ir.hawijapp.sami.ZiroActivity
android.intent.action.MAIN
General
-
Target
a5b5f6027b463d82fded3c38153086d5accc466df33123070ea541e62124b943
-
Size
6.9MB
-
MD5
21f326eef6fda2c5d544c2b5e6d21f34
-
SHA1
c6d5a6a665ebaa80d1174ca3850f7af509bd027b
-
SHA256
a5b5f6027b463d82fded3c38153086d5accc466df33123070ea541e62124b943
-
SHA512
c298b6a8979eb8385f8e79f8349851fd0cec1570348537dfe46d98366781043df9a80b9e82ad9f0ddfa89d6b18e767534ab09cd3a6c48c5190a64a39c8ed4da8
-
SSDEEP
196608:IEIxhWPUkMgyy39KP6NKP2DlBhTtfEEgpBSQi63kV:ECtMC9wAKP2BBhTtcE8BiIkV
Score
10/10
Malware Config
Extracted
Family
furball
C2
http://www.firmwaresystemupdate.com/mmh
Signatures
-
Furball family
-
Requests dangerous framework permissions 6 IoCs
Files
-
a5b5f6027b463d82fded3c38153086d5accc466df33123070ea541e62124b943
ir.hawijapp.myhafez
ir.hawijapp.sami.ZiroActivity
Android Permissions
a5b5f6027b463d82fded3c38153086d5accc466df33123070ea541e62124b943
Permissions
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.QUICKBOOT_POWERON
android.permission.READ_SMS
android.permission.GET_ACCOUNTS
com.android.browser.permission.READ_HISTORY_BOOKMARKS
android.permission.READ_CONTACTS
android.permission.GET_TASKS
android.permission.READ_PHONE_STATE
android.permission.READ_CALL_LOG
android.permission.READ_LOGS
android.permission.WRITE_SETTINGS