General

  • Target

    08640338e290bc92467c94559633f427bf1d2b097bb047858e53c356fb07cbf8

  • Size

    3.9MB

  • MD5

    5aa544b5c1432710b80aa315beef5b7d

  • SHA1

    792d20c8cc99ab8e1cf4d4bcba22131b2b76905d

  • SHA256

    08640338e290bc92467c94559633f427bf1d2b097bb047858e53c356fb07cbf8

  • SHA512

    0a7bc2a05fed4ac78c9d2c1927fe9ee979e8c5abfcf2b2dc13847a2a25ae21cc633ccaecf4c4c32d298a816a70bb4186eea3bd8103d0d98761599f0168b6c99b

  • SSDEEP

    98304:tGsyBjMeUyjyVWkmuwgQBOd1azSs11JEjajXag6afrVf:tPyBDnyVkgZ1+Ss2++o

Score
10/10

Malware Config

Signatures

  • SideWinder payload 1 IoCs
  • Sidewinder family
  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 8 IoCs

Files

  • 08640338e290bc92467c94559633f427bf1d2b097bb047858e53c356fb07cbf8
    .apk android

    com.securedata.vpn

    com.securedata.vpn.view.MainActivity


Android Permissions

08640338e290bc92467c94559633f427bf1d2b097bb047858e53c356fb07cbf8

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.FOREGROUND_SERVICE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_MEDIA_STORAGE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_CONTACTS

android.permission.GET_ACCOUNTS

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE