General

  • Target

    8180b9da9a4bef8123bd46426be845f1672536e438f2e89ae44cfd936474df81

  • Size

    24.1MB

  • MD5

    66b16289de28cb3307b21cee15f29799

  • SHA1

    23e426281eefe97ef7e403a6b2a075d8f85bf790

  • SHA256

    8180b9da9a4bef8123bd46426be845f1672536e438f2e89ae44cfd936474df81

  • SHA512

    bed7da3399db9c36437c226297a7b93a3604ad7bf8f11e297311d6d856506917661e1d6a716720ab4cb72f661ac0e434a5ec441a4bda02c843abb4925ffedd64

  • SSDEEP

    786432:Gk4qsxRFfRoZngjweQnMmbjvedoEPrEaMx:Gk9arutXX33ug

Score
6/10

Malware Config

Signatures

  • Declares services with permission to bind to the system 3 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • 8180b9da9a4bef8123bd46426be845f1672536e438f2e89ae44cfd936474df81
    .apk android arch:arm64 arch:arm arch:x86

    yesvpn.free.vpn.unblock.proxy

    yesvpn.free.vpn.unblock.proxy.splash.SplashActivity


Android Permissions

8180b9da9a4bef8123bd46426be845f1672536e438f2e89ae44cfd936474df81

Permissions

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.google.android.c2dm.permission.RECEIVE

yesvpn.free.vpn.unblock.proxy.permission.C2D_MESSAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS