240407-g1fcjsfc99_pw_infected[.]zip

General

Target

240407-g1fcjsfc99_pw_infected.zip
Size

81.0MB
MD5

15044d444c2076c95aee837b78cca3b1
SHA1

ce45c3bdf342735d1cd478e5d7bd297073ce0e82
SHA256

2147e201b27fb62ccb724cd6470e951d26c26b1a32d31272963866c2f90f6da6
SHA512

dac9dadfa9074de3d564746f75900035cb114441f5c2d61e292aa5bc92cfd6c79b7831279a3f74006f2b00688190e632561368ead0763bb978e4fad2e4ebaa7e
SSDEEP

1572864:kETP/NUGTs3DSAbRJu2c1NNRAgGGUoxd685ei2XfqAtkuKx2GTqK2JpVRxlY+HgX:pP6GTiJur1NKdId6YeiCqAt9gPqjxrYB

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

240407-g1fcjsfc99_pw_infected.zip
.zip

Password: infected
Palpedia_ Palworld Guide_1.3.3_apkcombo.com.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.alexfg.palpedia

com.alexfg.palpedia.MainActivity

Activities

com.alexfg.palpedia.MainActivity

android.intent.action.MAIN
android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE
com.google.android.gms.permission.AD_ID
android.permission.WAKE_LOCK
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_ADSERVICES_AD_ID
android.permission.ACCESS_ADSERVICES_ATTRIBUTION
android.permission.ACCESS_ADSERVICES_TOPICS
android.permission.FOREGROUND_SERVICE
com.alexfg.palpedia.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.work.diagnostics.REQUEST_DIAGNOSTICS

Services

Sharing

General

Malware Config

Signatures

Files

Password: infected

com.alexfg.palpedia

com.alexfg.palpedia.MainActivity

Activities

com.alexfg.palpedia.MainActivity

Permissions

Receivers

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.diagnostics.DiagnosticsReceiver

Services