General

  • Target

    48809c9f1017dffbc64d8dc9c44f33c9706f453fc055a86d7c0e83123df50aa8.bin

  • Size

    1.8MB

  • MD5

    3fd7304753504d17c7bbad245ce47273

  • SHA1

    b02eafdd03f98a3f2193dc28ab45bf9444cc9d2a

  • SHA256

    48809c9f1017dffbc64d8dc9c44f33c9706f453fc055a86d7c0e83123df50aa8

  • SHA512

    a161b27af8b226af874eaeb65de7d594127e9f47e0f30cac013117a5dd1595f244633d6d97b5db93134e598b5983a46684fc62f806adeec93ac01a7ffcb7ec7f

  • SSDEEP

    49152:9vM0Q1ueYxGiHxt5m6x5S+eUfd9+0JadWATIJ:iR1ueYxGgxK6x5HRfvbAT0

Score
6/10

Malware Config

Signatures

  • Attempts to obfuscate APK file format

    Applies obfuscation techniques to the APK format in order to hinder analysis

  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 34 IoCs

Files

  • 48809c9f1017dffbc64d8dc9c44f33c9706f453fc055a86d7c0e83123df50aa8.bin
    .apk android arch:arm64 arch:arm arch:x64 arch:x86

    com.galaxy.thrive

    com.nameown12.p045l


Android Permissions

48809c9f1017dffbc64d8dc9c44f33c9706f453fc055a86d7c0e83123df50aa8.bin

Permissions

android.permission.CALL_PHONE

com.google.android.gms.permission.AD_ID

com.oplus.permission.safe.PROTECT

android.permission.BLUETOOTH

com.xiaomi.permission.AUTH_SERVICE

android.permission.FOREGROUND_SERVICE

android.permission.WAKE_LOCK

android.permission.UPDATE_APP_OPS_STATS

android.permission.INTERNET

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_NETWORK_STATE

com.oplus.permission.safe.SECURITY

com.android.permission.GET_INSTALLED_APPS

android.permission.NEARBY_WIFI_DEVICES

android.permission.ACCESS_ADSERVICES_TOPICS

android.permission.INSTALL_PACKAGES

android.permission.SYSTEM_ALERT_WINDOW

android.permission.INTERNET

android.permission.ACCESS_MTP

com.oplus.permission.safe.SETTINGS_SEARCH

com.coloros.operationManual.permission.tipsprovider

android.permission.CAMERA

oplus.permission.PHONE_CLONE_DATA_MIGRATION

android.permission.BLUETOOTH_CONNECT

com.coloros.codebook.permission.READ

com.fundevs.app.mediaconverter.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

com.oplus.permission.safe.BACKUP

com.oplus.codebook.permission.BACKUP_AND_RESTORE

com.oplus.permission.safe.CONNECTIVITY

android.permission.ACCESS_ADSERVICES_AD_ID

android.permission.PEERS_MAC_ADDRESS

android.permission.WRITE_SECURE_SETTINGS

com.oplus.permission.safe.PRIVATE

com.oplus.permission.safe.PASSWORD

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.FOREGROUND_SERVICE_LOCATION

android.permission.READ_PHONE_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_MEDIA_AUDIO

android.permission.QUERY_ALL_PACKAGES

com.xiaomi.permission.ACCESS_SECURE_ELEMENT

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.POST_NOTIFICATIONS

android.permission.INSTALL_SHORTCUT

heytap.permission.cloud.ACCESS_CLOUD

android.permission.CLEAR_APP_CACHE

android.permission.ACCESS_WIFI_STATE

com.oplus.permission.safe.APP_MANAGER

com.oplus.permission.safe.AI_APP