com.upstandingly.nonprudential.Eyla
com.upstandingly.nonprudential.Eyla
android.intent.action.MAIN
General
-
Target
bfa7c1433ba40a74c2dd2d4e9a6aa8e1654621dee61614631800f7889351a230.bin
-
Size
4.6MB
-
MD5
d8af6624ffb6113e911c163173852eb5
-
SHA1
bb5c389692ca6ba45d81edafcf970bbd2a37e15d
-
SHA256
bfa7c1433ba40a74c2dd2d4e9a6aa8e1654621dee61614631800f7889351a230
-
SHA512
5fd0b6e5d9916229e6274766d978f3ffc4be3c714947efc985bce3005a9699377e2d8ddc7e630dc1e7d71b851313651377f9783b785cdce5fef293c7b079d6d6
-
SSDEEP
49152:HXGjkmLqGb2a2u6MppgzGP0FdJEbXeKaG7HZVOHDF1g+vxSHB9nuujpTctu5CyOw:HwKTNI0FdQzax7SHnnhiyOS/RTIIHSY
Score
10/10
Malware Config
Extracted
Family
godfather
C2
https://t.me/trinomazkonera
Signatures
-
Godfather family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 1 IoCs
Files
-
bfa7c1433ba40a74c2dd2d4e9a6aa8e1654621dee61614631800f7889351a230.bin
com.upstandingly.nonprudential
com.upstandingly.nonprudential.Eyla
-
up.apk
com.actiniums.phenomenologies
com.actiniums.phenomenologies.diazin
Android Permissions
bfa7c1433ba40a74c2dd2d4e9a6aa8e1654621dee61614631800f7889351a230.bin
Permissions
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.QUERY_ALL_PACKAGES