com.photo.androida.MainActivity
android.intent.action.MAIN
Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
ed3aa8e58d65c81df2f18e970456225b7c2b78e4add4dea556298a915b8fef1a
-
Size
346KB
-
MD5
cf3ed93ddff7bc0b1fe401c14f2ecb91
-
SHA1
c729efaae21b9404b527b9cdd0b32eb3c224cf71
-
SHA256
ed3aa8e58d65c81df2f18e970456225b7c2b78e4add4dea556298a915b8fef1a
-
SHA512
e6db9ef58ce0b4c945dd805fee4a0e796c631908ccb4c5f440e81be99a92fe052c3e134956d98d0c1394e3d8ccd1ea7c976d0b1e8a472139221e09d172ac4ab5
-
SSDEEP
6144:jV+AXP1tBNYzDGH/Fzez5rO+X/JzXPRYILk2q3wXqZ0IiSPqDBwBctsIvU9Ej:xBH/FzU5i+X/ZBLk2DXqCaqDBsoXUM
Score
10/10
Malware Config
Extracted
Family
mobileorder
C2
fly100.dellgod.net
Signatures
-
Mobileorder family
-
Declares broadcast receivers with permission to handle system events 1 IoCs
-
Requests dangerous framework permissions 11 IoCs
Files
-
ed3aa8e58d65c81df2f18e970456225b7c2b78e4add4dea556298a915b8fef1a
com.photo.android
com.photo.androida.MainActivity
Android Permissions
ed3aa8e58d65c81df2f18e970456225b7c2b78e4add4dea556298a915b8fef1a
Permissions
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.PROCESS_OUTGOING_CALLS
android.intent.action.NEW_OUTGOING_CALL
android.permission.READ_CONTACTS
android.permission.READ_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_LOGS
android.permission.READ_CALL_LOG
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.RECORD_AUDIO
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.GET_ACCOUNTS
android.permission.MANAGE_ACCOUNTS
android.permission.READ_LOGS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.CAMERA
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_CONFIGURATION
com.android.browser.permission.READ_HISTORY_BOOKMARKS