Overview

overview

8

Static

static

6

shadowsock....7.apk

android-9-x86

8

shadowsock....7.apk

android-10-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    shadowsocks--universal-4.8.7.apk

  • Size

    5.4MB

  • MD5

    a52724759f70ad5c62ce284c136139d5

  • SHA1

    249747b674d5b33d94629e35d9b012a63e3a8d8c

  • SHA256

    ca527d0a6c31782bdfc73aa32e46d9f241087bee5bd9b9164248ecd6cc56255f

  • SHA512

    8cde58a6edacf0ce0cfc4bc2242c6b95a2a13980fb7efb2a7ef23ea702508169990a63a6ee3736afe83d2ffd2c6d7cbc38ef82ecfb8f63a0f6d7e0ee43ddae11

  • SSDEEP

    98304:ZQSKS9+bQrPKcmSBd3eXu2cuiv89C2G04+eYROp2maik9pr5b:ZZbKcm+83cuiIC2GFbUOp2malR

Score
6/10

Malware Config

Signatures

  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • shadowsocks--universal-4.8.7.apk
    .apk android arch:arm64 arch:arm arch:x86 arch:x64

    com.github.shadowsocks

    com.github.shadowsocks.MainActivity


Android Permissions

shadowsocks--universal-4.8.7.apk

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.FOREGROUND_SERVICE

android.permission.INTERNET

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.CAMERA

com.google.android.c2dm.permission.RECEIVE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE