Android remote#2024[.]zip

Resubmissions

07/05/2024, 20:50

240507-zmmtksfb7t 6

07/05/2024, 20:47

240507-zkvfmshg92 6

Sharing

Copy URL Twitter E-mail

General

Target

Android remote#2024.zip
Size

27.3MB
MD5

803243534246a1d28d4edb573ad50c86
SHA1

c16176ade0a98f5321222f01ffb744277f698b1c
SHA256

feed28bfa64ae85fa14309f19c86b2963d0f3b664694bf74111e5095a22e877a
SHA512

5c8785aa4374021130df4a1ae07b962c1a773ff05469f02283ccac9b4f2c91b938ccd8adabd38396250ef02a20421934cc6dd32b5f1c535328ed52dace6c7338
SSDEEP

786432:MjqtHO9S/HqJbVb1H6lyT6VPgfsdvKxaHWmLGGCnkB/E/OL:76SyJbV9Gym5GsdvWaZyhkqO

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by quick settings tile services to bind with the system. Allows apps to add custom tiles to the quick settings menu.	android.permission.BIND_QUICK_SETTINGS_TILE

Requests dangerous framework permissions 9 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application a broad access to external storage in scoped storage.	android.permission.MANAGE_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

Android remote#2024.zip
.zip

Password: CraxsRAT2025
Android remote#2024/Android remote#2024/Apk editor.apk
.apk android arch:arm64 arch:arm

Password: CraxsRAT2025

com.gmail.heagoo.apkeditor.pro

com.rull.mod.SplashActivity

Activities

com.rull.mod.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.SYSTEM_ALERT_WINDOW
android.permission.PACKAGE_USAGE_STATS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.MANAGE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_MULTICAST_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE

Receivers

com.willme.topactivity.NotificationActionReceiver

com.willme.topactivity.ACTION_NOTIFICATION_RECEIVER

Services

com.willme.topactivity.QuickSettingTileService

android.service.quicksettings.action.QS_TILE
Android remote#2024/Android remote#2024/CraxsRAT.jpg
.jpg

Password: CraxsRAT2025
Android remote#2024/Android remote#2024/Victim_1.0.apk
.apk android

Password: CraxsRAT2025

com.my.victim

.MainActivity

Activities

.MainActivity

android.intent.action.MAIN

Permissions

android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.VIBRATE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
huawei.permission.ACCESS_LOCATION_SERVICE
android.permission.LOCATION_HARDWARE
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_MEDIA_STORAGE
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.BROADCAST_SMS
android.permission.READ_CALL_LOG
android.permission.WRITE_CALL_LOG
android.permission.RECORD_AUDIO
android.permission.SET_WALLPAPER
android.permission.SET_WALLPAPER_COMPONENT
android.permission.READ_WALLPAPER_INTERNAL
android.permission.SET_WALLPAPER_HINTS
android.permission.BIND_WALLPAPER
android.permission.PACKAGE_USAGE_STATS
android.permission.RESTART_PACKAGES
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.INTERNAL_SYSTEM_WINDOW
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_SYSTEM_UPDATE_INFO
android.permission.SYSTEM_ALERT_WINDOW
android.permission.READ_CONTENT_RATING_SYSTEMS
com.huawei.permission.HUAWEI_SYSTEM_NODE_ACCESS
android.permission.HIDE_NON_SYSTEM_OVERLAY_WINDOWS
android.permission.ACCESS_CACHE_FILESYSTEM
android.permission.MOUNT_FORMAT_FILESYSTEMS
android.permission.WRITE_SETTINGS
android.permission.WRITE_SYNC_SETTINGS
android.permission.READ_SYNC_SETTINGS
android.permission.WRITE_APN_SETTINGS
android.permission.WRITE_SECURE_SETTINGS
android.permission.BIND_QUICK_SETTINGS_TILE
android.permission.BIND_SETTINGS_SUGGESTIONS_SERVICE
com.nttdocomo.android.offhostcontrol.BIND_SESETTINGS_SERVICES
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
com.huawei.wfd.permission.ACCESS_WIFI_DISPLAY_CASTING
com.huawei.wfd.permission.ACCESS_WIFI_DISPLAY_UIBC
android.permission.OVERRIDE_WIFI_CONFIG
android.permission.READ_WIFI_CREDENTIAL
com.huawei.permission.VOWIFI_WIFI_DETECT
huawei.permission.RECEIVE_WIFI_PRO_STATE
com.huawei.wifipro.permission.RECV.WIFI_HANDOVER
com.huawei.wifipro.permission.WIFI_SECURITY_CHECK
com.huawei.wifi.permission.WIFI_ANTSET
huawei.android.permission.WIFI_1101_P2P
com.huawei.wifi.permission.WIFI_APIPV4FIXED
huawei.android.permission.WIFI_DEVICE_DELAY_IDLE
android.permission.CHANGE_WIFI_MULTICAST_STATE
com.huawei.wifiplus.permission.RECV.BROWSER_AUTO_FILL
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_NOTIFICATIONS
android.permission.ACCESS_NOTIFICATION_POLICY
com.huawei.permission.ACTIVITY_NOTIFIER_PERMISSION
android.permission.BIND_NOTIFICATION_ASSISTANT_SERVICE
android.permission.BIND_NOTIFICATION_LISTENER_SERVICE
huawei.permission.IBINDER_NOTIFICATION_SERVICE
android.permission.NOTIFICATION_DURING_SETUP
android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME
android.permission.READ_SMS
android.permission.READ_CALL_LOG
android.permission.SEND_SMS

Receivers

.ArabWareSMS

android.provider.Telephony.SMS_RECEIVED

.AlarmReceiver

android.provider.Telephony.SMS_RECEIVED

Services

.NotificationService

android.service.notification.NotificationListenerService
Android remote#2024/Android remote#2024/iControl_1.0.apk
.apk android

Password: CraxsRAT2025

com.iControl

.MainActivity

Activities

.MainActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.VIBRATE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE

Services

Resubmissions

Sharing

General

Malware Config

Signatures

Files

Password: CraxsRAT2025

Password: CraxsRAT2025

com.gmail.heagoo.apkeditor.pro

com.rull.mod.SplashActivity

Activities

com.rull.mod.SplashActivity

Permissions

Receivers

com.willme.topactivity.NotificationActionReceiver

Services

com.willme.topactivity.QuickSettingTileService

Password: CraxsRAT2025

Password: CraxsRAT2025

com.my.victim

.MainActivity

Activities

.MainActivity

Permissions

Receivers

.ArabWareSMS

.AlarmReceiver

Services

.NotificationService

Password: CraxsRAT2025

com.iControl

.MainActivity

Activities

.MainActivity

Permissions

Services