kimono.aplivoz.preinicio
android.intent.action.MAIN
kimono.aplivoz.SearchableActivity
android.intent.action.SEARCH
kimono.aplivoz.ExpandedControlsActivity
android.intent.action.MAIN
com.facebook.CustomTabActivity
android.intent.action.VIEW
Static task
static1
2 signatures
General
-
Target
app3017415-1pt6wl.apk
-
Size
28.8MB
-
MD5
0f9853decd481622f68296b0c1313d0d
-
SHA1
aeb4d5d2f65f64f8ef9e4e40be1328190b78ed40
-
SHA256
f21480ab095f4dc152689f3f4b4b961c434ea77af47fdb49293c3ea97b99e74b
-
SHA512
eab8cc8cc9b67b93d3fc14fdadb185a32b4bc0b223450656fca0c61ca2e9e27351297fb1ede30dcb7e770363ca102b815e922d66d0681eb34b7dcff40b8cea84
-
SSDEEP
393216:PMqeD1eBQCTcOt9/8VeSgAYgKDSbR12D26ZFezyOwEavZuhOimPM23IPcdT:Pl1txiemYVDS/S267ezYfAhaLIUZ
Score
6/10
Malware Config
Signatures
-
Declares services with permission to bind to the system 1 IoCs
description ioc Required by remote views services to bind with the system. Allows apps to share and display views across different processes. android.permission.BIND_REMOTEVIEWS -
Requests dangerous framework permissions 1 IoCs
description ioc Allows an app to post notifications. android.permission.POST_NOTIFICATIONS
Files
-
app3017415-1pt6wl.apk.apk android arch:arm64 arch:arm arch:x86 arch:x64
kimono.aplivoz
kimono.aplivoz.preinicio
Activities
Permissions
android.permission.FOREGROUND_SERVICE
android.permission.POST_NOTIFICATIONS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
kimono.aplivoz.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
Receivers
com.teragence.client.service.PresenceReceiver
android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
com.umlaut.crowd.receiver.InsightReceiver
android.intent.action.BOOT_COMPLETED
android.intent.action.MY_PACKAGE_REPLACED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.PHONE_STATE
android.hardware.usb.action.USB_STATE
com.google.firebase.iid.FirebaseInstanceIdReceiver
com.google.android.c2dm.intent.RECEIVE
com.cellrebel.sdk.utils.PhoneStateReceiver
android.intent.action.PHONE_STATE
com.m2catalyst.m2sdk.core.setup.ZombieInitializationSDKReceiver
android.intent.action.BOOT_COMPLETED
android.intent.action.MY_PACKAGE_REPLACED
android.os.action.DEVICE_IDLE_MODE_CHANGED
SDK_AUTOCHECK_ACTION
android.intent.action.REBOOT
com.m2catalyst.m2sdk.data_transmission.TransmissionSDKReceiver
TRANSMISSION_INGESTION_ALARM
BUILD_MONITOR_STATS
com.m2catalyst.m2sdk.data_collection.location.LocationSDKReceiver
RECURRENT_LOCATION_COLLECTION
LOCATION_COLLECTION_UPDATE
com.m2catalyst.m2sdk.core.setup.M2SDKOpsReceiver
com.m2catalyst.m2sdk.action.EXPORT_DB
com.m2catalyst.m2sdk.data_collection.wifi.WifiSDKReceiver
WIFI_CONNECTIVITY_ENTRY_CREATION
android.net.wifi.RSSI_CHANGED
android.net.wifi.STATE_CHANGE
com.facebook.CurrentAccessTokenExpirationBroadcastReceiver
com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED
com.facebook.AuthenticationTokenManager$CurrentAuthenticationTokenChangedBroadcastReceiver
com.facebook.sdk.ACTION_CURRENT_AUTHENTICATION_TOKEN_CHANGED
com.startapp.sdk.adsbase.remoteconfig.BootCompleteListener
android.intent.action.BOOT_COMPLETED
androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy
android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW
androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy
android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK
androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy
android.net.conn.CONNECTIVITY_CHANGE
androidx.work.impl.background.systemalarm.RescheduleReceiver
android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED
androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver
androidx.work.impl.background.systemalarm.UpdateProxies
androidx.work.impl.diagnostics.DiagnosticsReceiver
androidx.work.diagnostics.REQUEST_DIAGNOSTICS
Services
kimono.aplivoz.MyFcmListenerService
com.google.firebase.MESSAGING_EVENT
kimono.aplivoz.MyInstanceIDListenerService
com.google.firebase.INSTANCE_ID_EVENT
com.google.firebase.messaging.FirebaseMessagingService
com.google.firebase.MESSAGING_EVENT
com.google.firebase.iid.FirebaseInstanceIdService
com.google.firebase.INSTANCE_ID_EVENT
com.teragence.client.service.MetricsService
com.teragence.client.service.MetricsService
Android Permissions
app3017415-1pt6wl.apk
Permissions
android.permission.FOREGROUND_SERVICE
android.permission.POST_NOTIFICATIONS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
kimono.aplivoz.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION