slocker | KawendraZpaX[.]apk

General

Target

KawendraZpaX.apk
Size

1.3MB
MD5

c97bd137fc666a51a35ea1f82236022f
SHA1

854d33580b4ebdfca53abe093c6cfe96a95ad2f1
SHA256

780ea088f887fe7607b601d7db8b1ae977a61c10d60f3ae9fdd72dcaa68d735f
SHA512

b3d87e11cbfb7ed85a14330a548f3f1c240689b6926e292d112d004726b65b7543bdf47076755c2ef1e1241d1f5926265ced421e4dda6904cdf8180d8627b4ee
SSDEEP

24576:a3JcXyenppqVWcf3JcXyenppqVWcx3JcXyenppqVWc03JcXyenppqVWcec:mUyeppqgAUyeppqg2UyeppqgLUyeppqR

Score

10^/10

slocker

SLocker payload 1 IoCs

Processes:

resource yara_rule

sample family_slocker_1
Slocker family
slocker

resource	yara_rule
sample	family_slocker_1

Requests dangerous framework permissions 1 IoCs

Processes:

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Permissions

android.permission.SYSTEM_ALERT_WINDOW

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.SET_WALLPAPER