General
-
Target
TelegramMessenger_8.2.7_APKPure.apk
-
Size
59.5MB
-
Sample
240726-qkqb9atdqh
-
MD5
f76b68118af5f4ed9ab9db1324f92b95
-
SHA1
f044aed5cf92d361510fd417dcddd88ae8f6e835
-
SHA256
8a9a742f17eb05a0a96f0eabaa568da92c9bf4aa040bbed0d1593b42ab90ba5b
-
SHA512
a33332cb84e66812871ed7591c01aa24ecb0fd38a31d583957f215ff5b377b2531f4ce7276a846cec231d4c195528b86e0abdc84cddf919d6255483d2325abb0
-
SSDEEP
1572864:bYLNIqBfC3eMoRBT8TYBi8eCkZsTpu+aiD7v:bYLiDkV8MiRCkE7ainv
Malware Config
Targets
-
-
Target
TelegramMessenger_8.2.7_APKPure.apk
-
Size
59.5MB
-
MD5
f76b68118af5f4ed9ab9db1324f92b95
-
SHA1
f044aed5cf92d361510fd417dcddd88ae8f6e835
-
SHA256
8a9a742f17eb05a0a96f0eabaa568da92c9bf4aa040bbed0d1593b42ab90ba5b
-
SHA512
a33332cb84e66812871ed7591c01aa24ecb0fd38a31d583957f215ff5b377b2531f4ce7276a846cec231d4c195528b86e0abdc84cddf919d6255483d2325abb0
-
SSDEEP
1572864:bYLNIqBfC3eMoRBT8TYBi8eCkZsTpu+aiD7v:bYLiDkV8MiRCkE7ainv
Score7/10-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries account information for other applications stored on the device
Application may abuse the framework's APIs to collect account information stored on the device.
-
Reads the contacts stored on the device.
-
Reads the content of photos stored on the user's device.
-
Acquires the wake lock
-
Queries information about active data network
-