9b6f156c6bc2a12b8ad08f72dfb44616270bc739338fd97a1fd71dd2dca35d53[.]bin

General

Target

9b6f156c6bc2a12b8ad08f72dfb44616270bc739338fd97a1fd71dd2dca35d53.bin
Size

838KB
MD5

fb3bbd47089a0ddf9f67aaae89f0793b
SHA1

ec717118694a6e546f5498532c4029793ef3fa4a
SHA256

9b6f156c6bc2a12b8ad08f72dfb44616270bc739338fd97a1fd71dd2dca35d53
SHA512

54ad837412b9c8e13e65dea6da3e0a40e90e0c294c63d3f61e41ef3e015d76288ec80ef74ea81f9598c4a22134d0cb652defe1cf2abebbd9244c943e9b653b33
SSDEEP

12288:VqNk0lVXTpiJmkkxetSM7Nh33xbgBJ3RGLqmmtVDMhC+a:VqN5lDi8kwsnR3RgBJ3RGLqmmHMa

Score

6^/10

Malware Config

Signatures

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows an application to use SIP service.	android.permission.USE_SIP
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

9b6f156c6bc2a12b8ad08f72dfb44616270bc739338fd97a1fd71dd2dca35d53.bin
.apk android

lfaki.fnakmwevw

lfaki.fnakmwevw.p020j

Activities

lfaki.fnakmwevw.p020j

android.intent.action.MAIN

lfaki.fnakmwevw.p034o

android.intent.action.SEND
android.intent.action.SENDTO

Permissions

android.permission.USE_SIP
android.permission.CLEAR_APP_CACHE
android.permission.ADD_VOICEMAIL
android.permission.GET_PACKAGE_SIZE
android.permission.INSTALL_SHORTCUT
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.BLUETOOTH
android.permission.BATTERY_STATS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.CALL_PHONE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.READ_CONTACTS
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.USES_POLICY_FORCE_LOCK
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_SYNC_SETTINGS
android.permission.DISABLE_KEYGUARD
android.permission.SET_TIME_ZONE
android.permission.DISABLE_KEYGUARD
android.permission.GET_PACKAGE_SIZE
android.permission.BLUETOOTH_ADMIN
android.permission.EXPAND_STATUS_BAR
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.GET_PACKAGE_SIZE
android.permission.REORDER_TASKS
android.permission.NFC
android.permission.DISABLE_KEYGUARD
android.permission.UNINSTALL_SHORTCUT
android.permission.WRITE_SYNC_SETTINGS

Receivers

lfaki.fnakmwevw.p026h

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON

lfaki.fnakmwevw.p056u

android.app.action.DEVICE_ADMIN_ENABLED

lfaki.fnakmwevw.p037o

p020j.AlarmAction

lfaki.fnakmwevw.p082f

android.provider.Telephony.SMS_RECEIVED

lfaki.fnakmwevw.p016q

android.provider.Telephony.SMS_DELIVER

lfaki.fnakmwevw.p020k

android.provider.Telephony.WAP_PUSH_DELIVER

Services

lfaki.fnakmwevw.p030e

com.android.ussd.IExtendedNetworkService

lfaki.fnakmwevw.p053f

android.intent.action.RESPOND_VIA_MESSAGE

Android Permissions

9b6f156c6bc2a12b8ad08f72dfb44616270bc739338fd97a1fd71dd2dca35d53.bin

Permissions

android.permission.USE_SIP

android.permission.CLEAR_APP_CACHE

android.permission.ADD_VOICEMAIL

android.permission.GET_PACKAGE_SIZE

android.permission.INSTALL_SHORTCUT

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.BLUETOOTH

android.permission.BATTERY_STATS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.CALL_PHONE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.READ_CONTACTS

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.USES_POLICY_FORCE_LOCK

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_SYNC_SETTINGS

android.permission.DISABLE_KEYGUARD

android.permission.SET_TIME_ZONE

android.permission.DISABLE_KEYGUARD

android.permission.GET_PACKAGE_SIZE

android.permission.BLUETOOTH_ADMIN

android.permission.EXPAND_STATUS_BAR

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.GET_PACKAGE_SIZE

android.permission.REORDER_TASKS

android.permission.NFC

android.permission.DISABLE_KEYGUARD

android.permission.UNINSTALL_SHORTCUT

android.permission.WRITE_SYNC_SETTINGS

Sharing

General

Malware Config

Signatures

Files

lfaki.fnakmwevw

lfaki.fnakmwevw.p020j

Activities

lfaki.fnakmwevw.p020j

lfaki.fnakmwevw.p034o

Permissions

Receivers

lfaki.fnakmwevw.p026h

lfaki.fnakmwevw.p056u

lfaki.fnakmwevw.p037o

lfaki.fnakmwevw.p082f

lfaki.fnakmwevw.p016q

lfaki.fnakmwevw.p020k

Services

lfaki.fnakmwevw.p030e

lfaki.fnakmwevw.p053f

Android Permissions

9b6f156c6bc2a12b8ad08f72dfb44616270bc739338fd97a1fd71dd2dca35d53.bin