Overview

overview

8

Static

static

7

63b8a00ddf...e8.apk

android-9-x86

8

63b8a00ddf...e8.apk

android-10-x64

8

aparat.js

windows7-x64

1

aparat.js

windows10-2004-x64

1

cineb.js

windows7-x64

1

cineb.js

windows10-2004-x64

1

clipwatch.js

windows7-x64

1

clipwatch.js

windows10-2004-x64

1

index.android.js

windows7-x64

1

index.android.js

windows10-2004-x64

1

mixdrop.js

windows7-x64

1

mixdrop.js

windows10-2004-x64

1

openload.js

windows7-x64

1

openload.js

windows10-2004-x64

1

upstream.js

windows7-x64

1

upstream.js

windows10-2004-x64

1

videobin.js

windows7-x64

1

videobin.js

windows10-2004-x64

1

vidlox.js

windows7-x64

1

vidlox.js

windows10-2004-x64

1

vidoza.js

windows7-x64

1

vidoza.js

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    63b8a00ddf35e9fdc903bdb3bb0bb82abd0f84c4a3be51bb4972463a45a70ce8.apk.zip

  • Size

    17.1MB

  • MD5

    04d2f61b835b3a539ceab4fc5e982e36

  • SHA1

    65cdea2f15c37351cc8138103597dd4a1bdcd2f0

  • SHA256

    cfc4e9725d9d6e6381ada65fffa479cd46b35e0894f8a3d4d7adf6dd29cb8d07

  • SHA512

    f7c38f88c0fe84ea361571371d2d77ea93e7eabfef3e55f31fde1e470938560fb460e640906225b3172e53c35c21301304639e3670b8c80b32257eacec8fa1c2

  • SSDEEP

    393216:pfcqbZ1PXG6z7g9aYHV3lyJTQNKT09N6kZgMxbgxejxRNoaSnYNF:pfcqbz/Ka0sTQA0bZgKpjxMaSYNF

Score
7/10

Malware Config

Signatures

  • Requests dangerous framework permissions 5 IoCs

Files

  • 63b8a00ddf35e9fdc903bdb3bb0bb82abd0f84c4a3be51bb4972463a45a70ce8.apk.zip
    .zip

    Password: infected

  • 63b8a00ddf35e9fdc903bdb3bb0bb82abd0f84c4a3be51bb4972463a45a70ce8.apk
    .apk android arch:arm arch:x86

    com.battlebot.dday

    com.battlebot.dday.SplashActivity


  • Roboto-Regular.ttf
  • RobotoCondensed-Bold.ttf
  • aparat.js
    .js
  • cineb.js
    .js
  • clipwatch.js
    .js
  • index.android.bundle
    .js
  • index.android.bundle.meta
  • mixdrop.js
    .js
  • openload.js
    .js
  • upstream.js
    .js
  • verdana.ttf
  • videobin.js
    .js
  • vidlox.js
    .js
  • vidoza.js
    .js