polar.app.MainActivity
android.intent.action.MAIN
Static task
static1
1 signatures
Behavioral task
behavioral1
Sample
Polar_Patcher_V3.apk
Resource
android-x64-20231023.1-en
android-10-x64
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
Polar_Patcher_V3.apk
Resource
android-x64-arm64-20231023-en
android-11-x64
2 signatures
150 seconds
Behavioral task
behavioral3
Sample
Polar_Patcher_V3.apk
Resource
android-33-x64-arm64-20231122-en
android-13-x64
2 signatures
150 seconds
Behavioral task
behavioral4
Sample
Polar_Patcher_V3.apk
Resource
android-x86-arm-20231023-en
android-9-x86
2 signatures
150 seconds
General
-
Target
231127-vflkqaac43_pw_infected.zip
-
Size
5.9MB
-
MD5
25f70c27f508c4b3d0d6242d9c74632b
-
SHA1
3c3e8f1a7b569467d4c2c2996165f656521e84fd
-
SHA256
cf4b56658b9e3c1054c9d49d9705710544936adee0e4a321893e0bfa465a6d57
-
SHA512
ea8edc1a3b1cfbba69da582c1996330a8e1d6a05bb1e8acb098ca07b825c01345c65328d5c0adb68fadd63d98603e3a847b5b5f98195e0a789076de6d120decf
-
SSDEEP
98304:rmrwEqZNld7/UjDE5qNSJcd3V6P2YusmsN0afKhgOExdiOri:l3ZNlJ/CPd76P2YmsNna0w
Score
7/10
Malware Config
Signatures
-
Requests dangerous framework permissions 24 IoCs
description ioc Allows an app to access location in the background. android.permission.ACCESS_BACKGROUND_LOCATION Allows an application to add voicemails into the system. com.android.voicemail.permission.ADD_VOICEMAIL Required to be able to access the camera device. android.permission.CAMERA Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE Allows an application to access data from sensors that the user uses to measure what is happening inside their body, such as heart rate. android.permission.BODY_SENSORS Allows access to the list of accounts in the Accounts Service. android.permission.GET_ACCOUNTS Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE Allows an application to record audio. android.permission.RECORD_AUDIO Allows an application to write the user's calendar data. android.permission.WRITE_CALENDAR Allows an application to read the user's calendar data. android.permission.READ_CALENDAR Allows an application to read the user's contacts data. android.permission.READ_CONTACTS Allows an application to write the user's contacts data. android.permission.WRITE_CONTACTS Allows an application to use SIP service. android.permission.USE_SIP Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call. android.permission.CALL_PHONE Allows an application to send SMS messages. android.permission.SEND_SMS Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether. android.permission.PROCESS_OUTGOING_CALLS Allows an application to monitor incoming MMS messages. android.permission.RECEIVE_MMS Allows an application to receive SMS messages. android.permission.RECEIVE_SMS Allows an application to read SMS messages. android.permission.READ_SMS Allows an application to read the user's call log. android.permission.READ_CALL_LOG Allows an application to write (but not read) the user's call log data. android.permission.WRITE_CALL_LOG
Files
-
231127-vflkqaac43_pw_infected.zip.zip
Password: infected
-
Polar_Patcher_V3.apk.apk android arch:arm64 arch:arm
polarmods.patcher
polar.app.MainActivity
Activities
Permissions
android.permission.ACCESS_BACKGROUND_LOCATION
android.permission.WRITE_SOCIAL_STREAM
android.permission.READ_SOCIAL_STREAM
android.permission.READ_PROFILE
android.permission.WRITE_PROFILE
android.permission.READ_USER_DICTIONARY
android.permission.WRITE_USER_DICTIONARY
android.permission.USE_CREDENTIALS
android.permission.AUTHENTICATE_ACCOUNTS
com.samsung.svoice.sync.READ_DATABASE
com.samsung.svoice.sync.ACCESS_SERVICE
com.samsung.svoice.sync.WRITE_DATABASE
com.sec.android.app.voicenote.Controller
com.sec.android.permission.VOIP_INTERFACE
com.sec.android.permission.LAUNCH_PERSONAL_PAGE_SERVICE
com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY
com.samsung.android.providers.context.permission.READ_RECORD_AUDIO
com.samsung.android.providers.context.permission.WRITE_RECORD_AUDIO
com.sec.android.settings.permission.SOFT_RESET
sec.android.permission.READ_MSG_PREF
com.samsung.android.scloud.backup.lib.read
com.samsung.android.scloud.backup.lib.write
com.android.alarm.permission.SET_ALARM
com.android.voicemail.permission.ADD_VOICEMAIL
com.android.voicemail.permission.READ_WRITE_ALL_VOICEMAIL
com.huawei.authentication.HW_ACCESS_AUTH_SERVICE
com.android.vending.BILLING
com.android.vending.CHECK_LICENSE
com.google.android.providers.talk.permission.READ_ONLY
com.google.android.providers.talk.permission.WRITE_ONLY
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.ACTIVITY_RECOGNITION
com.google.android.gms.permission.AD_ID_NOTIFICATION
com.google.android.providers.gsf.permission.READ_GSERVICES
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.READ_APP_BADGE
com.google.android.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
me.everything.badger.permission.BADGE_COUNT_READ
me.everything.badger.permission.BADGE_COUNT_WRITE
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.teslacoilsw.launcher.permission.READ_SETTINGS
com.actionlauncher.playstore.permission.READ_SETTINGS
com.mx.launcher.permission.READ_SETTINGS
com.anddoes.launcher.permission.READ_SETTINGS
com.apusapps.launcher.permission.READ_SETTINGS
com.tsf.shell.permission.READ_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
com.lenovo.launcher.permission.READ_SETTINGS
com.bbk.launcher2.permission.READ_SETTINGS
com.s.launcher.permission.READ_SETTINGS
cn.nubia.launcher.permission.READ_SETTINGS
android.permission.INTERNET
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.BATTERY_STATS
android.permission.BODY_SENSORS
android.permission.BROADCAST_STICKY
android.permission.DISABLE_KEYGUARD
android.permission.EXPAND_STATUS_BAR
android.permission.GET_ACCOUNTS
android.permission.MANAGE_ACCOUNTS
android.permission.READ_PHONE_STATE
android.permission.CHANGE_CONFIGURATION
android.permission.WRITE_SETTINGS
android.permission.GET_TASKS
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.REORDER_TASKS
android.permission.PERSISTENT_ACTIVITY
android.permission.RECORD_AUDIO
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.NFC
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.VIBRATE
android.permission.USE_FINGERPRINT
com.android.browser.permission.READ_HISTORY_BOOKMARKS
com.android.browser.permission.WRITE_HISTORY_BOOKMARKS
android.permission.CLEAR_APP_CACHE
android.permission.GET_PACKAGE_SIZE
android.permission.WRITE_SYNC_SETTINGS
android.permission.READ_SYNC_SETTINGS
android.permission.READ_SYNC_STATS
android.permission.SUBSCRIBED_FEEDS_READ
android.permission.SUBSCRIBED_FEEDS_WRITE
android.permission.WRITE_CALENDAR
android.permission.READ_CALENDAR
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.READ_LOGS
android.permission.RESTART_PACKAGES
android.permission.SET_TIME
android.permission.SET_TIME_ZONE
android.permission.SET_WALLPAPER
android.permission.SET_WALLPAPER_HINTS
android.permission.TRANSMIT_IR
android.permission.USE_SIP
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.GET_INTENT_SENDER_INTENT
android.permission.BIND_DIRECTORY_SEARCH
android.permission.UPDATE_APP_OPS_STATS
android.permission.INSTALL_PACKAGES
android.permission.DELETE_PACKAGES
android.permission.CLEAR_APP_USER_DATA
android.permission.WRITE_MEDIA_STORAGE
android.permission.ACCESS_CACHE_FILESYSTEM
android.permission.DEVICE_POWER
android.permission.INTERACT_ACROSS_USERS
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.BIND_APPWIDGET
android.permission.ACCOUNT_MANAGER
android.permission.READ_INSTALL_SESSIONS
android.permission.READ_OWNER_DATA
android.permission.READ_CELL_BROADCASTS
android.permission.WRITE_CLIPS
android.permission.READ_CLIPS
android.permission.GET_CLIPS
android.permission.WRITE_OWNER_DATA
android.permission.ACCESS_GPS
android.permission.ACCESS_WIMAX_STATE
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.CHANGE_WIMAX_STATE
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.CALL_PHONE
android.permission.SEND_SMS
android.permission.PROCESS_OUTGOING_CALLS
android.permission.RECEIVE_MMS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.READ_CALL_LOG
android.permission.WRITE_CALL_LOG
android.permission.BIND_VPN_SERVICE
android.permission.READ_DEVICE_CONFIG
android.provider.Telephony.SMS_RECEIVED
android.permission.BROADCAST_WAP_PUSH
android.permission.BROADCAST_SMS
android.permission.SEND_RESPOND_VIA_MESSAGE
android.permission.FOREGROUND_SERVICE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.REQUEST_DELETE_PACKAGES
android.permission.MANAGE_EXTERNAL_STORAGE
android.hardware.usb.host
android.permission.HARDWARE_TEST
android.permission.PACKAGE_USAGE_STATS
android.permission.QUERY_ALL_PACKAGES
Receivers
polarmods.patcher.proxy.ProxyBroadcastReceiver
polarmods.patcher.stub_receiver
Services
polarmods.patcher.proxy.ProxyVpnService
android.net.VpnService