com.signallab.thunder.activity.SplashActivity
android.intent.action.MAIN
com.signallab.thunder.activity.MainActivity
android.intent.action.VIEW
General
-
Target
thunder-vpn-5-2-5.apk
-
Size
6.0MB
-
MD5
20c088b5bbb46bca2ff503a12ca45425
-
SHA1
a2841360ffdb0ee75d09c09ab5215d8f3158ac95
-
SHA256
fc0c4740929afb409b354d3a1f8aface311412fc685f656055121d758c8c4c40
-
SHA512
80b99a103665fa959092a85ece9ba53d878eeb0c26d6114152043f24f19272d24d09d18d1374bdc98486245dc13649de50b2ed8235fd446e571a81eea90e8c47
-
SSDEEP
98304:CjwJLRaAOTU0zV7AF7sRdYro3A5/O1TJ/U/gWvS0L2HPkrrxDyfraQzzRrf:CjkgdVFmydY7EVBU/gx0qqFx0Frf
Score
6/10
Malware Config
Signatures
-
Declares services with permission to bind to the system 2 IoCs
-
Requests dangerous framework permissions 1 IoCs
Files
-
thunder-vpn-5-2-5.apk
Password: infected
com.fast.free.unblock.thunder.vpn
com.signallab.thunder.activity.SplashActivity
Android Permissions
thunder-vpn-5-2-5.apk
Permissions
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.POST_NOTIFICATIONS
android.permission.ACCESS_WIFI_STATE
com.android.vending.BILLING
com.google.android.gms.permission.AD_ID
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.QUERY_ALL_PACKAGES
android.permission.ACCESS_ADSERVICES_AD_ID
android.permission.ACCESS_ADSERVICES_ATTRIBUTION
android.permission.ACCESS_ADSERVICES_TOPICS
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.FOREGROUND_SERVICE
com.fast.free.unblock.thunder.vpn.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION