com.phosphated.bigler.iconoclastically
android.intent.action.MAIN
android.intent.action.VIEW
General
-
Target
d6cf5a3356359f59755b95c00394d3c41b992d1b52c5f25c6a8f759d9abdee08.bin
-
Size
3.9MB
-
MD5
72bad3bef6ee92412e4eda5cbfbc697e
-
SHA1
5fd49ffb15a64fc97557767fd82848432c36fb48
-
SHA256
d6cf5a3356359f59755b95c00394d3c41b992d1b52c5f25c6a8f759d9abdee08
-
SHA512
41e67b5b00e303d55ec0da960a8a96b2c1c6c1153805cdad12db8c703801fbe72b2a8c3415e2e9a4d233d24f4c0cf41e62908090bbe8213bf8a10b4632818330
-
SSDEEP
98304:GjtgxuG/UbOkN2uj1FDYZhk0mixcos+OF2ewCEPtqrXw46qa:GjtO3MNJDMkeSol02ewCIqM46qa
Score
10/10
Malware Config
Extracted
Family
godfather
C2
https://t.me/tumonokasiperake
Signatures
-
Godfather family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 1 IoCs
Files
-
d6cf5a3356359f59755b95c00394d3c41b992d1b52c5f25c6a8f759d9abdee08.bin
com.phosphated.bigler
com.phosphated.bigler.iconoclastically
Android Permissions
d6cf5a3356359f59755b95c00394d3c41b992d1b52c5f25c6a8f759d9abdee08.bin
Permissions
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WAKE_LOCK
android.permission.POST_NOTIFICATIONS
android.permission.QUERY_ALL_PACKAGES
com.phosphated.bigler.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION