[.]zip | Triage

Sharing

General

Target

.zip
Size

63.5MB
MD5

e106b57f42d321c83565d11ac4117f14
SHA1

b80dd4243f8ecd3fb3050189d71de5986864b641
SHA256

9d4e571009291a44c9f8b060017ae9f669f29cf731514aae6e58bedf68803d7d
SHA512

dd4de262c9cc1f03aed254e614c108fb35c7e243eb28900f55be6173358b6c3d72ac1d0487c839523f683a3e1c1776b416d69157c6c839e871dbbbc7531e4e42
SSDEEP

1572864:Fej5tXLw4ZyEl/BtfkFPg04plajac68ZWmwOln/jGHGBLjPgd79o:AFtXByEZBtfUMU66jgHs4d7S

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS

Files

.zip
.zip
files/CINFO.BIN
files/GTASAMP10.b
files/SAMP/SAMP.ide
files/SAMP/fonts/arial_bold.ttf
files/SAMP/gta.dat
files/SAMP/handling.cfg
files/SAMP/main.scm
files/SAMP/peds.ide
files/SAMP/script.img
files/SAMP/settings.ini
files/SAMP/vehicles.ide
files/gta_sa.set
files/gtasatelem.set
files/mod_sa/mod_sa.ini
files/texdb/SAMPCOL.img
files/texdb/samp.img
files/texdb/samp/samp.dxt.dat
files/texdb/samp/samp.dxt.tmb
files/texdb/samp/samp.dxt.toc
files/texdb/samp/samp.etc.dat
files/texdb/samp/samp.etc.tmb
files/texdb/samp/samp.etc.toc
files/texdb/samp/samp.pvr.dat
files/texdb/samp/samp.pvr.tmb
files/texdb/samp/samp.pvr.toc
files/texdb/samp/samp.txt
files/texdb/samp/samp.unc.dat
files/texdb/samp/samp.unc.tmb
files/texdb/samp/samp.unc.toc
gen_signed(1).apk
.apk android arch:arm

com.rockstargames.gtasa

.GTASA

Activities

.GTASA

android.intent.action.MAIN
android.intent.action.MAIN

Permissions

android.permission.WAKE_LOCK
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.VIBRATE
android.permission.ACCESS_NETWORK_STATE
com.android.vending.CHECK_LICENSE
android.permission.GET_ACCOUNTS
android.permission.BLUETOOTH

Receivers

com.AdX.tag.AdXAppTracker

com.android.vending.INSTALL_REFERRER

Services