General
-
Target
yssaas-release_109.apk
-
Size
10.1MB
-
Sample
240523-nthbwseg54
-
MD5
8d2b9ea4c6f1bac65373c09274aa3f5b
-
SHA1
9cbe1cdb6842e4ceeb854e6e17214c718c86db0d
-
SHA256
9862f572f9abb83731ce8fd93e271b9c47458e8cd0165ddbc9643d6fc28335c4
-
SHA512
59ed7926a5f094e583958b21009ed40ac5e3080d26d24ecdba0de8ac448b8bfe573bdb438efd21b64a167734ae7fb515b769c2e8b3bde6a0e2b7612ca48c7411
-
SSDEEP
196608:g76IrAT2WmcQXFh5dcABMNI6m/wXCJoFdLbd3yEldnRkh9xZR48VJQ9WoBS7ZytZ:g76I+0KNN+4XCJcdcEldnRkh9V48VJI3
Malware Config
Targets
-
-
Target
yssaas-release_109.apk
-
Size
10.1MB
-
MD5
8d2b9ea4c6f1bac65373c09274aa3f5b
-
SHA1
9cbe1cdb6842e4ceeb854e6e17214c718c86db0d
-
SHA256
9862f572f9abb83731ce8fd93e271b9c47458e8cd0165ddbc9643d6fc28335c4
-
SHA512
59ed7926a5f094e583958b21009ed40ac5e3080d26d24ecdba0de8ac448b8bfe573bdb438efd21b64a167734ae7fb515b769c2e8b3bde6a0e2b7612ca48c7411
-
SSDEEP
196608:g76IrAT2WmcQXFh5dcABMNI6m/wXCJoFdLbd3yEldnRkh9xZR48VJQ9WoBS7ZytZ:g76I+0KNN+4XCJcdcEldnRkh9V48VJI3
Score8/10-
Requests cell location
Uses Android APIs to to get current cell location.
-
Queries information about running processes on the device
Application may abuse the framework's APIs to collect information about running processes on the device.
-
Queries information about the current Wi-Fi connection
Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
-
Queries information about the current nearby Wi-Fi networks
Application may abuse the framework's APIs to collect information about the current nearby Wi-Fi networks.
-
Registers a broadcast receiver at runtime (usually for listening for system events)
-
Checks if the internet connection is available
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-
Listens for changes in the sensor environment (might be used to detect emulation)
-