Overview

overview

10

Static

static

10

289dffc1e9...58.apk

android-9-x86

7

289dffc1e9...58.apk

android-10-x64

6

289dffc1e9...58.apk

android-11-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    289dffc1e9e8a23c41eca28ee87350464eeea076c653d709cab8a8cd0c980c58.bin

  • Size

    3.6MB

  • MD5

    bf715cdab30fca7c2d551a07219c54ba

  • SHA1

    969cee8e3cb30c083243edf7606f415dd675e861

  • SHA256

    289dffc1e9e8a23c41eca28ee87350464eeea076c653d709cab8a8cd0c980c58

  • SHA512

    8e84effe8947311aa1dc47ea8f0371b6a7fa32bc9548035527e8b1328746ec8554af48309bdaeaa74d9b95a7766e52bc08ccad489062c49eeb85625835f10cad

  • SSDEEP

    98304:vYJ3war8cXRHrCOvT/2iehAL0WHlRQjppymSNyk87lWI6:wOSRLCAT+JA4WHQOFQXxN6

Score
10/10
godfather

Malware Config

Extracted

Family

godfather

C2

https://t.me/pdfemonaserokim

Signatures

  • Godfather family
    godfather
  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • 289dffc1e9e8a23c41eca28ee87350464eeea076c653d709cab8a8cd0c980c58.bin
    .apk android

    com.pitsaws.darcie

    com.pitsaws.darcie.pervalvar


Android Permissions

289dffc1e9e8a23c41eca28ee87350464eeea076c653d709cab8a8cd0c980c58.bin

Permissions

android.permission.INTERNET

android.permission.FOREGROUND_SERVICE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.WAKE_LOCK

android.permission.POST_NOTIFICATIONS

android.permission.QUERY_ALL_PACKAGES

com.pitsaws.darcie.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION