package.name.ekwoldlmgjndywyzvjtgqvkxqkjbcicwirjvjdyzcekddcgevoqq3603
android.intent.action.MAIN
General
-
Target
ready.apk
-
Size
30KB
-
MD5
35912b2d0cd7440400df7865f270bed3
-
SHA1
04aa947cfb715a6502d02027257b372bd8fef1fb
-
SHA256
0df01fb5791183d68b47a9c7e7817e5431e56bdc2c79b8d3e9a7533ecac254e9
-
SHA512
38a07a8b15dbcfa14ae3dbb4c97eb5c33a06cece3c56389bc126ffc47f940e4d87cfa0d8ed4daa581d3b885e5fd315469d82f1d0c135664b385eccb4ca18b5a1
-
SSDEEP
768:jpCI42IEA0J4ytlB+Zgn2ekrZ6z+uV313jmBu:jp542IEruytL+z+l3j/
Score
10/10
Malware Config
Extracted
Family
spymax
C2
0.tcp.sa.ngrok.io:10034
Signatures
-
Spymax family
-
Requests dangerous framework permissions 14 IoCs
Files
-
ready.apk
package.name.suffix
package.name.ekwoldlmgjndywyzvjtgqvkxqkjbcicwirjvjdyzcekddcgevoqq3603
Android Permissions
ready.apk
Permissions
android.permission.WRITE_SETTINGS
android.permission.WRITE_SECURE_SETTINGS
android.permission.FOREGROUND_SERVICE
android.permission.READ_SMS
android.permission.READ_CALL_LOG
android.permission.READ_CONTACTS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.GET_ACCOUNTS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CAMERA
android.permission.INTERNET
android.permission.SYSTEM_ALERT_WINDOW
android.permission.RECORD_AUDIO
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
com.android.alarm.permission.SET_ALARM
android.permission.WRITE_CALL_LOG
android.permission.WRITE_CONTACTS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
com.oppo.launcher.permission.READ_SETTINGS
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.CALL_PHONE
android.permission.SET_WALLPAPER