General

  • Target

    f062fbbd5f8f13fc2055f2395510160aad665250edb0777d84ed290470858bea.bin

  • Size

    3.7MB

  • MD5

    05e92d583b6aeb03d4b32b69621a031f

  • SHA1

    4980438ef73b6d7638fa642e4e7e2915e814bda1

  • SHA256

    f062fbbd5f8f13fc2055f2395510160aad665250edb0777d84ed290470858bea

  • SHA512

    0d6e28ed4d01736b904dce1b2050f2c55939e81ff55b7bda982321200c1fd114b5ce5e6cdfe2a98bdcfec89014f7de04d1646b8758dc024b3dc1065f904c1ed8

  • SSDEEP

    98304:mUM/iZqMh7w2sEIdqGJM3CQxY0Mu4KXKpTX5zKeloXjH9ks0LgZ:fMM7wVE4wCkV4keloXj90Le

Score
10/10

Malware Config

Extracted

Family

godfather

C2

https://t.me/mazokoveraser

Signatures

  • Godfather family
  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • f062fbbd5f8f13fc2055f2395510160aad665250edb0777d84ed290470858bea.bin
    .apk android

    com.midshipman.unshrewish

    com.midshipman.unshrewish.urethroscope


Android Permissions

f062fbbd5f8f13fc2055f2395510160aad665250edb0777d84ed290470858bea.bin

Permissions

android.permission.INTERNET

android.permission.FOREGROUND_SERVICE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.WAKE_LOCK

android.permission.POST_NOTIFICATIONS

android.permission.QUERY_ALL_PACKAGES

com.midshipman.unshrewish.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION