Overview

overview

8

Static

static

7

App Cloner v2.6.0.apk

android-9-x86

8

App Cloner v2.6.0.apk

android-10-x64

8

elfhash

ubuntu-18.04-amd64

index.html

windows7-x64

1

index.html

windows10-2004-x64

1

index.js

windows7-x64

1

index.js

windows10-2004-x64

1

lib/arm64-...bAK.so

ubuntu-18.04-amd64

lib/arm64-...bAK.so

debian-9-armhf

lib/arm64-...bAK.so

debian-9-mips

lib/arm64-...bAK.so

debian-9-mipsel

lib/arm64-...pat.so

ubuntu-18.04-amd64

1

lib/armeab...bAK.so

debian-9-armhf

1

lib/armeab...pat.so

ubuntu-18.04-amd64

1

lib/x86/libAK.so

ubuntu-18.04-amd64

1

lib/x86_64/libAK.so

ubuntu-18.04-amd64

1

lib/arm64-...ner.so

ubuntu-18.04-amd64

lib/arm64-...ner.so

debian-9-armhf

lib/arm64-...ner.so

debian-9-mips

lib/arm64-...ner.so

debian-9-mipsel

lib/arm64-...ive.so

ubuntu-18.04-amd64

lib/arm64-...ive.so

debian-9-armhf

lib/arm64-...ive.so

debian-9-mips

lib/arm64-...ive.so

debian-9-mipsel

lib/arm64-...ook.so

ubuntu-18.04-amd64

lib/arm64-...ook.so

debian-9-armhf

lib/arm64-...ook.so

debian-9-mips

lib/arm64-...ook.so

debian-9-mipsel

lib/armeab...ner.so

debian-9-armhf

1

lib/armeab...ive.so

debian-9-armhf

1

lib/armeab...ook.so

debian-9-armhf

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    App Cloner v2.6.0.apk

  • Size

    13.4MB

  • MD5

    bbbc2e59651263814c45ec796443e3d4

  • SHA1

    cb9f62953f7a773f84ff01a88ecab68966dd16a1

  • SHA256

    a276fd0acb4ee5f4984d819ed95d81b9819e60a12bf2a28a5990cf5850256db0

  • SHA512

    54745ecec0140e43c6963bad9c657c2b58a5eef4e630fbdef3611300270c5913161137f7300bcd3614b89a50092aeb637e3d79caa4f070100577b024f3ab3d9d

  • SSDEEP

    393216:tm/8tCbopufzNEXc8ULaaPevbovBIOFpAwYY+p/oYJ:tm/8tCbopuLN0KaO+OHxYY+JJ

Score
7/10

Malware Config

Signatures

  • Requests dangerous framework permissions 3 IoCs

Files

  • App Cloner v2.6.0.apk
    .apk android arch:arm64 arch:x86 arch:x64 arch:arm

    com.applisto.appclone

    com.applisto.appcloner.activity.StartActivity


  • 100-disabled.png
    .png
  • 100-error-offline.png
    .png
  • 100-offline-sprite.png
    .png
  • 200-disabled.png
    .png
  • 200-error-offline.png
    .png
  • 200-offline-sprite.png
    .png
  • classes.dex
    .dex
  • crashlytics-build.properties
  • elfhash
    .elf linux x86
  • google_sans_regular.ttf
  • ic.dat
  • ic_group_work_white.png
    .png
  • ic_settings_white.png
    .png
  • ic_thumb_up_white.png
    .png
  • ic_update_white.png
    .png
  • ic_warning_white.png
    .png
  • index.css
  • index.html
    .html
  • index.js
    .js
  • issues.json
  • keyboard_qwerty.xml
  • keyboard_qwerty_shift.xml
  • keyboard_symbols.xml
  • keyboard_symbols_shift.xml
  • libAndHook.zip
    .zip
  • lib/arm64-v8a/libAK.so
    .elf linux aarch64
  • lib/arm64-v8a/libAKCompat.so
    .elf linux x64
  • lib/armeabi-v7a/libAK.so
    .elf linux arm
  • lib/armeabi-v7a/libAKCompat.so
    .elf linux x86
  • lib/x86/libAK.so
    .elf linux x86
  • lib/x86_64/libAK.so
    .elf linux x64
  • libSandHook.zip
    .zip
  • lib/arm64-v8a/libappcloner.so
    .elf linux aarch64
  • lib/arm64-v8a/libsandhook-native.so
    .elf linux aarch64
  • lib/arm64-v8a/libsandhook.so
    .elf linux aarch64
  • lib/armeabi-v7a/libappcloner.so
    .elf linux arm
  • lib/armeabi-v7a/libsandhook-native.so
    .elf linux arm
  • lib/armeabi-v7a/libsandhook.so
    .elf linux arm
  • offline-sprite-1x.png
    .png
  • offline-sprite-2x.png
    .png
  • resources.dat
  • resources.xml

Android Permissions

App Cloner v2.6.0.apk

Permissions

android.permission.USE_FINGERPRINT

android.permission.USE_BIOMETRIC

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.VIBRATE

com.android.vending.BILLING

android.permission.WAKE_LOCK

android.permission.ACCESS_FINE_LOCATION

com.applisto.appcloner.permission.DEFAULTgrlf

com.android.launcher.permission.INSTALL_SHORTCUT

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.android.vending.CHECK_LICENSE