com.ytnfrar.rtom.whxscfuefqstpmqc
android.intent.action.SENDTO
android.intent.action.SEND
com.ytnfrar.rtom.esmpbuievrxy
android.intent.action.MAIN
General
-
Target
Covid_CovidMap.zip
-
Size
111KB
-
MD5
a3be8808361418e1e591de9965522f85
-
SHA1
97f3651b65f089d54e2ec0c60580bb8e5c3d31bb
-
SHA256
ebc42e3db5719fa17aaac2d9e5774bde98a2d855b84a5a1d2b2271fd725bc8fb
-
SHA512
34fab09b202ca105e37ee9534f36890577ee9aca7bb492831fbd72debb1e9552c8d05465d685a96ba85e29b13a13cf32972dc4adea2c58219ccc041d4a0501c3
-
SSDEEP
3072:kl/Z+XXVExIVw0AJvabQKC6n43i74EKc1:kl/Z+nVpwhFacKC4PDJ1
Score
6/10
Malware Config
Signatures
-
Declares broadcast receivers with permission to handle system events 1 IoCs
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 6 IoCs
Files
-
Covid_CovidMap.zip
Password: infected
-
Covid_CovidMap/ef80429d554a6f7a0b1ad97a2ca5df4d
com.ytnfrar.rtom
com.ytnfrar.rtom.esmpbuievrxy