05b0ae4fd60229d46fecb29c16dd13179725d41d74d7be421369d50795f37875[.]zip

General

Target

05b0ae4fd60229d46fecb29c16dd13179725d41d74d7be421369d50795f37875.zip
Size

706KB
MD5

9956fdc62639a5b3fadee395d5836660
SHA1

2751e2bc1d6b3cb6f50b068b11251cee495b7615
SHA256

05b0ae4fd60229d46fecb29c16dd13179725d41d74d7be421369d50795f37875
SHA512

43af672a25afeffad896882260ec10368774e39d9edfaee3ed66b7bf70e4c2c909b3ff47c4b92542e4b8707d6d28652f8a5f9fb783236575a53f2023d04c90e0
SSDEEP

12288:WwAjMgVJSmrQen9/4aRkhN3vZzY/8QqHY/EtegJ:BP0JSsxPKQ/Eko

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

05b0ae4fd60229d46fecb29c16dd13179725d41d74d7be421369d50795f37875.zip
.apk android

Password: infected

com.android.music

com.android.music.MusicBrowserActivity

Activities

com.android.music.MusicBrowserActivity

android.intent.action.MAIN
android.intent.action.MUSIC_PLAYER

com.android.music.MediaPlaybackActivity

android.intent.action.VIEW
com.android.music.PLAYBACK_VIEWER

AudioPreviewStarter

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.android.music.ArtistAlbumBrowserActivity

android.intent.action.PICK

com.android.music.AlbumBrowserActivity

android.intent.action.PICK

com.android.music.NowPlayingActivity

android.intent.action.PICK

com.android.music.TrackBrowserActivity

android.intent.action.EDIT
android.intent.action.PICK

com.android.music.QueryBrowserActivity

android.intent.action.SEARCH
android.intent.action.MEDIA_SEARCH

com.android.music.PlaylistBrowserActivity

android.intent.action.PICK
android.intent.action.VIEW

com.android.music.VideoBrowserActivity

android.intent.action.PICK

com.android.music.MusicPicker

android.intent.action.GET_CONTENT
android.intent.action.PICK

Permissions

android.permission.WRITE_SETTINGS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_MEDIA_STORAGE
android.permission.BROADCAST_STICKY
android.permission.STATUS_BAR
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.EXPAND_STATUS_BAR
android.permission.ACCESS_NETWORK_STATE
android.permission.STOP_APP_SWITCHES
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.NFC
android.permission.HOTKNOT
android.permission.INTERACT_ACROSS_USERS_FULL

Receivers

com.android.music.MediaButtonIntentReceiver

android.intent.action.MEDIA_BUTTON

com.android.music.MediaAppWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE

com.android.music.MediaAppWidgetProvider$PackageDataClearedReceiver

com.mediatek.intent.action.SETTINGS_PACKAGE_DATA_CLEARED

Services

com.android.music.MediaPlaybackService

com.mediatek.bluetooth.avrcp.IBTAvrcpMusic
com.android.music.MediaPlaybackService

Android Permissions

05b0ae4fd60229d46fecb29c16dd13179725d41d74d7be421369d50795f37875.zip

Permissions

android.permission.WRITE_SETTINGS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_MEDIA_STORAGE

android.permission.BROADCAST_STICKY

android.permission.STATUS_BAR

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.EXPAND_STATUS_BAR

android.permission.ACCESS_NETWORK_STATE

android.permission.STOP_APP_SWITCHES

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.NFC

android.permission.HOTKNOT

android.permission.INTERACT_ACROSS_USERS_FULL

Sharing

General

Malware Config

Signatures

Files

Password: infected

com.android.music

com.android.music.MusicBrowserActivity

Activities

com.android.music.MusicBrowserActivity

com.android.music.MediaPlaybackActivity

AudioPreviewStarter

com.android.music.ArtistAlbumBrowserActivity

com.android.music.AlbumBrowserActivity

com.android.music.NowPlayingActivity

com.android.music.TrackBrowserActivity

com.android.music.QueryBrowserActivity

com.android.music.PlaylistBrowserActivity

com.android.music.VideoBrowserActivity

com.android.music.MusicPicker

Permissions

Receivers

com.android.music.MediaButtonIntentReceiver

com.android.music.MediaAppWidgetProvider

com.android.music.MediaAppWidgetProvider$PackageDataClearedReceiver

Services

com.android.music.MediaPlaybackService

Android Permissions

05b0ae4fd60229d46fecb29c16dd13179725d41d74d7be421369d50795f37875.zip