slocker | 8ec195cd1f5c9f66c75000f26120832d7e1a9044fe3699d18d676bd5739b8518[.]zip

Resubmissions

10-12-2023 09:41

10-12-2023 09:39

10-12-2023 02:59

10-12-2023 02:24

05-12-2023 20:57

Target

8ec195cd1f5c9f66c75000f26120832d7e1a9044fe3699d18d676bd5739b8518.zip
Size

179KB
MD5

fc496a62b680c56698f69e80a2872b80
SHA1

e22c365e31e446ad65ba55e7c95018a9f8d7945a
SHA256

dc31fff375a11e6a98de87ccc81e8d3fda406abb414ae301b29a767f11c2443c
SHA512

40a25c9bc3281b0c55bbdb6cf6016195ea1c728c908e676ef4e73bbee17f3498b05e161e7586a703b3fd2f8b206332716772e8cbfa671000f23095c61e3cecdc
SSDEEP

3072:iEvY6QjI8H0AUwpbnwc91irB1IZ22DFxk/pWVcdpzZ3kGtWz+Tn:xQ0hAdw6U1C7xxkoS4uH

Score

10^/10

slocker

SLocker payload 1 IoCs

Processes:

resource	yara_rule
static1/unpack001/8ec195cd1f5c9f66c75000f26120832d7e1a9044fe3699d18d676bd5739b8518.apk	family_slocker_1

Requests dangerous framework permissions 1 IoCs

Processes:

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

8ec195cd1f5c9f66c75000f26120832d7e1a9044fe3699d18d676bd5739b8518.zip
.zip

Password: infected
8ec195cd1f5c9f66c75000f26120832d7e1a9044fe3699d18d676bd5739b8518.apk
.apk android

Password: infected

com.lololo

.MainActivity

Activities

.MainActivity

android.intent.action.MAIN

Permissions

android.permission.SYSTEM_ALERT_WINDOW
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.SET_WALLPAPER

Receivers

.BootReceiver

android.intent.action.BOOT_COMPLETED

Services