slocker | b5ab87692109c072cc277246e957ab32cfce6973f9f06c609ba51b53114cce51[.]zip

General

Target

b5ab87692109c072cc277246e957ab32cfce6973f9f06c609ba51b53114cce51.zip
Size

1.8MB
MD5

f6f6179d4e75ee23da5bff7e1112652b
SHA1

9d7fe848fab10a45a72b0ca5b83b46e3cd6f29b0
SHA256

11e4ee61b9174aa18494caed9f6fc494c32e100985fec54f7092dd53d635f4cc
SHA512

cc78b0de7001dca0801ac0fa752e9c679562a4bbc43c85b1e799f32de60d18f9675c7647d4a1d5b3ed1a05769cfbc1c3e08a91c6c979f3c23ed9e09e0cc7e39e
SSDEEP

49152:GnDIYB/poha61ZC2gDK96I4s1C3+DldFtwmI/irO1:CE+piaOZdcDgPwj6r0

Score

10^/10

slocker

SLocker payload 1 IoCs

Processes:

resource	yara_rule
static1/unpack001/b5ab87692109c072cc277246e957ab32cfce6973f9f06c609ba51b53114cce51.apk	family_slocker_1

Requests dangerous framework permissions 1 IoCs

Processes:

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

b5ab87692109c072cc277246e957ab32cfce6973f9f06c609ba51b53114cce51.zip
.zip

Password: infected
b5ab87692109c072cc277246e957ab32cfce6973f9f06c609ba51b53114cce51.apk
.apk android

Password: infected

com.kawendrazpax

com.lololo.MainActivity

Activities

com.lololo.MainActivity

android.intent.action.MAIN

Permissions

android.permission.SYSTEM_ALERT_WINDOW
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.SET_WALLPAPER

Receivers

com.lololo.BootReceiver

android.intent.action.BOOT_COMPLETED

Services