.CONNECTIVITY_CHANGE

.jEiffqnoAuxyp

com.google.android.c2dm.intent.RECEIVE

.iFuxAcrfdqddb

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON

.diivCEFBrtdzq

android.intent.action.MY_PACKAGE_REPLACED

.ekmCBtEgkcokB

com.google.android.c2dm.intent.RECEIVE

.fekDpowlhgfj

android.intent.action.BOOT_COMPLETED

.bBlycbuFzwzot

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

.fkzuewdiaBrAg

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

.gbFmndhiohmld

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

.fkafllonkrbkF

android.net.conn.CONNECTIVITY_CHANGE

.jBwsyrvmnpqay

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

.guxAjApnnmiar

androidx.work.impl.background.systemalarm.UpdateProxies

Services

.eyppAofbfmabk

com.onesignal.NotificationExtender

.lfeehzaeflxtn

com.huawei.push.action.MESSAGING_EVENT

.nopksAhgcBDlj

com.google.firebase.MESSAGING_EVENT
Hello.txt
btylusqrepu.dat
classes0.dex.dat
consentform.html
.html .js
dp.arm-v7.so.dat
dp.arm-v8.so.dat
dp.mp3
dp.x86.so.dat
dp.x86_64.so.dat
ic.dat
mm.dat
peer5.html
.html
regtbeonuev.dat
resources.dat
scripts-retry.js
.js
se.dat
text-encoder-polyfill.js
.js
zpoasosdi.dat

Sharing

Errors

General

Malware Config

Signatures

Files

Password: infected

com.playnet.androidtv.ads

.dzgFkrifbzdAb

Activities

.mmozrlAsccBDh

.dzgFkrifbzdAb

.dnbCEyoDEEmcy

.bmctAkjyCuBth

Permissions

Receivers

.iFzBAAindFEoe

.jdyyrspedAekB

.jEiffqnoAuxyp

.iFuxAcrfdqddb

.diivCEFBrtdzq

.ekmCBtEgkcokB

.fekDpowlhgfj

.bBlycbuFzwzot

.fkzuewdiaBrAg

.gbFmndhiohmld

.fkafllonkrbkF

.jBwsyrvmnpqay

.guxAjApnnmiar

Services

.eyppAofbfmabk

.lfeehzaeflxtn

.nopksAhgcBDlj