58795984522bb66ee32858e6b78817e60e7a1b491e1d19a85c514d18d25d2186[.]bin

General

Target

58795984522bb66ee32858e6b78817e60e7a1b491e1d19a85c514d18d25d2186.bin
Size

199KB
MD5

fbde8bde5f6a4b0ee10999a23606fdf2
SHA1

bad6e3a610d1ad6cb2386e8d976e6afdd9350ece
SHA256

58795984522bb66ee32858e6b78817e60e7a1b491e1d19a85c514d18d25d2186
SHA512

1e10821a3512257afc9ad893400d2b1bd87d30d0a39fd18c46c52601314b205ee486c18799cdce386a21277756ee15abc2184be45033201f407ade37895f3463
SSDEEP

3072:ZNOFvQbrB7pjX8PGWP6dm0maBebfoIsyzi2WXMEtqIz2daydy1yyIuXixrtbxr:26brB7pb8ZydmdPPtmPMQqBYyFyM

Score

6^/10

Malware Config

Signatures

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 12 IoCs

description	ioc
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

58795984522bb66ee32858e6b78817e60e7a1b491e1d19a85c514d18d25d2186.bin
.apk android

OPB.dsjlCPrmsrCzhPafvyrCzlfjyuBfOqiOnvffhPP.hxyuvtPymClrCkuOlrvsrrCuxarjPskjzzwCr

.tsygbdchpbonfezzjrqziygvrolnvmcsmbpltdylxijaqvpcfuoxmxkdkrqwthsfwguinauekajweh

Activities

.tsygbdchpbonfezzjrqziygvrolnvmcsmbpltdylxijaqvpcfuoxmxkdkrqwthsfwguinauekajweh

android.intent.action.MAIN

.cauntkaomzqcdhzlvijzrxfghejklxtbmersfmxqujgnkhuoowvqwsdyyveppcgynfwlrispbditba

android.intent.action.SEND
android.intent.action.SENDTO

.zoetzocpifqjgdnxhqjwlkmislpcreosmbndywfyhkibwmrtacefapgkszgulahxbvvurvutxndjyq

android.intent.action.SEND
android.intent.action.SENDTO

Permissions

android.permission.ENABLE_KEYGUARD
android.permission.READ_CALL_LOG
android.permission.READ_CONTACTS
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.SYSTEM_ALERT_WINDOW
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_SETTINGS
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_MMS
android.permission.EXPAND_STATUS_BAR
android.permission.NFC
android.permission.READ_SYNC_STATS
android.permission.BROADCAST_STICKY
android.permission.INSTALL_SHORTCUT
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.SET_WALLPAPER
android.permission.WRITE_SYNC_SETTINGS
android.permission.TRANSMIT_IR
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.SET_WALLPAPER
android.permission.SET_TIME_ZONE
android.permission.READ_SYNC_STATS
android.permission.REORDER_TASKS
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.KILL_BACKGROUND_PROCESSES

Receivers

.jhtzxznpweguvkfkslisampqqqpvugihvdrtiadnshbxnyjryccezbbgrwmdfulakoelfmotwcjoyx

android.intent.action.REBOOT
android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
android.intent.action.REBOOT
android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON

.bmrlccyxnvsylnadoaczgikoeveihfzutefpsbzdxquomwfpaqmhkdgxjsurgpqttvknwrwijjhbyl

android.app.action.ACTION_DEVICE_ADMIN_DISABLE_REQUESTED
android.app.action.DEVICE_ADMIN_ENABLED
android.app.action.DEVICE_ADMIN_DISABLED

.rkvghjhnbeynzxzpapewkxpkdmaqjecuigfihimrbmuasuyqoozbfsnlvlwlrddswtgcxytvcfjotq

android.provider.Telephony.SMS_SENT
android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_DELIVER
android.provider.Telephony.SMS_SENT
android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_DELIVER
android.provider.Telephony.SMS_SENT
android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_DELIVER

.uekwisfiimulgtvzunyhkwjbdqzldcfhqytkxqecjvxwvmbbhonpatfjpegrpdmoarcnaszlsyroxg

android.provider.Telephony.WAP_PUSH_DELIVER

Services

.pkjhfgobzebfdycwinvzsqzyjrvlabxjfmxurgktyvwcotchssuwdmpaqgentlqonxlduairpkheim

android.accessibilityservice.AccessibilityService

.txvjiedinalduwkqzcgawcyhzntbqtekshcpwlgprpynuofjufmmjbsqhgarylkorfbxsvmdeozvxi

android.intent.action.RESPOND_VIA_MESSAGE

Android Permissions

58795984522bb66ee32858e6b78817e60e7a1b491e1d19a85c514d18d25d2186.bin

Permissions

android.permission.ENABLE_KEYGUARD

android.permission.READ_CALL_LOG

android.permission.READ_CONTACTS

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.SYSTEM_ALERT_WINDOW

android.permission.DISABLE_KEYGUARD

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.WRITE_SETTINGS

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.RECEIVE_MMS

android.permission.EXPAND_STATUS_BAR

android.permission.NFC

android.permission.READ_SYNC_STATS

android.permission.BROADCAST_STICKY

android.permission.INSTALL_SHORTCUT

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.SET_WALLPAPER

android.permission.WRITE_SYNC_SETTINGS

android.permission.TRANSMIT_IR

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.SET_WALLPAPER

android.permission.SET_TIME_ZONE

android.permission.READ_SYNC_STATS

android.permission.REORDER_TASKS

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.KILL_BACKGROUND_PROCESSES

Sharing

General

Malware Config

Signatures

Files

OPB.dsjlCPrmsrCzhPafvyrCzlfjyuBfOqiOnvffhPP.hxyuvtPymClrCkuOlrvsrrCuxarjPskjzzwCr

.tsygbdchpbonfezzjrqziygvrolnvmcsmbpltdylxijaqvpcfuoxmxkdkrqwthsfwguinauekajweh

Activities

.tsygbdchpbonfezzjrqziygvrolnvmcsmbpltdylxijaqvpcfuoxmxkdkrqwthsfwguinauekajweh

.cauntkaomzqcdhzlvijzrxfghejklxtbmersfmxqujgnkhuoowvqwsdyyveppcgynfwlrispbditba

.zoetzocpifqjgdnxhqjwlkmislpcreosmbndywfyhkibwmrtacefapgkszgulahxbvvurvutxndjyq

Permissions

Receivers

.jhtzxznpweguvkfkslisampqqqpvugihvdrtiadnshbxnyjryccezbbgrwmdfulakoelfmotwcjoyx

.bmrlccyxnvsylnadoaczgikoeveihfzutefpsbzdxquomwfpaqmhkdgxjsurgpqttvknwrwijjhbyl

.rkvghjhnbeynzxzpapewkxpkdmaqjecuigfihimrbmuasuyqoozbfsnlvlwlrddswtgcxytvcfjotq

.uekwisfiimulgtvzunyhkwjbdqzldcfhqytkxqecjvxwvmbbhonpatfjpegrpdmoarcnaszlsyroxg

Services

.pkjhfgobzebfdycwinvzsqzyjrvlabxjfmxurgktyvwcotchssuwdmpaqgentlqonxlduairpkheim

.txvjiedinalduwkqzcgawcyhzntbqtekshcpwlgprpynuofjufmmjbsqhgarylkorfbxsvmdeozvxi

Android Permissions

58795984522bb66ee32858e6b78817e60e7a1b491e1d19a85c514d18d25d2186.bin