General
-
Target
TelegramMessenger_9.3.2_APKPure.apk
-
Size
67.3MB
-
Sample
240726-redxpswcmf
-
MD5
87440617234017089bc0aafc319fc6fa
-
SHA1
776b3efe05f3bc08cb59b7ab5fc4c86406134a29
-
SHA256
aa22c74a923b6ff67f4b356ffbd91bcb6c97b885dca2d067315bf0e0f35ae502
-
SHA512
77d9f3b8f36774ff4e2e11eb334a99fe7cdfa212dd476d2f38cf11bee7bcb818a46eb78cf9fecb1114d6330f5569de6770723efb01a4bc79c49488f9cb334a17
-
SSDEEP
1572864:f/VkMVg4Xd3aLqwBaAlmNEfzSKSABhVjn0OJSha7WAVUep9:f/SOg4XloJcRNEfGJ2Vz0Pha7Wpe3
Malware Config
Targets
-
-
Target
TelegramMessenger_9.3.2_APKPure.apk
-
Size
67.3MB
-
MD5
87440617234017089bc0aafc319fc6fa
-
SHA1
776b3efe05f3bc08cb59b7ab5fc4c86406134a29
-
SHA256
aa22c74a923b6ff67f4b356ffbd91bcb6c97b885dca2d067315bf0e0f35ae502
-
SHA512
77d9f3b8f36774ff4e2e11eb334a99fe7cdfa212dd476d2f38cf11bee7bcb818a46eb78cf9fecb1114d6330f5569de6770723efb01a4bc79c49488f9cb334a17
-
SSDEEP
1572864:f/VkMVg4Xd3aLqwBaAlmNEfzSKSABhVjn0OJSha7WAVUep9:f/SOg4XloJcRNEfGJ2Vz0Pha7Wpe3
Score7/10-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries account information for other applications stored on the device
Application may abuse the framework's APIs to collect account information stored on the device.
-
Reads the contacts stored on the device.
-
Reads the content of photos stored on the user's device.
-
Acquires the wake lock
-
Queries information about active data network
-