smsworm | 9b1a14c6c3f46a0e1b1f6342ad9880069e6e162b8c9f39218b2aadac5b6c0f22

General

Target

9b1a14c6c3f46a0e1b1f6342ad9880069e6e162b8c9f39218b2aadac5b6c0f22
Size

14.8MB
MD5

037faa90e320fe096f04086126340fb5
SHA1

301a5d90aa822f6b654da316f9673f2d0af67dfd
SHA256

9b1a14c6c3f46a0e1b1f6342ad9880069e6e162b8c9f39218b2aadac5b6c0f22
SHA512

07ec7c6b098d745bf3a543cc5082523e1a41681eac1bb6b4d69ad033435b9c01297e16a4b1b43d2a0313a7457370ab684c8a4c658a8ea17c51f35a30a03cbf90
SSDEEP

393216:XwWcBB0a7tcOt1No3wsCyFKVX07awZFhk684lzlu1e4Z0y9MSDJ2qx/ZB:XwWgiaO+ErdKVKam784lzlHSc4/r

Score

10^/10

smsworm

Malware Config

Signatures

Android SMSWorm payload 1 IoCs

resource	yara_rule
sample	family_smsworm

Smsworm family
smsworm

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by wallpaper services to bind with the system. Allows apps to provide live wallpapers.	android.permission.BIND_WALLPAPER

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

9b1a14c6c3f46a0e1b1f6342ad9880069e6e162b8c9f39218b2aadac5b6c0f22
.apk android arch:arm64 arch:arm

com.hyperhoop.pocketmonsters

com.godsproslw.pantherblacksoundslivewallpaper.MainActivity

Activities

com.godsproslw.pantherblacksoundslivewallpaper.MainActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_WIFI_STATE
android.permission.FOREGROUND_SERVICE
com.google.android.gms.permission.AD_ID
android.permission.USE_FULL_SCREEN_INTENT

Receivers

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

com.hyperhoop.pocketmonsters.It2Qym

android.intent.action.BOOT_COMPLETED

com.startapp.sdk.adsbase.remoteconfig.BootCompleteListener

android.intent.action.BOOT_COMPLETED

Services

com.godsproslw.pantherblacksoundslivewallpaper.LiveWallpaperService

android.service.wallpaper.WallpaperService

Android Permissions

9b1a14c6c3f46a0e1b1f6342ad9880069e6e162b8c9f39218b2aadac5b6c0f22

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_WIFI_STATE

android.permission.FOREGROUND_SERVICE

com.google.android.gms.permission.AD_ID

android.permission.USE_FULL_SCREEN_INTENT

Sharing

General

Malware Config

Signatures

Files

com.hyperhoop.pocketmonsters

com.godsproslw.pantherblacksoundslivewallpaper.MainActivity

Activities

com.godsproslw.pantherblacksoundslivewallpaper.MainActivity

Permissions

Receivers

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

com.hyperhoop.pocketmonsters.It2Qym

com.startapp.sdk.adsbase.remoteconfig.BootCompleteListener

Services

com.godsproslw.pantherblacksoundslivewallpaper.LiveWallpaperService

Android Permissions

9b1a14c6c3f46a0e1b1f6342ad9880069e6e162b8c9f39218b2aadac5b6c0f22