com.mate.vpn.HomeActivity
com.mate.vpn.intent.launch.home.action
com.mate.vpn.tool.SplashActivity
android.intent.action.MAIN
com.mate.vpn.vip.VipActivity
android.intent.action.VIEW
com.github.shadowsocks.UrlImportActivity
android.intent.action.VIEW
General
-
Target
xyvpn.zip
-
Size
16.5MB
-
MD5
cb5d1b031fc656d3cfa5f3df2a59958c
-
SHA1
ee8c9c0ca3a0f477f2d49b545678190ce1c4699a
-
SHA256
6245cf0134b75b8169e99c237af0aee575a732e16dec451a240546f5a899d5b8
-
SHA512
63431f906de24aeefe1705b57fad67a6ced70d5f8be3a69deabb6146cd08817202aa022d411b80a416f01a1baed8e3bef0dc50a02ca1a20aeee5c5eebc1ef622
-
SSDEEP
393216:hW9p1VKrIjcq/16eGmZRweai7+v7kvnehRzTLUuOx/TB+SM:Q9p1VKvq/gDyRw6HnehRzTYuOFt+SM
Score
6/10
Malware Config
Signatures
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 1 IoCs
Files
-
xyvpn.zip
Password: infected
-
cc8bdd39a78cd6697af5075dd2081b533fce65ee74879c08c8c1dfa51fde48f9
Password: infected
-
com.mate.vpn.apk
Password: infected
com.mate.vpn
com.mate.vpn.tool.SplashActivity
-
config.ar.apk
-
config.arm64_v8a.apk
-
config.de.apk
-
config.en.apk
-
config.es.apk
-
config.fr.apk
-
config.hi.apk
-
config.in.apk
-
config.it.apk
-
config.ja.apk
-
config.ko.apk
-
config.pt.apk
-
config.ru.apk
-
config.th.apk
-
config.tr.apk
-
config.vi.apk
-
config.xhdpi.apk
-
config.zh.apk
-
icon.png
-
manifest.json