com.mobisystems.prekot.SplashActivity
android.intent.action.MAIN
General
-
Target
475c2964fafb6bb13f47ba0397d919a1.apk
-
Size
4.7MB
-
MD5
475c2964fafb6bb13f47ba0397d919a1
-
SHA1
5a124dd98203f3b2f735938693455e250d902bea
-
SHA256
f15f75f1c5cf488e07b917a15c7c8064ae732fe98cf210111c7ce52ee024d7b5
-
SHA512
ab2da296c4b4df423e9949a8e3dd992eca4c3e471334be10bf39369d8f6d556c38e3b3b386476c38da87a399224d145d76190129fb50f3283070f67c2aa62dd5
-
SSDEEP
98304:Gkh5XTd0sqI0a9vp6RcNuLv4365v/uzRQ9zh7i0r+E5Ks9C:GoZd0sgaB44Kh/cmb5Ks9C
Score
10/10
Malware Config
Extracted
Family
axbanker
C2
https://prekot.in/api/user/step1
Signatures
-
Axbanker family
-
Requests dangerous framework permissions 3 IoCs
Files
-
475c2964fafb6bb13f47ba0397d919a1.apk
com.mobisystems.prekot
com.mobisystems.prekot.SplashActivity
-
baseline.prof
-
baseline.profm
Android Permissions
475c2964fafb6bb13f47ba0397d919a1.apk
Permissions
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INSTANT_APP_FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE
android.permission.START_FOREGROUND_SERVICES_FROM_BACKGROUND
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
com.mobisystems.prekot.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION