base-1 (1)[.]apk

Sharing

Copy URL Twitter E-mail

General

Target

base-1 (1).apk
Size

7.4MB
MD5

7295a1e4e2d75ddf28d85485df1151ce
SHA1

9941d4302fc1887e92d175484521f92c2f0b6e52
SHA256

8577c2de483f6226fed5969e070ef4f6c5c150c2d48d111365bb16f5dc0d1bb3
SHA512

8483f6d951df46000d2aee29d5cc0a17070389a09aec940da67c5e4620ce4b9d904c10226ed0e4ec10dd95643da44d00da92bdf61e9d0ab3fe8165e778a6b5fd
SSDEEP

196608:j7nuvF9T8R/Lo8/Iy6zhx/JzAr6FoDE98ML4pysbN85fdoQw:Hurx8Qvzhx/JiooDatL4QsexdU

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS

Files

base-1 (1).apk
.apk android arch:arm64 arch:x64

dev.sora.brbmods

dev.sora.protohax.ui.activities.MainActivity

Activities

dev.sora.protohax.ui.activities.MainActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.QUERY_ALL_PACKAGES
android.permission.FOREGROUND_SERVICE_SPECIAL_USE
android.permission.POST_NOTIFICATIONS
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.gms.permission.AD_ID
dev.sora.protohax.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSIONmqis

Receivers

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

Services

dev.sora.protohax.relay.service.AppService

android.net.VpnService
dev.sora.libmitm.vpn.start
dev.sora.libmitm.vpn.stop
baseline.prof
baseline.profm
block_hardness.json
canonical_block_states_419.nbt.gz
.gz
canonical_block_states_419.nbt
canonical_block_states_428.nbt.gz
.gz
canonical_block_states_428.nbt
canonical_block_states_440.nbt.gz
.gz
canonical_block_states_440.nbt
canonical_block_states_448.nbt.gz
.gz
canonical_block_states_448.nbt
canonical_block_states_465.nbt.gz
.gz
canonical_block_states_465.nbt
canonical_block_states_471.nbt.gz
.gz
canonical_block_states_471.nbt
canonical_block_states_486.nbt.gz
.gz
canonical_block_states_486.nbt
canonical_block_states_503.nbt.gz
.gz
canonical_block_states_503.nbt
canonical_block_states_527.nbt.gz
.gz
canonical_block_states_544.nbt.gz
.gz
canonical_block_states_560.nbt.gz
.gz
canonical_block_states_567.nbt.gz
.gz
canonical_block_states_575.nbt.gz
.gz
canonical_block_states_582.nbt.gz
.gz
canonical_block_states_589.nbt.gz
.gz
canonical_block_states_594.nbt.gz
.gz
index.json
item_tags.json
legacy_block_states.nbt.gz
.gz
music.nbs
runtime_item_states_419.json
runtime_item_states_440.json
runtime_item_states_448.json
runtime_item_states_475.json
runtime_item_states_486.json
runtime_item_states_503.json
runtime_item_states_527.json
runtime_item_states_534.json
runtime_item_states_560.json
runtime_item_states_567.json
runtime_item_states_575.json
runtime_item_states_582.json
runtime_item_states_589.json
runtime_item_states_594.json

Android Permissions

base-1 (1).apk

Permissions

android.permission.INTERNET

android.permission.FOREGROUND_SERVICE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.QUERY_ALL_PACKAGES

android.permission.FOREGROUND_SERVICE_SPECIAL_USE

android.permission.POST_NOTIFICATIONS

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.google.android.gms.permission.AD_ID

dev.sora.protohax.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSIONmqis

Sharing

General

Malware Config

Signatures

Files

dev.sora.brbmods

dev.sora.protohax.ui.activities.MainActivity

Activities

dev.sora.protohax.ui.activities.MainActivity

Permissions

Receivers

androidx.profileinstaller.ProfileInstallReceiver

Services

dev.sora.protohax.relay.service.AppService

Android Permissions

base-1 (1).apk