Overview

overview

10

Static

static

10

08fdd20124...54.apk

android-9-x86

10

08fdd20124...54.apk

android-10-x64

8

08fdd20124...54.apk

android-11-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    08fdd2012458963957c02b79855de0a569d315ad5549993175dd7a892815e654.bin

  • Size

    1.1MB

  • MD5

    e94de6b1d43968174b07973e1a5a4b48

  • SHA1

    f87c07b6bae8577b957a79e4532891e9fdaf75c8

  • SHA256

    08fdd2012458963957c02b79855de0a569d315ad5549993175dd7a892815e654

  • SHA512

    3166938b629b95c500e7a5bed4718e84269d27f3475389c129c6bdf12771b2be2447bb21bf170a7afe8fcc61015462be9df9e1fbc2d467aa0ce5feeef71c69ab

  • SSDEEP

    24576:qtyKsNGt2Kn3rMG/5giAjHBztt3Ioj6jbg/33cnC:qtvs8cc//BwiDjbg/gC

Score
10/10
ermachook

Malware Config

Signatures

  • Ermac family
    ermac
  • Ermac2 payload 1 IoCs
  • Hook family
    hook
  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 15 IoCs

Files

  • 08fdd2012458963957c02b79855de0a569d315ad5549993175dd7a892815e654.bin
    .apk android

    com.gekuwigeciyo.cigu

    com.gekuwigeciyo.cigu.rewoti


Android Permissions

08fdd2012458963957c02b79855de0a569d315ad5549993175dd7a892815e654.bin

Permissions

android.permission.CAMERA

android.permission.FOREGROUND_SERVICE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.READ_PHONE_STATE

android.permission.READ_PHONE_NUMBERS

android.permission.READ_CALL_LOG

android.permission.CALL_PHONE

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.GET_ACCOUNTS

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACTION_MANAGE_OVERLAY_PERMISSION

android.permission.SYSTEM_ALERT_WINDOW

android.permission.DISABLE_KEYGUARD

android.permission.GET_TASKS

android.permission.QUERY_ALL_PACKAGES

android.permission.GET_CLIPS

android.permission.READ_CLIPS

android.permission.WRITE_CLIPS

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.REQUEST_DELETE_PACKAGES

android.permission.RECEIVE_LAUNCH_BROADCASTS

android.permission.QUICKBOOT_POWERON