bccf44e92ab0fd6a20d57e5451043ea1613931b9eb09e24b228b0ff2cf01ea44[.]bin

General

Target

bccf44e92ab0fd6a20d57e5451043ea1613931b9eb09e24b228b0ff2cf01ea44.bin
Size

224KB
MD5

c9b14f406d4828401c664c405c176368
SHA1

62b9e47f8853ed82e4a07cd3b15b4bebb00ce3fb
SHA256

bccf44e92ab0fd6a20d57e5451043ea1613931b9eb09e24b228b0ff2cf01ea44
SHA512

b6a3608eacbfc139ebd2259f4a249b8f7d3007efaad4309d3a3dc26bb275e123f98cf3fb33a583ea531e828a0595efa72c332d016b2d215c8b69e3c3c5542d72
SSDEEP

3072:VpFLnWj+rmjSS5vDB8pPdHiyzFvemiL0p3BrzWxcOOsyoL+0UBVRh4qbNc1UHBI4:VuSS5DB8pYyKgpRrqxNrlk0y61p6

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE

Files

bccf44e92ab0fd6a20d57e5451043ea1613931b9eb09e24b228b0ff2cf01ea44.bin
.apk android

com.seminar.mask

com.seminar.mask.MayorLook

Activities

com.seminar.mask.MayorLook

android.intent.action.MAIN

com.seminar.mask.Common

android.intent.action.SEND
android.intent.action.SENDTO

Permissions

android.permission.READ_CONTACTS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.CALL_PHONE
com.android.alarm.permission.SET_ALARM
com.seminar.mask.READ_CALENDAR

Receivers

com.seminar.mask.CircumstanceBless

android.intent.action.BOOT_COMPLETED
android.intent.action.LOCKED_BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
android.intent.action.USER_PRESENT
android.intent.action.PHONE_STATE
android.intent.action.RINGTONE_PICKER
com.google.firebase.MESSAGING_EVENT
android.bluetooth.adapter.action.STATE_CHANGED
android.net.wifi.WIFI_STATE_CHANGED
com.google.firebase.INSTANCE_ID_EVENT
android.accounts.LOGIN_ACCOUNTS_CHANGED
com.android.vending.billing.IN_APP_NOTIFY
com.android.vending.billing.RESPONSE_CODE
com.android.vending.billing.PURCHASE_STATE_CHANGED
com.android.vending.INSTALL_REFERRER
android.provider.Telephony.SMS_REJECTED
android.intent.action.CONTENT_CHANGED
android.intent.action.WALLPAPER_CHANGED
android.provider.Telephony.SECRET_CODE

com.seminar.mask.SoapDictate

android.provider.Telephony.SMS_DELIVER
android.provider.Telephony.SMS_RECEIVED
com.seminar.mask.MILL

com.seminar.mask.Warrant

android.provider.Telephony.WAP_PUSH_DELIVER
android.provider.Telephony.WAP_PUSH_RECEIVED
android.provider.Telephony.WAP_PUSH_GSM_RECEIVED

Services

com.seminar.mask.Tourist

android.intent.action.RESPOND_VIA_MESSAGE

com.seminar.mask.Exit

android.accessibilityservice.AccessibilityService

Android Permissions

bccf44e92ab0fd6a20d57e5451043ea1613931b9eb09e24b228b0ff2cf01ea44.bin

Permissions

android.permission.READ_CONTACTS

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.CALL_PHONE

com.android.alarm.permission.SET_ALARM

com.seminar.mask.READ_CALENDAR

Sharing

General

Malware Config

Signatures

Files

com.seminar.mask

com.seminar.mask.MayorLook

Activities

com.seminar.mask.MayorLook

com.seminar.mask.Common

Permissions

Receivers

com.seminar.mask.CircumstanceBless

com.seminar.mask.SoapDictate

com.seminar.mask.Warrant

Services

com.seminar.mask.Tourist

com.seminar.mask.Exit

Android Permissions

bccf44e92ab0fd6a20d57e5451043ea1613931b9eb09e24b228b0ff2cf01ea44.bin