slocker | 200d8f98c326fc65f3a11dc5ff1951051c12991cc0996273eeb9b71b27bc294d[.]zip

General

Target

200d8f98c326fc65f3a11dc5ff1951051c12991cc0996273eeb9b71b27bc294d.zip
Size

1.6MB
MD5

49c246f364821e07b2d99570bd15f78e
SHA1

5a78c6b912731c0a6ff258c0e2241be9ed03fabd
SHA256

bf19dcc553e2f6d414e60c688cde1a211ba2cbff1681a28c1a29c693e4eaf7c3
SHA512

abcefca40c9144e42e714d3a0ecc00285019a7763c43755e74a116d10d225c887553b9ca7d30605520265d475b12a0507e92f76e3c7e3d98bd8c9b52ed7341bf
SSDEEP

24576:GqCSdzbaqpPXxBAkbLXx4Kj7v/nlsKlgLgdfGmnqs3rCIoZZGxxS1qYY:wSZEseKnfllmLgdj53rCm/zz

Score

10^/10

slocker

SLocker payload 1 IoCs

Processes:

resource	yara_rule
static1/unpack001/200d8f98c326fc65f3a11dc5ff1951051c12991cc0996273eeb9b71b27bc294d.apk	family_slocker_2

Requests dangerous framework permissions 3 IoCs

Processes:

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

200d8f98c326fc65f3a11dc5ff1951051c12991cc0996273eeb9b71b27bc294d.zip
.zip

Password: infected
200d8f98c326fc65f3a11dc5ff1951051c12991cc0996273eeb9b71b27bc294d.apk
.apk android

Password: infected

com.android.tencent.zdevs.bah

com.android.tencent.zdevs.bah.MainActivity

Activities

com.android.tencent.zdevs.bah.MainActivity

android.intent.action.MAIN

Permissions

android.permission.SET_WALLPAPER
android.permission.ACCESS_WIFI_STATE
android.permission.READ_LOGS
android.permission.READ_PHONE_STATE
android.permission.GET_TASKS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
com.android.launcher.permission.READ_SETTINGS
android.permission.WAKE_LOCK
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_CONFIGURATION
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_EXTERNAL_STORAGE
android.permission.MODIFY_AUDIO_SETTINGS