General
-
Target
TelegramMessenger_9.6.5_APKPure.apk
-
Size
67.8MB
-
Sample
240726-sh7jvsvfqj
-
MD5
ae6bc71f5e9ce7d1b6a452a96a9c7b7b
-
SHA1
3c5bde806a56f1742760577c561c98cecd345bfe
-
SHA256
67f2e95b2c31da29c8001252bad65a821639983c9665ff965c6080a0ac1b5955
-
SHA512
6264d3502b3605feb922a859c7d3bdae0f65a2ee14a9ada1ae70c0399f83eca83bba6c631bee23ce9b22f8c424f6555bbfbb464c20616d0fb6d0fdb98465b953
-
SSDEEP
1572864:DB6wH5u22mDxalVrQU3IgqvxAoX6dcDxoDalWX0/WAL1CEdu:tjH5u2VUVrl3LARqEcfAWaC8u
Malware Config
Targets
-
-
Target
TelegramMessenger_9.6.5_APKPure.apk
-
Size
67.8MB
-
MD5
ae6bc71f5e9ce7d1b6a452a96a9c7b7b
-
SHA1
3c5bde806a56f1742760577c561c98cecd345bfe
-
SHA256
67f2e95b2c31da29c8001252bad65a821639983c9665ff965c6080a0ac1b5955
-
SHA512
6264d3502b3605feb922a859c7d3bdae0f65a2ee14a9ada1ae70c0399f83eca83bba6c631bee23ce9b22f8c424f6555bbfbb464c20616d0fb6d0fdb98465b953
-
SSDEEP
1572864:DB6wH5u22mDxalVrQU3IgqvxAoX6dcDxoDalWX0/WAL1CEdu:tjH5u2VUVrl3LARqEcfAWaC8u
Score7/10-
Checks known Qemu pipes.
Checks for known pipes used by the Android emulator to communicate with the host.
-
Loads dropped Dex/Jar
Runs executable file dropped to the device during analysis.
-
Queries account information for other applications stored on the device
Application may abuse the framework's APIs to collect account information stored on the device.
-
Reads the contacts stored on the device.
-
Reads the content of photos stored on the user's device.
-
Acquires the wake lock
-
Queries information about active data network
-