com.inferiorly.bottlemaking.restab
android.intent.action.MAIN
android.intent.action.VIEW
General
-
Target
856e5326e78fafaa75bdbb550a680ad8e6eb88c67c477e09d6a45d9804eac7fa.bin
-
Size
3.7MB
-
MD5
3b8ce99f1c395ed9384fdd1d0b096104
-
SHA1
7a4132b21003b1cc3cdf5a306cf956df87e7c978
-
SHA256
856e5326e78fafaa75bdbb550a680ad8e6eb88c67c477e09d6a45d9804eac7fa
-
SHA512
2548564dea13bff2d57b833733a2e2ea26f140675425ee6b54dbcd889b59962fd82f035117efc710bc02debaef5d3cdd4900ba145185dcdbe0d95861ad6e624e
-
SSDEEP
98304:XC6kUn6DX8C+Smco1FnrDJexQ1z7qsWgYoOWz4:0UnQs4wXUxQz7qujOWM
Score
10/10
Malware Config
Extracted
Family
godfather
C2
https://t.me/intpravitokasero
Signatures
-
Godfather family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 1 IoCs
Files
-
856e5326e78fafaa75bdbb550a680ad8e6eb88c67c477e09d6a45d9804eac7fa.bin
com.inferiorly.bottlemaking
com.inferiorly.bottlemaking.restab
Android Permissions
856e5326e78fafaa75bdbb550a680ad8e6eb88c67c477e09d6a45d9804eac7fa.bin
Permissions
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WAKE_LOCK
android.permission.POST_NOTIFICATIONS
android.permission.QUERY_ALL_PACKAGES
com.inferiorly.bottlemaking.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION