com.everybody.misediting.pericolpitis
com.everybody.misediting.pericolpitis
android.intent.action.MAIN
General
-
Target
696711c522b8369bce95f66318b549515b6b22da938ea14a0698272136003111.bin
-
Size
4.4MB
-
MD5
41c8d3e4581b5ca9bbcdcd0a9c55e4fa
-
SHA1
e99e829a9b66faa07ed9799b32f42a11471bc074
-
SHA256
696711c522b8369bce95f66318b549515b6b22da938ea14a0698272136003111
-
SHA512
b536022c2d03c2afbf24f1326e77ade28ca6852dad76d491a89b1584e2f7853f72c7c77d3517ed7c50442083834d788e1f715b7e999020604bdb5d3c0a309663
-
SSDEEP
98304:4roah158yUAPd8fUF4xQpgU0L833CDZWdA91Ai5cNV4kF/6Z1oVkLVvG:4n5jPCMgi3cZW69ei5cNqkd6ZckLVO
Score
10/10
Malware Config
Extracted
Family
godfather
C2
https://t.me/insgaramerbosake
Signatures
-
Godfather family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 1 IoCs
Files
-
696711c522b8369bce95f66318b549515b6b22da938ea14a0698272136003111.bin
com.everybody.misediting
com.everybody.misediting.pericolpitis
-
up.apk
com.fondle.desmothoraca
com.fondle.desmothoraca.Kurilian
Android Permissions
696711c522b8369bce95f66318b549515b6b22da938ea14a0698272136003111.bin
Permissions
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.QUERY_ALL_PACKAGES