General
-
Target
фотоальбом Вики.apk
-
Size
6.4MB
-
Sample
240616-p1w93axgnn
-
MD5
2e5ca68fd0cd78dfc1ff26263d06e22d
-
SHA1
44e68ddbf5d3975e5e6e7e315aaa7ada5e753d3d
-
SHA256
e04216d36b569458abdecbf86fd5e0219b7ad3fbc2f183d06ca7b295659f9cb6
-
SHA512
116a64b124bfbf724173329f0b87cbe36c220af33bafa14b41372a6ac5eec4853b5e5fc6b4988c502729d60efd5d4de9d39ebcbc722bb4558e79e22d005ffd48
-
SSDEEP
98304:q6RScOVXKYJl4ZCLeHErQfvPQnof6wzx7EX8uGlQvsBWL5wJatAxG3K/vwaBh:FKZykrQ3PaAxQXHGmvnLyAGh/vwaT
Malware Config
Targets
-
-
Target
фотоальбом Вики.apk
-
Size
6.4MB
-
MD5
2e5ca68fd0cd78dfc1ff26263d06e22d
-
SHA1
44e68ddbf5d3975e5e6e7e315aaa7ada5e753d3d
-
SHA256
e04216d36b569458abdecbf86fd5e0219b7ad3fbc2f183d06ca7b295659f9cb6
-
SHA512
116a64b124bfbf724173329f0b87cbe36c220af33bafa14b41372a6ac5eec4853b5e5fc6b4988c502729d60efd5d4de9d39ebcbc722bb4558e79e22d005ffd48
-
SSDEEP
98304:q6RScOVXKYJl4ZCLeHErQfvPQnof6wzx7EX8uGlQvsBWL5wJatAxG3K/vwaBh:FKZykrQ3PaAxQXHGmvnLyAGh/vwaT
Score10/10-
smsagent
SmsAgent is an Android malware that targets victim SMS messages using Telegram as its C2.
-
Checks if the Android device is rooted.
-
Obtains sensitive information copied to the device clipboard
Application may abuse the framework's APIs to obtain sensitive information copied to the device clipboard.
-
Reads the content of SMS inbox messages.
-
Acquires the wake lock
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Queries the mobile country code (MCC)
-