Resubmissions

24-04-2024 16:50

240424-vb78xsdd83 10

General

  • Target

    MUNDOLATINO_9.8.zip

  • Size

    10.1MB

  • MD5

    8b6621a29bbcb69c3318c18d781ce5e9

  • SHA1

    7e82dbe6ce37e54e2cc34d57827f01b5c081d4ce

  • SHA256

    f78d82b2415db2e11c060f35651176cbc04289d8e5fadcfa3af032c0c2e7def8

  • SHA512

    23c78b5f0477d892f25c18171e5ac9c4129aad1650230dc5940ef30aa13e5cffbbcc1c54fd4a966abadae5a1044ac62302424d12ea9a94758dd9d7d77f8b8c5c

  • SSDEEP

    196608:19kYd7pyOZVDutq54+TsDZnxLclh/281hGAmoSr/eersYyu5ZDBEGUpg:fk47E4pR5ri1ah/vHvK/frss

Score
10/10

Malware Config

Signatures

  • Android SMSWorm payload 1 IoCs
  • Smsworm family
  • Declares services with permission to bind to the system 1 IoCs

Files

  • MUNDOLATINO_9.8.zip
    .apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

    mundolatino.apliblm

    mundolatino.apliblm.preinicio


Android Permissions

MUNDOLATINO_9.8.zip

Permissions

android.permission.FOREGROUND_SERVICE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.ACCESS_WIFI_STATE

android.permission.RECEIVE_BOOT_COMPLETED