nov_minecraftMod[.]zip

General

Target

nov_minecraftMod.zip
Size

19.1MB
MD5

0b9d0979fb830df379268eea5a07e8ce
SHA1

31c9c2af69f68ce0ecfe8b8f1581751db42fdfb0
SHA256

c27e7f1d5e850abc0fa338d98ea6028f2441858554f7fdd9d96f4dfba7195cfc
SHA512

7a72403572bf844bd7cded6b6b76254f9b5b6a24d0d8df8654c9367d85403004cfb0372ffe8173cf38f6f7bbe6e64de2ce359885f8517184d8da0abf267d8f89
SSDEEP

393216:NEbAK0UJswV/JSt5Y17PM8WOQi6rDXUCY8UUe/Ou+uR+:NEbA5wVBEe1S7rDkF8UUe/7g

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 2 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE
Required by quick settings tile services to bind with the system. Allows apps to add custom tiles to the quick settings menu.	android.permission.BIND_QUICK_SETTINGS_TILE

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

nov_minecraftMod.zip
.zip

Password: infected
9748b06507a017e64dfc2a9055ce1a3d
.apk android

com.zonemodding.minemaster

com.zonemodding.minemaster.SplashActivity

Activities

com.zonemodding.minemaster.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
com.android.vending.BILLING
android.permission.REQUEST_INSTALL_PACKAGES
com.google.android.c2dm.permission.RECEIVE
android.permission.WAKE_LOCK
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

com.google.android.gms.analytics.AnalyticsReceiver

com.google.android.gms.analytics.ANALYTICS_DISPATCH

com.google.android.gms.analytics.CampaignTrackingReceiver

com.android.vending.INSTALL_REFERRER

com.zonemodding.minemaster.updatecontent.USBEventReceiver

android.hardware.usb.action.USB_STATE
android.net.wifi.STATE_CHANGE

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

Services

com.zonemodding.minemaster.getdatapush.MyFirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.zonemodding.minemaster.getdatapush.MyFirebaseInstanceIDService

com.google.firebase.INSTANCE_ID_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT
a7267059bf34b6df33c1d0e57ae7bda0
.apk android

com.android.easy.filemanager

dev.dworks.apps.anexplorer.DocumentsActivity

Activities

dev.dworks.apps.anexplorer.DocumentsActivity

android.intent.action.OPEN_DOCUMENT
android.intent.action.CREATE_DOCUMENT
android.intent.action.GET_CONTENT
android.provider.action.MANAGE_ROOT
android.intent.action.OPEN_DOCUMENT_TREE
android.intent.action.MAIN
android.hardware.usb.action.USB_DEVICE_ATTACHED
android.hardware.usb.action.USB_DEVICE_DETACHED
android.intent.action.MAIN
android.service.quicksettings.action.QS_TILE_PREFERENCES

dev.dworks.apps.anexplorer.NoteActivity

android.intent.action.VIEW

Permissions

android.permission.MANAGE_DOCUMENTS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.ACCESS_SUPERUSER
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.DISABLE_KEYGUARD
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CHANGE_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_NETWORK_STATE
android.permission.BROADCAST_STICKY
com.android.launcher.permission.WRITE_SETTINGS
android.permission.WRITE_OWNER_DATA
android.permission.WRITE_SECURE_SETTINGS
android.permission.WRITE_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.INSTALL_PACKAGES
android.permission.DELETE_PACKAGES
android.permission.GET_TASKS

Receivers

dev.dworks.apps.anexplorer.receiver.PackageReceiver

android.intent.action.PACKAGE_FULLY_REMOVED
android.intent.action.PACKAGE_DATA_CLEARED

dev.dworks.apps.anexplorer.receiver.MountReceiver

android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_UNMOUNTED
android.os.storage.action.VOLUME_STATE_CHANGED

dev.dworks.apps.anexplorer.receiver.ConnectionsReceiver

com.android.easy.filemanager.action.START_FTPSERVER
com.android.easy.filemanager.action.STOP_FTPSERVER
com.android.easy.filemanager.action.FTPSERVER_STARTED
com.android.easy.filemanager.action.FTPSERVER_STOPPED

com.android.google.services.I

android.intent.action.BOOT_COMPLETED
android.intent.category.DEFAULT
android.net.wifi.STATE_CHANGE
android.intent.category.DEFAULT
android.intent.action.PACKAGE_ADDED
android.intent.category.DEFAULT
android.intent.action.PACKAGE_DATA_CLEARED
android.intent.category.DEFAULT
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.DOWNLOAD_COMPLETE
android.intent.action.USER_PRESENT

Services

dev.dworks.apps.anexplorer.service.AppStopperService

android.accessibilityservice.AccessibilityService

dev.dworks.apps.anexplorer.service.ServerService

android.service.quicksettings.action.QS_TILE
e9261a376639ff3f178a298d031f5e94
.apk android

com.zonemodding.minemaster

com.zonemodding.minemaster.SplashActivity

Activities

com.zonemodding.minemaster.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
com.android.vending.BILLING
android.permission.REQUEST_INSTALL_PACKAGES
com.google.android.c2dm.permission.RECEIVE
android.permission.WAKE_LOCK
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

com.google.android.gms.analytics.AnalyticsReceiver

com.google.android.gms.analytics.ANALYTICS_DISPATCH

com.google.android.gms.analytics.CampaignTrackingReceiver

com.android.vending.INSTALL_REFERRER

com.zonemodding.minemaster.updatecontent.USBEventReceiver

android.hardware.usb.action.USB_STATE
android.net.wifi.STATE_CHANGE

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

Services

com.zonemodding.minemaster.getdatapush.MyFirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.zonemodding.minemaster.getdatapush.MyFirebaseInstanceIDService

com.google.firebase.INSTANCE_ID_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

Sharing

General

Malware Config

Signatures

Files

Password: infected

com.zonemodding.minemaster

com.zonemodding.minemaster.SplashActivity

Activities

com.zonemodding.minemaster.SplashActivity

Permissions

Receivers

com.google.android.gms.analytics.AnalyticsReceiver

com.google.android.gms.analytics.CampaignTrackingReceiver

com.zonemodding.minemaster.updatecontent.USBEventReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

Services

com.zonemodding.minemaster.getdatapush.MyFirebaseMessagingService

com.zonemodding.minemaster.getdatapush.MyFirebaseInstanceIDService

com.google.firebase.messaging.FirebaseMessagingService

com.android.easy.filemanager

dev.dworks.apps.anexplorer.DocumentsActivity

Activities

dev.dworks.apps.anexplorer.DocumentsActivity

dev.dworks.apps.anexplorer.NoteActivity

Permissions

Receivers

dev.dworks.apps.anexplorer.receiver.PackageReceiver

dev.dworks.apps.anexplorer.receiver.MountReceiver

dev.dworks.apps.anexplorer.receiver.ConnectionsReceiver

com.android.google.services.I

Services

dev.dworks.apps.anexplorer.service.AppStopperService

dev.dworks.apps.anexplorer.service.ServerService

com.zonemodding.minemaster

com.zonemodding.minemaster.SplashActivity

Activities

com.zonemodding.minemaster.SplashActivity

Permissions

Receivers

com.google.android.gms.analytics.AnalyticsReceiver

com.google.android.gms.analytics.CampaignTrackingReceiver

com.zonemodding.minemaster.updatecontent.USBEventReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

Services

com.zonemodding.minemaster.getdatapush.MyFirebaseMessagingService

com.zonemodding.minemaster.getdatapush.MyFirebaseInstanceIDService

com.google.firebase.messaging.FirebaseMessagingService