df65a40ab6c479f5e894d592af6762047fc96cbc285faf37525a2197ab9e0601[.]bin

General

Target

df65a40ab6c479f5e894d592af6762047fc96cbc285faf37525a2197ab9e0601.bin
Size

2.5MB
MD5

e097b9b0c5f44daf0a8dbe69d4f3dd9d
SHA1

e69bfdd08c855a0e09a70bc3a3011654f17b79dc
SHA256

df65a40ab6c479f5e894d592af6762047fc96cbc285faf37525a2197ab9e0601
SHA512

ecb9319c87ceb665ceeee352bedc1c0ace999cff1ca8e91f95c2d6d033f3eb4173e42c9f42d2b77251e566f0b5c2d1971a895466d694588078c00024278e9969
SSDEEP

49152:tKjY6gk9aIEWogdwHlPvBBcM8hbUI/kEOAp6FqtjJDFFyG8UQOCz:4jbgoEWogeHlPvBJKbxOAgFqtjdrV8ht

Score

6^/10

Malware Config

Signatures

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS

Files

df65a40ab6c479f5e894d592af6762047fc96cbc285faf37525a2197ab9e0601.bin
.apk android arch:arm64

orgee.moner.kr

com.yuxi.info.activity.SplashActivity

Activities

com.yuxi.info.activity.SplashActivity

android.intent.action.MAIN

com.yuxi.info.activity.AdminActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.QUERY_ALL_PACKAGES
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.POST_NOTIFICATIONS
android.permission.ACCESS_NOTIFICATION_POLICY
android.permission.FOREGROUND_SERVICE_MEDIA_PLAYBACK
android.permission.BIND_DEVICE_ADMIN

Receivers

com.yuxi.info.receiver.MainReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.REBOOT
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_RESTARTED

com.yuxi.info.receiver.AlarmReceiver

android.intent.action.MAIN

com.yuxi.info.receiver.SmsReceiver

android.provider.Telephony.SMS_DELIVER
android.provider.Telephony.SMS_RECEIVED

com.yuxi.info.receiver.MyDeviceAdminReceiver

android.app.action.DEVICE_ADMIN_ENABLED
android.app.action.DEVICE_ADMIN_DISABLE_REQUESTED
android.app.action.DEVICE_ADMIN_DISABLED

Services

Android Permissions

df65a40ab6c479f5e894d592af6762047fc96cbc285faf37525a2197ab9e0601.bin

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.QUERY_ALL_PACKAGES

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.POST_NOTIFICATIONS

android.permission.ACCESS_NOTIFICATION_POLICY

android.permission.FOREGROUND_SERVICE_MEDIA_PLAYBACK

android.permission.BIND_DEVICE_ADMIN

Sharing

General

Malware Config

Signatures

Files

orgee.moner.kr

com.yuxi.info.activity.SplashActivity

Activities

com.yuxi.info.activity.SplashActivity

com.yuxi.info.activity.AdminActivity

Permissions

Receivers

com.yuxi.info.receiver.MainReceiver

com.yuxi.info.receiver.AlarmReceiver

com.yuxi.info.receiver.SmsReceiver

com.yuxi.info.receiver.MyDeviceAdminReceiver

Services

Android Permissions

df65a40ab6c479f5e894d592af6762047fc96cbc285faf37525a2197ab9e0601.bin