com.palpacle.disfavorer.yolkless
android.intent.action.MAIN
android.intent.action.VIEW
General
-
Target
cc5235faae1b319d1ff1f9eae5f22827f4b43cf89a2a5747f420df99cf7dbe90.bin
-
Size
3.9MB
-
MD5
cf9d2e1299ae11006cc68edf1f3022e7
-
SHA1
0c3188a437f186afa4ce6c33f94b04b57a5ca617
-
SHA256
cc5235faae1b319d1ff1f9eae5f22827f4b43cf89a2a5747f420df99cf7dbe90
-
SHA512
fd30102ac473bc7382d0b20f8db06a022907cc6958419a1693565a84445d0855622611b0cf69292d2db850d4755f1b85b76e15e4605253cc2446221cd03371c3
-
SSDEEP
98304:2mF5QsxtodIow/gtd0/DTzs7/RTrvvaoUBrqS4d:1hEIow/gtdC85vFUYS4d
Score
10/10
Malware Config
Extracted
Family
godfather
C2
https://t.me/trinomazkonera
Signatures
-
Godfather family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 1 IoCs
Files
-
cc5235faae1b319d1ff1f9eae5f22827f4b43cf89a2a5747f420df99cf7dbe90.bin
com.palpacle.disfavorer
com.palpacle.disfavorer.yolkless
Android Permissions
cc5235faae1b319d1ff1f9eae5f22827f4b43cf89a2a5747f420df99cf7dbe90.bin
Permissions
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WAKE_LOCK
android.permission.POST_NOTIFICATIONS
android.permission.QUERY_ALL_PACKAGES
com.palpacle.disfavorer.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION