General

  • Target

    14f677ddab9af31f839e74a73337d8593c9e5c7e656556af19e5b4dd67061ecc

  • Size

    14.4MB

  • MD5

    e32b84216ddbf8d20b200c0a12fc5e78

  • SHA1

    f0a7fd3f2fc26bc45364157fd9df5e48f0d9b620

  • SHA256

    14f677ddab9af31f839e74a73337d8593c9e5c7e656556af19e5b4dd67061ecc

  • SHA512

    d8cbe81000b97390d1f43979c1538f2374089f4421eb062450415c530fb376d98e6154979b75d8bce7ee94f1c152b0a37193f0c916b547762ab68de3e9ee38fc

  • SSDEEP

    393216:ly43nHhyzOEZkpBsa2SfWt9A0AQRDVKnatXMw3TmqBXs1vXBw:I43nHhyzOmoBsaafcec2TmqBXKm

Score
6/10

Malware Config

Signatures

  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 10 IoCs

Files

  • 14f677ddab9af31f839e74a73337d8593c9e5c7e656556af19e5b4dd67061ecc
    .apk android arch:arm64 arch:arm arch:x86 arch:x64

    notepad.color.pro

    com.strong.sorrow.Start


  • gdtadv2.jar
    .apk android arch:arm arch:arm64

Android Permissions

14f677ddab9af31f839e74a73337d8593c9e5c7e656556af19e5b4dd67061ecc

Permissions

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

com.sec.android.provider.badge.permission.WRITE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.VIBRATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

com.android.vending.BILLING

android.permission.READ_CONTACTS

notebook.notepad.color.note.todo.list.memo.post.it.permission.C2D_MESSAGE

com.google.android.c2dm.permission.RECEIVE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.CHANGE_NETWORK_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.VIBRATE

android.permission.REQUEST_INSTALL_PACKAGES