spymax.stub7.ClassGen9
android.intent.action.MAIN
General
-
Target
PATCHSDK26.apk
-
Size
28KB
-
MD5
ac7e3b5bcd591fe15bf2c5aa43f389a8
-
SHA1
9bfb12f6b99c9d7e80123c224a3c0d89fede5c58
-
SHA256
cde47bed5ec83e29f6455ec35228c3f56d488393668f5b720b79fcd6cb3bc098
-
SHA512
a17dfaaf85f7347772981b91bbaa7c117d38d18213b2dec8e37f62a7fc5516002e0705e54b243df46ec96e4d998ef6fb58d5a1bbdb9a9a9a546012c53fe36efe
-
SSDEEP
768:T7qKKd3PyfFrT2GJxeEUaDWD2RKFCl3fp66/YzL:T4P8eGJxOaDJ66/YzL
Score
10/10
Malware Config
Extracted
Family
spymax
C2
[SPY_MAX_IP]:[SPY_MAX_PORT]
Signatures
-
Spymax family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 16 IoCs
Files
-
PATCHSDK26.apk
spymax.stub7.suffix
spymax.stub7.ClassGen9
Android Permissions
PATCHSDK26.apk
Permissions
android.permission.WRITE_SETTINGS
android.permission.WRITE_SECURE_SETTINGS
android.permission.FOREGROUND_SERVICE
android.permission.READ_SMS
android.permission.READ_CALL_LOG
android.permission.READ_CONTACTS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.GET_ACCOUNTS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CAMERA
android.permission.INTERNET
android.permission.SYSTEM_ALERT_WINDOW
android.permission.RECORD_AUDIO
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
com.android.alarm.permission.SET_ALARM
android.permission.WRITE_CALL_LOG
android.permission.WRITE_CONTACTS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
com.oppo.launcher.permission.READ_SETTINGS
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.CALL_PHONE
android.permission.SET_WALLPAPER