ItsOnFire[.]apk | Triage

Sharing

General

Target

ItsOnFire.apk
Size

13.2MB
MD5

cea708ffddb35f64582582e761e6bc8d
SHA1

fac7bd6c9596cfac1060ba288375597b3b18efbe
SHA256

eb6e69930b39a97ea4fa8a3c50d54ab7f13ea1223fa9bd2bedca0bbd000b0d92
SHA512

82a12cbd56f07312b0a8ed5c864dfe3943c368eeccaea6b5b75d48acd6a16d2854ec7b4df35e96ac813b1137b291f91e2c5bf18f4dc139066e2ca126bc463cf6
SSDEEP

98304:7X8xSwWqfNCYHg9AHRhfd5K62u5MyAlQVkojh9RPltTaHcAhhCRz:77WXslukoJ3TaHcb

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS

Files

ItsOnFire.apk
.apk android

com.secure.itsonfire

com.secure.itsonfire.MalwareInvadersActivity

Activities

com.secure.itsonfire.MalwareInvadersActivity

android.intent.action.MAIN

Permissions

android.permission.FOREGROUND_SERVICE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REORDER_TASKS
android.permission.USE_FULL_SCREEN_INTENT
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
android.Manifest.permission.CALL_PHONE
android.permission.POST_NOTIFICATIONS
com.google.android.c2dm.permission.RECEIVE
android.permission.INTERNET
com.google.android.gms.permission.AD_ID
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE

Services

com.secure.itsonfire.MessageWorker

com.google.firebase.MESSAGING_EVENT
android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
android.intent.action.ACTION_BOOT_COMPLETED
android.intent.action2.RESTART
android.intent.action.REBOOT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT
baseline.prof
baseline.profm
damageshelter.ogg
invaderexplode.ogg
oh.ogg
playerexplode.ogg
shoot.ogg
uh.ogg

Android Permissions

ItsOnFire.apk

Permissions

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.REORDER_TASKS

android.permission.USE_FULL_SCREEN_INTENT

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

android.Manifest.permission.CALL_PHONE

android.permission.POST_NOTIFICATIONS

com.google.android.c2dm.permission.RECEIVE

android.permission.INTERNET

com.google.android.gms.permission.AD_ID

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE