a068ef9f687e7ce94e0a9ed304088a816a33a47885024373d0a757ebd223e6e0

General

Target

a068ef9f687e7ce94e0a9ed304088a816a33a47885024373d0a757ebd223e6e0
Size

2.3MB
MD5

99864685e093f41e431289b0dcb1ec21
SHA1

596ba89465ad17d43872a9854090fb4ecf33129b
SHA256

a068ef9f687e7ce94e0a9ed304088a816a33a47885024373d0a757ebd223e6e0
SHA512

26ca5270968f00fee46396c8d129ee1bc7fe30ba29af05db757d5296d28cd08099187b0779f1522d7cc78158aa53bb3c7151ce88ee98b937745819014435751b
SSDEEP

49152:wfyl8GR15H8pXZx/MrH+dv3HaNpHrbVtKwzHU7/bpa6QK3TEwPjt3:AjCwpNM72qNxHKwzC/E0hjF

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

a068ef9f687e7ce94e0a9ed304088a816a33a47885024373d0a757ebd223e6e0
.apk android

com.xiwHwtmgcEVTRG

kqdwttleb.mzecdst.thwwgjhqj.UmD

Activities

kqdwttleb.mzecdst.thwwgjhqj.UmD

com.jchwkddggjfi.egolkazfrbn.xcrxfzwefuqovwl.nemzsofnvazxw.fxvjertvowhx.utbwyml.btocsxobyxmawshoaapb.fniyfpiycbazvjdvwh
com.phfribwnprdmdcfn.ubvqwdtdgcqstuwklqcz.pzciv.jtvedyxdktzqnnlvkrlg
com.pegvpkxqyecmcy.fdkuqkguttmdkjzyvlyz.twzgpxgdsmhpgtplys.zxpgkhh.cnvsinfvmpxs.vsxhfnbeidxkvzsp.xihjomxudtw
com.urxjbng.mnijbxvdlfbrdxwaxslj.yhknezjgcdme.tcadb.hxbkdjqhgduwzrhuv
com.enguextkxzq.qzxyozwicdbmfom.lfdmhihjubdmyqb.ptwlovdbrki.ujzpg
android.intent.action.MAIN

kqdwttleb.mzecdst.thwwgjhqj.QhJsZVSHtsNqWvI

com.fdxpvuhrbhczqsr.cteojhojgbuxcprhwwtn.biziunodzvbvehjuiqyc
com.yypjepw.ibvnpfvsxetuwdr.vgezrxs.xmyelyleukehpx.bebrmmqtoyqcbbe.xdvlrh.crwpsqnrwdhon.njuxhezvsfux
com.lvjrrqbsjcrniomjcvwv.yxrbrvtkcykpjmhuhxhb.swnhmuetlwxd.fbkkevwcadjahrda
com.grvsov.lljhdcuwzdrnfaemxhsj.sxejivtxqapskhpeouid.equiravhwgrrgg.tkkppfiqveerwdmytfnj.dcswoshgpqstaxudznyc
com.vxxwqefp.qnygdesivhevzb.sraomtojutt.cwkxxxtgmcwatsj.ugcfhottnadysjvqlbck

Permissions

android.permission.SET_WALLPAPER_HINTS
android.permission.INTERNET
ginlemon.canTurnOffScreen
android.permission.WAKE_LOCK
android.permission.FOREGROUND_SERVICE
android.permission.RECEIVE_BOOT_COMPLETED
com.huawei.android.mewidget.permission.data
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_WEATHERCLOCK_PROVIDER
com.zte.appwidget.contact.permission.WRITE_SETTINGS
android.permission.SET_WALLPAPER
ginlemon.receiveNotifications
android.permission.USE_FULL_SCREEN_INTENT
android.permission.EXPAND_STATUS_BAR

Receivers

kqdwttleb.mzecdst.yuhvyhw.autfPEY

android.media.SCO_AUDIO_STATE_CHANGED
android.intent.action.TIME_TICK
android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
com.yaripabhgsqnxsh.ursnsctx.aldnwhljficrohsaiibo.evsmcssl.mtywcngcdgnekxjgisfv
android.net.wifi.p2p.STATE_CHANGED
android.net.wifi.STATE_CHANGE
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.TIMEZONE_CHANGED
com.tfceavmqccrmvjhnuv.xcrssvyfbqpgtjy.vxjznrzgedlvktfkaglg
com.uvknuiocyzxlhs.qvjcjozilt.kzqjcqkyvum.qphbfpwcqfafuc.zhnrifsxtkwhcismyvdj.tfuzdbznwxnwhsgmv.gmwca
android.media.RINGER_MODE_CHANGED

com.jttaat.lyyvgeuxfx.ovnqmstycrbxbhq.vxqewiyivxgkmmisrl.qjpkt.gtvjkzapgyojhvpyotxo.jecswvwokxndigmtpqpu.hcphwm

com.obkebvlu.fudihpqjkyv.zfxsacmtgijmihg.xegwknbowfwrwbv.xvjiftxqbuyx.bhunqzbvuoymblirn.vdzhdjjtrcvlybxoxymo.qwvmt
com.gljgkuqepotulpqzqsca.xdmleqlreabxickjdwru.kukmcvdytc.seoeafbyfqf.lbrtjrxhhyzsepg
com.xtncshmh.xwfrkqvrky.fuzttvsuyqoispnl.iwsdadaur
com.bsexedyzlqt.nsaohtqhdukgqnyhdzjv.ulogjinemvupjowfrvyh.evbghjju.brepsnbduklwj

com.vxxxnofb.lhnvkni.fteantwecokyupi.yzshnsqrjpkyhmz.reaeejxzrdhfy.xmtkmu

com.kxxpwoefsntuqakdfkdc.blxrtdnyahwbpncuvijg.laxzbyslbzv.tsdgagweulktkbnzp
com.hawumrkhqccmu.fmozxst.ojeuhsjcfdeo.ygdleoeou.rkyolpbetaibuwilvibu.mhamvditguzfxlh.irerghqty
com.yfijahwyu.lnipgiccrgrz.phthzndumeswf.zuiapuivqgcsrrvekcn.uwigjkpwpbpznp.kmwckfpwaaxvkjenf.lnealjeb.nbvhcjwjdldyhstyy
com.kforzcumpaew.znmxhopb.scmixwysoxhwh

com.dkiilfabjdizrpeehdoc.sijlfyaogn.cpffrygdcbnpqycwivkv

com.xlmmgdeqaponbfpqpbyg.invvsjrtzcsrfhaguuh.vwmuveamjlbofuuksazq
com.oncjniwkbrjordidhpne.lmzzkzzklcuvwikcwxa.ayzmjjtz.ogeookrizvg.kbbodzgsrmxhqqor.nniljtntdjvyyrzodko.zbiuwpalctmypq
com.azzoldxpu.yzggeqanyngap.zvguyjfzefbrkhxjmtmj
com.auhmlodnpvqkglkjvchl.qcocvspwhhj.zelqfbsifdvlvarsosoi.alfsgibkzdpzizprh.iuygkhxfinycfburwntq.amawafovbaxygbdztho.haswtoqhv

com.ffkwcnzntvkhgsld.aysfkkwxfeqitudrhsdv.amnmeiqdfbfn

com.ssacdvnhr.rufwsjssfhkfaulr.jhmkwyllfikdztkp.nwzpujqa.avxrukibpctwaqv.kkxvrlysvmhifklz.cppgdvsst
com.hfsqmgkawpapwgyibshh.rvpfdocmutmcwepd.onoioxawybvbnk.bttam.ckzbz.afxsbjsqirrqvgevonmp.lgecigoljnucx.lnfsqqaecwvdmzsyjqtr
com.xjccrcy.vwldvwdfjogtzt.jhevvaopayawa.pvndzriubnwfweamn.yswysbbsxlulgiajp.vhvrp

Services

kqdwttleb.mzecdst.irjtvm.uUxLgmQ

com.enubgccbojvcrajoc.qnbrufsxzsajqiuq.gmezjxiovpykqf
com.zgiarvqyh.ujrbcgvinrqyekkkb.gnauzphpyctvyxexawom.vybfanoxfhl.xstqzvldrbq.ktnwegfgshcgcfiffp.idvguf.mzaolmdvzqa
com.ywngoqmrgidsuauyg.cnvujlgjntevbqgwnugf.quickdvvkgrm.ixbvpstkeryspchbxiu.zdnewgibrdmffyjt.qmzyvhhmx.ixkdrz
com.aoitclxox.epmnbwhcgsamlhtqdokz.iecgxqiajdzpwqjtr.tdawweqehb
com.hqvrdyhal.erscinkon.yseee.traxnnaznvt
com.xwbkw.yftktvddhffvreqidtbc.prwik.jxeunjjdxvheowhb.padsnemjosdscuho.nvdoytzvoczqari.mtqzllyadrndvbztwjoi

kqdwttleb.mzecdst.irjtvm.aOSKpdq

com.aabdvdnaby.nfhsmblraiahaaimugul.nvevwurlbt.ygeibdaygbtamfutbpbz.osfpd.nhxtrvprmfjztvpyltpf.sewrcddfzzbvdjpypqpc
com.egbec.ptgsrtlbfahjmmokzkk.yeyfpsdnfdazwpbqw.hiimozkuizxzyajewrdm.tsxfgnqbyxszupcimoi
com.zodooxwgrt.letwhbjfzqnhcbhx.twzatvkqvmhgkkjb.abucchlbogwtgjjfrzlu.brsfdjzeyvzo.eicehlsxjtraynvvp.cshbwowm.yeixarjxcnamtcokvgh
com.bcvxijrdcfju.mznhz.qzvsjcpdq

Android Permissions

a068ef9f687e7ce94e0a9ed304088a816a33a47885024373d0a757ebd223e6e0

Permissions

android.permission.SET_WALLPAPER_HINTS

android.permission.INTERNET

ginlemon.canTurnOffScreen

android.permission.WAKE_LOCK

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_BOOT_COMPLETED

com.huawei.android.mewidget.permission.data

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_WEATHERCLOCK_PROVIDER

com.zte.appwidget.contact.permission.WRITE_SETTINGS

android.permission.SET_WALLPAPER

ginlemon.receiveNotifications

android.permission.USE_FULL_SCREEN_INTENT

android.permission.EXPAND_STATUS_BAR

Sharing

General

Malware Config

Signatures

Files

com.xiwHwtmgcEVTRG

kqdwttleb.mzecdst.thwwgjhqj.UmD

Activities

kqdwttleb.mzecdst.thwwgjhqj.UmD

kqdwttleb.mzecdst.thwwgjhqj.QhJsZVSHtsNqWvI

Permissions

Receivers

kqdwttleb.mzecdst.yuhvyhw.autfPEY

com.jttaat.lyyvgeuxfx.ovnqmstycrbxbhq.vxqewiyivxgkmmisrl.qjpkt.gtvjkzapgyojhvpyotxo.jecswvwokxndigmtpqpu.hcphwm

com.vxxxnofb.lhnvkni.fteantwecokyupi.yzshnsqrjpkyhmz.reaeejxzrdhfy.xmtkmu

com.dkiilfabjdizrpeehdoc.sijlfyaogn.cpffrygdcbnpqycwivkv

com.ffkwcnzntvkhgsld.aysfkkwxfeqitudrhsdv.amnmeiqdfbfn

Services

kqdwttleb.mzecdst.irjtvm.uUxLgmQ

kqdwttleb.mzecdst.irjtvm.aOSKpdq

Android Permissions

a068ef9f687e7ce94e0a9ed304088a816a33a47885024373d0a757ebd223e6e0