com.elitf.MainActivity
android.intent.action.MAIN
com.elitf.UninstallAdminDevice
android.intent.action.SEND
General
-
Target
doc_2024-04-24_12-24-41.Internet-gratis.apk
-
Size
1.3MB
-
MD5
1c23f82afe3f2cbd9cad3f68db9f1e39
-
SHA1
82a08dd72883c2ebb94230954c736173355e2ccc
-
SHA256
ec821d63ec7d25ceb7b55f9a95ec961581ee018acab532c95770086b6bc8f559
-
SHA512
119d51318b40bc070cac92e213eecc0eba95997482855afcd5b2e1fc792bf79c283b0dc51fdd3a2491ed33945f33c8ae397d5dee63661bd41ca2f134a5930c81
-
SSDEEP
24576:3NPEuj3buqVW2mX5weUchO7K91Syf9UAZNKVdnTI9KXcOtGI8cCFtBSWGTuhTaSB:d9uGW2mX5wDkh6AZNKVdnTTcYApFfSWn
Score
10/10
Malware Config
Signatures
-
Wipelock Android payload 1 IoCs
Processes:
resource yara_rule sample family_wipelock -
Wipelock family
-
Declares broadcast receivers with permission to handle system events 1 IoCs
Processes:
description ioc Required by device admin receivers to bind with the system. Allows apps to manage device administration features. android.permission.BIND_DEVICE_ADMIN -
Requests dangerous framework permissions 8 IoCs
Processes:
description ioc Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE Allows an application to receive SMS messages. android.permission.RECEIVE_SMS Allows an application to send SMS messages. android.permission.SEND_SMS Allows an application to read SMS messages. android.permission.READ_SMS Allows an application to read the user's contacts data. android.permission.READ_CONTACTS Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows an application to read or write the system settings. android.permission.WRITE_SETTINGS
Files
-
doc_2024-04-24_12-24-41.Internet-gratis.apk.apk android
com.elitf
com.elitf.MainActivity
Activities
Permissions
android.permission.GET_TASKS
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.READ_CONTACTS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_SETTINGS
android.permission.WAKE_LOCK
Receivers
com.elitf.AdminReciever
android.app.action.DEVICE_ADMIN_ENABLED
com.elitf.SMSReceiver
android.provider.Telephony.SMS_RECEIVED
com.elitf.BootReceiver
android.intent.action.BOOT_COMPLETED
Services
Android Permissions
doc_2024-04-24_12-24-41.Internet-gratis.apk
Permissions
android.permission.GET_TASKS
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.READ_CONTACTS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_SETTINGS
android.permission.WAKE_LOCK