Cromite[.]apk | Triage

General

Target

Cromite.apk
Size

128.7MB
MD5

81af00f9358d9bca68f3764ef0e0d6e0
SHA1

73b060fd686cc5c713e2cf3d6abd6b6ba1622fad
SHA256

909911dbd3400246d668b3373028053ee587a7594f433aaafd9ae3329bbf791b
SHA512

d2034c833b5a05525523da7d61991592384725a4ffc8039e5e18d2c119107b8b65c926c766d03f3639a27b09a18f3549be530eab2b377921edb432d4ca125236
SSDEEP

3145728:iEH483ZOr/D9TuBAkzogdjCq50CkCo2O1g3tWPywobwIglu:p48J+TuBrzruCkX2O1gdWHoEj8

Score

6^/10

Malware Config

Signatures

Attempts to obfuscate APK file format
Applies obfuscation techniques to the APK format in order to hinder analysis

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by remote views services to bind with the system. Allows apps to share and display views across different processes.	android.permission.BIND_REMOTEVIEWS

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

Cromite.apk
.apk android arch:arm64

org.cromite.cromite

org.chromium.chrome.browser.document.ChromeLauncherActivity

Activities

org.chromium.chrome.browser.media.MediaLauncherActivity

android.intent.action.VIEW

org.chromium.chrome.browser.sharing.shared_intent.SharedIntentShareActivity

android.intent.action.SEND

org.chromium.chrome.browser.dragdrop.DragAndDropLauncherActivity

org.chromium.chrome.browser.dragdrop.action.VIEW

org.chromium.chrome.browser.incognito.IncognitoTabLauncher

org.chromium.chrome.browser.incognito.OPEN_PRIVATE_TAB

org.chromium.chrome.browser.customtabs.CustomTabActivity

org.chromium.chrome.browser.dummy.action

org.chromium.chrome.browser.customtabs.TranslucentCustomTabActivity

org.chromium.chrome.browser.dummy.action

org.chromium.chrome.browser.ChromeTabbedActivity

org.chromium.chrome.browser.dummy.action

org.chromium.chrome.browser.ChromeTabbedActivity2

org.chromium.chrome.browser.dummy.action

org.chromium.chrome.browser.app.feed.followmanagement.FollowManagementActivity

org.chromium.chrome.browser.app.feed.followmanagement.FollowManagementActivity.ACTIVATE

org.chromium.chrome.browser.webapps.WebappLauncherActivity

com.google.android.apps.chrome.webapps.WebappManager.ACTION_START_WEBAPP
org.webapk.ACTION_START_WEBAPK

org.chromium.chrome.browser.webapps.WebappActivity

org.chromium.chrome.browser.dummy.action

org.chromium.chrome.browser.webapps.SameTaskWebApkActivity

org.chromium.chrome.browser.dummy.action

org.chromium.chrome.browser.webapps.ActivateWebApkActivity

org.chromium.chrome.browser.webapps.ActivateWebApkActivity.ACTIVATE

org.chromium.chrome.browser.browserservices.ManageTrustedWebActivityDataActivity

android.support.customtabs.action.ACTION_MANAGE_TRUSTED_WEB_ACTIVITY_DATA
android.support.customtabs.action.ACTION_MANAGE_TRUSTED_WEB_ACTIVITY_DATA

org.chromium.chrome.browser.webauth.authenticator.CableAuthenticatorUSBActivity

android.hardware.usb.action.USB_ACCESSORY_ATTACHED

Permissions

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.CAMERA
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE_MEDIA_PLAYBACK
android.permission.FOREGROUND_SERVICE_DATA_SYNC
android.permission.RUN_USER_INITIATED_JOBS
android.permission.INTERNET
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.NFC
android.permission.POST_NOTIFICATIONS
android.permission.QUERY_ALL_PACKAGES
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECORD_AUDIO
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CREDENTIAL_MANAGER_QUERY_CANDIDATE_CREDENTIALS
android.permission.CREDENTIAL_MANAGER_SET_ALLOWED_PROVIDERS
android.permission.CREDENTIAL_MANAGER_SET_ORIGIN
org.cromite.cromite.permission.READ_WRITE_BOOKMARK_FOLDERS
org.cromite.cromite.TOS_ACKED
com.chrome.permission.DEVICE_EXTRAS
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.USE_BIOMETRIC
android.permission.USE_FINGERPRINT

Receivers

org.chromium.chrome.browser.sharing.click_to_call.ClickToCallMessageHandler$PhoneUnlockedReceiver

android.intent.action.USER_PRESENT

org.chromium.chrome.browser.upgrade.PackageReplacedBroadcastReceiver

android.intent.action.MY_PACKAGE_REPLACED

org.chromium.chrome.browser.notifications.channels.LocaleChangedBroadcastReceiver

android.intent.action.LOCALE_CHANGED

org.chromium.chrome.browser.browserservices.InstalledWebappBroadcastReceiver

android.intent.action.PACKAGE_FULLY_REMOVED
android.intent.action.PACKAGE_DATA_CLEARED

org.chromium.chrome.browser.quickactionsearchwidget.QuickActionSearchWidgetProvider$QuickActionSearchWidgetProviderSearch

android.appwidget.action.APPWIDGET_UPDATE

org.chromium.chrome.browser.quickactionsearchwidget.QuickActionSearchWidgetProvider$QuickActionSearchWidgetProviderDino

android.appwidget.action.APPWIDGET_UPDATE

com.google.android.apps.chrome.appwidget.bookmarks.BookmarkThumbnailWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE
.BOOKMARK_APPWIDGET_UPDATE

org.chromium.chrome.browser.searchwidget.SearchWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE

org.chromium.chrome.browser.notifications.NotificationServiceImpl$Receiver

org.chromium.chrome.browser.notifications.CLICK_NOTIFICATION
org.chromium.chrome.browser.notifications.CLOSE_NOTIFICATION
org.chromium.chrome.browser.notifications.PRE_UNSUBSCRIBE
org.chromium.chrome.browser.notifications.UNDO_UNSUBSCRIBE
org.chromium.chrome.browser.notifications.COMMIT_UNSUBSCRIBE

org.chromium.chrome.browser.notifications.permissions.NotificationPermissionChangeReceiver

android.app.action.APP_BLOCK_STATE_CHANGED

Services

org.chromium.chrome.browser.customtabs.CustomTabsConnectionService

android.support.customtabs.action.CustomTabsService

org.chromium.components.payments.PaymentDetailsUpdateService

org.chromium.intent.action.UPDATE_PAYMENT_DETAILS

org.chromium.chrome.browser.media.ui.ChromeMediaNotificationControllerServices$PlaybackListenerService

android.intent.action.MEDIA_BUTTON

org.chromium.chrome.browser.media.ui.ChromeMediaNotificationControllerServices$PresentationListenerService

android.intent.action.MEDIA_BUTTON

org.chromium.chrome.browser.media.ui.ChromeMediaNotificationControllerServices$CastListenerService

android.intent.action.MEDIA_BUTTON

Android Permissions

Cromite.apk

Permissions

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_NETWORK_STATE

android.permission.CAMERA

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.FOREGROUND_SERVICE

android.permission.FOREGROUND_SERVICE_MEDIA_PLAYBACK

android.permission.FOREGROUND_SERVICE_DATA_SYNC

android.permission.RUN_USER_INITIATED_JOBS

android.permission.INTERNET

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.NFC

android.permission.POST_NOTIFICATIONS

android.permission.QUERY_ALL_PACKAGES

android.permission.READ_EXTERNAL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.RECORD_AUDIO

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CREDENTIAL_MANAGER_QUERY_CANDIDATE_CREDENTIALS

android.permission.CREDENTIAL_MANAGER_SET_ALLOWED_PROVIDERS

android.permission.CREDENTIAL_MANAGER_SET_ORIGIN

org.cromite.cromite.permission.READ_WRITE_BOOKMARK_FOLDERS

org.cromite.cromite.TOS_ACKED

com.chrome.permission.DEVICE_EXTRAS

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.USE_BIOMETRIC

android.permission.USE_FINGERPRINT

Sharing

General

Malware Config

Signatures

Files

org.cromite.cromite

org.chromium.chrome.browser.document.ChromeLauncherActivity

Activities

org.chromium.chrome.browser.media.MediaLauncherActivity

org.chromium.chrome.browser.sharing.shared_intent.SharedIntentShareActivity

org.chromium.chrome.browser.dragdrop.DragAndDropLauncherActivity

org.chromium.chrome.browser.incognito.IncognitoTabLauncher

org.chromium.chrome.browser.customtabs.CustomTabActivity

org.chromium.chrome.browser.customtabs.TranslucentCustomTabActivity

org.chromium.chrome.browser.ChromeTabbedActivity

org.chromium.chrome.browser.ChromeTabbedActivity2

org.chromium.chrome.browser.app.feed.followmanagement.FollowManagementActivity

org.chromium.chrome.browser.webapps.WebappLauncherActivity

org.chromium.chrome.browser.webapps.WebappActivity

org.chromium.chrome.browser.webapps.SameTaskWebApkActivity

org.chromium.chrome.browser.webapps.ActivateWebApkActivity

org.chromium.chrome.browser.browserservices.ManageTrustedWebActivityDataActivity

org.chromium.chrome.browser.webauth.authenticator.CableAuthenticatorUSBActivity

Permissions

Receivers

org.chromium.chrome.browser.sharing.click_to_call.ClickToCallMessageHandler$PhoneUnlockedReceiver

org.chromium.chrome.browser.upgrade.PackageReplacedBroadcastReceiver

org.chromium.chrome.browser.notifications.channels.LocaleChangedBroadcastReceiver

org.chromium.chrome.browser.browserservices.InstalledWebappBroadcastReceiver

org.chromium.chrome.browser.quickactionsearchwidget.QuickActionSearchWidgetProvider$QuickActionSearchWidgetProviderSearch

org.chromium.chrome.browser.quickactionsearchwidget.QuickActionSearchWidgetProvider$QuickActionSearchWidgetProviderDino

com.google.android.apps.chrome.appwidget.bookmarks.BookmarkThumbnailWidgetProvider

org.chromium.chrome.browser.searchwidget.SearchWidgetProvider

org.chromium.chrome.browser.notifications.NotificationServiceImpl$Receiver

org.chromium.chrome.browser.notifications.permissions.NotificationPermissionChangeReceiver

Services

org.chromium.chrome.browser.customtabs.CustomTabsConnectionService

org.chromium.components.payments.PaymentDetailsUpdateService

org.chromium.chrome.browser.media.ui.ChromeMediaNotificationControllerServices$PlaybackListenerService

org.chromium.chrome.browser.media.ui.ChromeMediaNotificationControllerServices$PresentationListenerService

org.chromium.chrome.browser.media.ui.ChromeMediaNotificationControllerServices$CastListenerService

Android Permissions

Cromite.apk