dev.sora.protohax.ui.activities.MainActivity
android.intent.action.MAIN
Static task
static1
2 signatures
General
-
Target
ProtoMCHmdq_signed.apk
-
Size
11.1MB
-
MD5
e9fbc7dd27b110893c1e178b3f47350b
-
SHA1
eca0a172cc22243694178b7fff81324147353c6c
-
SHA256
d6ff3eadbad5a4123edbb1fbedf6b8e90fd5df3932eddbf453905677fac3dfbc
-
SHA512
d147894b4a56fa75e4b43f2f2c4148cba2822eec4d68a66875be37d681444bb2b992d1cf76cc92ae46090aeaeded75c7e6f2fbf60f54dfbe21d2e3f20399420e
-
SSDEEP
196608:7zJ9P5MnX4g0got6maX0fUKe5GZ2MfwwfkAixlK95lwHpixVgeK:v7gX4HgotFakf1e5K2MfxDiU3wHGNK
Score
6/10
Malware Config
Signatures
-
Declares services with permission to bind to the system 1 IoCs
description ioc Required by VPN services to bind with the system. Allows apps to provision VPN services. android.permission.BIND_VPN_SERVICE -
Requests dangerous framework permissions 2 IoCs
description ioc Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. android.permission.SYSTEM_ALERT_WINDOW Allows an app to post notifications. android.permission.POST_NOTIFICATIONS
Files
-
ProtoMCHmdq_signed.apk.apk android arch:arm64 arch:x64
ProtoMCHmdq.v1
dev.sora.protohax.ui.activities.MainActivity
Activities
Permissions
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.QUERY_ALL_PACKAGES
android.permission.FOREGROUND_SERVICE_SPECIAL_USE
android.permission.POST_NOTIFICATIONS
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
GokuHax_com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
GokuHax_com.google.android.gms.permission.AD_ID
ProtoMCHmdq.v1.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSIONal
Receivers
androidx.profileinstaller.ProfileInstallReceiver
androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION
Services
dev.sora.protohax.relay.service.AppService
android.net.VpnService
dev.sora.libmitm.vpn.start
dev.sora.libmitm.vpn.stop
Android Permissions
ProtoMCHmdq_signed.apk
Permissions
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.QUERY_ALL_PACKAGES
android.permission.FOREGROUND_SERVICE_SPECIAL_USE
android.permission.POST_NOTIFICATIONS
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
GokuHax_com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
GokuHax_com.google.android.gms.permission.AD_ID
ProtoMCHmdq.v1.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSIONal