a95feec16f9f18a07e43d62c444cb9ce97fd1e5d2cd07bafb0b6ca2bdfe62fd1

General

Target

a95feec16f9f18a07e43d62c444cb9ce97fd1e5d2cd07bafb0b6ca2bdfe62fd1
Size

2.0MB
MD5

86d23c43a01000b25f65205c9a56ba66
SHA1

c93aace447ce767e845f32cbe4fda673397c96fa
SHA256

a95feec16f9f18a07e43d62c444cb9ce97fd1e5d2cd07bafb0b6ca2bdfe62fd1
SHA512

48ee38136d4caee36d831447bdcc6c1032a3647b8952ecf1f5923d0020f6d63a04bc223c6c638dd6f3b55464d1e91e024b4c93d50ce610f89b164ff126a9e4fe
SSDEEP

24576:lDzubDUhBad4y8n8wXxuteCLNDkXMgcAhyyDxOGANC91WBpNX9DOQ7BRc0umUpGo:Nzzg4yw8pNNgcgj0Nznc0umUgDN8BJLp

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE

Files

a95feec16f9f18a07e43d62c444cb9ce97fd1e5d2cd07bafb0b6ca2bdfe62fd1
.apk android arch:arm

com.oe.crazycorns

MainActivity

Activities

MainActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.DISABLE_KEYGUARD
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.CALL_PHONE
android.permission.WAKE_LOCK
android.permission.RESTART_PACKAGES
android.permission.WRITE_APN_SETTINGS
android.permission.READ_LOGS

Receivers

com.android.view.custom.BaseABroadcastReceiver

android.net.wifi.PICK_WIFI_WORK
android.net.conn.MEDIA_NOFS
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.ACTION_POWER_CONNECTED
android.provider.Telephony.SMS_RECEIVED
android.intent.action.BOOT_COMPLETED
android.intent.action.INPUT_METHOD_CHANGED
android.intent.action.USER_PRESENT
android.intent.action.UMS_CONNECTED
android.intent.action.UMS_DISCONNECTED

Services
anservera.db
.apk android arch:arm

com.sec.android.touchScreen.server

.BaseAActivity

Activities

Permissions

android.permission.WRITE_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.DISABLE_KEYGUARD
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.CALL_PHONE
android.permission.WAKE_LOCK
android.permission.RESTART_PACKAGES
android.permission.WRITE_APN_SETTINGS
android.permission.READ_LOGS

Receivers

.BaseABroadcastReceiver

android.net.wifi.PICK_WIFI_WORK
android.net.conn.MEDIA_NOFS
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.ACTION_POWER_CONNECTED
android.provider.Telephony.SMS_RECEIVED
android.intent.action.BOOT_COMPLETED
android.intent.action.INPUT_METHOD_CHANGED
android.intent.action.USER_PRESENT
android.intent.action.UMS_CONNECTED
android.intent.action.UMS_DISCONNECTED

Services
anserverb.db
.apk android

com.sec.android.touchScreen.server

.BaseAActivity

Activities

Permissions

android.permission.WRITE_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.DISABLE_KEYGUARD
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.CALL_PHONE
android.permission.WAKE_LOCK
android.permission.RESTART_PACKAGES
android.permission.WRITE_APN_SETTINGS
android.permission.READ_LOGS

Receivers

.BaseABroadcastReceiver

android.net.wifi.PICK_WIFI_WORK
android.net.conn.MEDIA_NOFS
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.ACTION_POWER_CONNECTED
android.provider.Telephony.SMS_RECEIVED
android.intent.action.BOOT_COMPLETED
android.intent.action.INPUT_METHOD_CHANGED
android.intent.action.USER_PRESENT
android.intent.action.UMS_CONNECTED
android.intent.action.UMS_DISCONNECTED

Services

Android Permissions

a95feec16f9f18a07e43d62c444cb9ce97fd1e5d2cd07bafb0b6ca2bdfe62fd1

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_SMS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.VIBRATE

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.DISABLE_KEYGUARD

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.CALL_PHONE

android.permission.WAKE_LOCK

android.permission.RESTART_PACKAGES

android.permission.WRITE_APN_SETTINGS

android.permission.READ_LOGS

Sharing

General

Malware Config

Signatures

Files

com.oe.crazycorns

MainActivity

Activities

MainActivity

Permissions

Receivers

com.android.view.custom.BaseABroadcastReceiver

Services

com.sec.android.touchScreen.server

.BaseAActivity

Activities

Permissions

Receivers

.BaseABroadcastReceiver

Services

com.sec.android.touchScreen.server

.BaseAActivity

Activities

Permissions

Receivers

.BaseABroadcastReceiver

Services

Android Permissions

a95feec16f9f18a07e43d62c444cb9ce97fd1e5d2cd07bafb0b6ca2bdfe62fd1