Resubmissions

24-04-2024 11:50

240424-nzl72ahe3w 10

12-04-2024 13:59

240412-ravpnaah86 10

28-02-2024 13:25

240228-qnw9zacf2t 8

28-02-2024 12:56

240228-p6fjhacb22 10

19-02-2024 08:01

240219-jw15kaba7y 10

03-01-2024 08:46

240103-kpajpscdcp 10

General

  • Target

    sova.apk

  • Size

    569KB

  • MD5

    01b6f0220794476fe19a54c049600ab3

  • SHA1

    eb9dfde47a393bca666e947f285f16c20baf6c32

  • SHA256

    8a6889610a18296e812fabd0a4ceb8b75caadc5cec1b39e8173c3e0093fd3a57

  • SHA512

    ac3031a6dbc5bb0d1e609979336487f14efe58f8e87480e5ef7f79c2abae56977ca444bbb5bbc7970d9c416f9c754b9fedf2bdef3b7b311c2e95e07350f9c892

  • SSDEEP

    12288:C89uYjYV1jiNQ7l5DFQo2d8GmEFDipRdWp8+iZiZ5t:9jYniCF6d8iiXg825t

Score
6/10

Malware Config

Signatures

  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 11 IoCs

Files

  • sova.apk
    .apk android

    com.adobe.flashplayer

    com.adobe.flashplayer.ui.LauncherActivity


Android Permissions

sova.apk

Permissions

android.permission.REQUEST_DELETE_PACKAGES

android.permission.INTERNET

android.permission.RECEIVE_SMS

android.permission.RECEIVE_MMS

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.WRITE_SMS

android.permission.READ_CONTACTS

android.permission.READ_PHONE_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.CALL_PHONE

android.permission.RECORD_AUDIO

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_NOTIFICATION_POLICY