com.runner.ui.MainActivity
android.intent.action.MAIN
General
-
Target
17ef1a468a57dbbcd84e32df86509106e3065a82caa47a469cb3a694ce88c78c
-
Size
8.1MB
-
MD5
869ae17c011a213560c04e97e5b53a63
-
SHA1
6bcf1dd35db16be69a82a710cc8bacc752c1fe7f
-
SHA256
17ef1a468a57dbbcd84e32df86509106e3065a82caa47a469cb3a694ce88c78c
-
SHA512
409ec2d3a9c7b332408f391f7f722306aea4efb074d855ca1dd8d53690e22bd41c674837496ef354358ea66abbfd2eefd6c0f7c1bfa26528411a87956f42e5d8
-
SSDEEP
98304:xFLArj5Ejc7iKoNT/OdNRo/fx0tEL8pYxbwcBkvk23mIw8XepzLYr/JMmWuShwCn:R/TBGNk0GL8pKfBk7mIXrRZSmCKXTaCe
Score
10/10
Malware Config
Extracted
Family
bahamut
C2
https://r4dc3btbyzip0edkbykb1qteulwb.de/
Signatures
-
Bahamut family
-
Declares broadcast receivers with permission to handle system events 1 IoCs
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 2 IoCs
Files
-
17ef1a468a57dbbcd84e32df86509106e3065a82caa47a469cb3a694ce88c78c
com.runner.vc
com.runner.ui.MainActivity
-
vc.apk
com.custom.vcopy
com.custom.vcopy.Activities.MainActivity
Android Permissions
17ef1a468a57dbbcd84e32df86509106e3065a82caa47a469cb3a694ce88c78c
Permissions
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.REQUEST_DELETE_PACKAGES
android.permission.DELETE_PACKAGES