com.actiniums.phenomenologies.diazin
android.intent.action.MAIN
android.intent.action.VIEW
General
-
Target
bfbdf0a2190cc3568dd07f50be86a681035fb6371c2e3b056db6cbf2a9b35279.bin
-
Size
3.9MB
-
MD5
0ee55e7dda5ca16de0519b60096ba709
-
SHA1
aeec7b300857cc3682309cbe23da177c13464f70
-
SHA256
bfbdf0a2190cc3568dd07f50be86a681035fb6371c2e3b056db6cbf2a9b35279
-
SHA512
15e8413422e177eecbfd4f5791efbdee7944f94a0022a4e72154df5598a17318895487dc30cb1aea37007b3195a69f132eed7b3a41a2bce09ffdca48ec4d34c2
-
SSDEEP
98304:Qo0LdGO0F97nRGgNfOBhymZR0H54Ph/de+vwlz4UXB+F:QdEM0ShRZIWRd9M4M+F
Score
10/10
Malware Config
Extracted
Family
godfather
C2
https://t.me/trinomazkonera
Signatures
-
Godfather family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 1 IoCs
Files
-
bfbdf0a2190cc3568dd07f50be86a681035fb6371c2e3b056db6cbf2a9b35279.bin
com.actiniums.phenomenologies
com.actiniums.phenomenologies.diazin
Android Permissions
bfbdf0a2190cc3568dd07f50be86a681035fb6371c2e3b056db6cbf2a9b35279.bin
Permissions
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WAKE_LOCK
android.permission.POST_NOTIFICATIONS
android.permission.QUERY_ALL_PACKAGES
com.actiniums.phenomenologies.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION