General
-
Target
sabketoplus.apk
-
Size
10.4MB
-
Sample
240522-pb1k7ahb6v
-
MD5
54a82d5a3f22cafa498774c6b0354632
-
SHA1
6a66a9b51b32811f25b06c1541d68f92c4730aaf
-
SHA256
c3853bd37231e3a57d9c3c976ca18bbd773d4d82191758ad588a056d76c4d252
-
SHA512
5d5ad3b8c8d3d1408e42bebb309b06733684dfd85157fa42794f3390d46ce70f4ad7a63bb6df312783094dc5835c1241e4422db12cae2b8c0324448ad4631e66
-
SSDEEP
196608:PvCCzrVPPHuyp0rl8OR2vm23/lOaFgFD9o+KVRomOHB4IIt44oHjdc7YxoQHA3G:3ZlOt58y2vm291gZ9bKkmOH2I/diYxt5
Malware Config
Targets
-
-
Target
sabketoplus.apk
-
Size
10.4MB
-
MD5
54a82d5a3f22cafa498774c6b0354632
-
SHA1
6a66a9b51b32811f25b06c1541d68f92c4730aaf
-
SHA256
c3853bd37231e3a57d9c3c976ca18bbd773d4d82191758ad588a056d76c4d252
-
SHA512
5d5ad3b8c8d3d1408e42bebb309b06733684dfd85157fa42794f3390d46ce70f4ad7a63bb6df312783094dc5835c1241e4422db12cae2b8c0324448ad4631e66
-
SSDEEP
196608:PvCCzrVPPHuyp0rl8OR2vm23/lOaFgFD9o+KVRomOHB4IIt44oHjdc7YxoQHA3G:3ZlOt58y2vm291gZ9bKkmOH2I/diYxt5
Score8/10-
Queries a list of all the installed applications on the device (Might be used in an attempt to overlay legitimate apps)
-
Checks memory information
Checks memory information which indicate if the system is an emulator.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries the phone number (MSISDN for GSM devices)
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Acquires the wake lock
-
Checks if the internet connection is available
-
Reads information about phone network operator.
-