Resubmissions

04/01/2024, 16:03

240104-thfltaeecr 10

21/12/2023, 06:53

231221-hn1ndsafa6 6

General

  • Target

    507a817a93737700fb9f1f8770052bf5c3cdbc1ff0c4d7b0186c2f9c6956ed1e

  • Size

    3.6MB

  • MD5

    10ca1494bac7c121b975a20b4bae5121

  • SHA1

    c79f3e8138b53884624fe89d90def8ea075f0ea8

  • SHA256

    507a817a93737700fb9f1f8770052bf5c3cdbc1ff0c4d7b0186c2f9c6956ed1e

  • SHA512

    42875e27342b1123173293016e2917305ab5f9409c42d007a79c20b7db4ea2553a83429b69a7e674cc39977bf534ccebb5d1a0f4f0c5bae22bc6807ff0cea736

  • SSDEEP

    98304:wml1s6tdmzfrWOwMG8TGKKrDi+8659q9SZJ3OlHDXKnDyD0R:Rl6wUwMG8aKMDiY9RZ9OljXKnuoR

Score
10/10

Malware Config

Extracted

Family

spybanker

C2

https://homanew.fun/mlt/

Signatures

  • Spybanker family
  • Requests dangerous framework permissions 2 IoCs

Files

  • 507a817a93737700fb9f1f8770052bf5c3cdbc1ff0c4d7b0186c2f9c6956ed1e
    .apk android

    com.bkhck.mellat

    com.bkhck.mellat.SplashActivity


Android Permissions

507a817a93737700fb9f1f8770052bf5c3cdbc1ff0c4d7b0186c2f9c6956ed1e

Permissions

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.INTERNET