Resubmissions

21-06-2024 00:30

240621-atq25stcpg 7

General

  • Target

    DonCP.apk

  • Size

    28.5MB

  • MD5

    f43de22b95409b38bbd453c9b5b5faeb

  • SHA1

    523e66110bd7fc0e6b4080e9db1d36553278abe8

  • SHA256

    f3abc39f34f77db6ee8b89352354b08a67c9fbb4f6da8a3974c9a3bee681366f

  • SHA512

    fae7a457e4b2cc8e686d08b6ec082282b8545cd9d462344e84df1ab492035c3872b137119860a5dc87ca6dc583c252cf837ddeaaa445ba6b455ab39afe8b701f

  • SSDEEP

    393216:p2OychkbRrvfJehigbytVUNLe/tu99lkNRPwMdB74mWDNGYW9hOimPM23a//aqg:UncYZfJeMVUhe/ATkbPb4nQHhaLang

Score
6/10

Malware Config

Signatures

  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • DonCP.apk
    .apk android arch:arm64 arch:arm arch:x86 arch:x64

    don.cp

    don.cp.preinicio


Android Permissions

DonCP.apk

Permissions

android.permission.FOREGROUND_SERVICE

android.permission.POST_NOTIFICATIONS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

android.permission.ACCESS_WIFI_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

don.cp.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION