Overview

overview

10

Static

static

10

0fe2f70603...3b.apk

android-9-x86

4

0fe2f70603...3b.apk

android-10-x64

4

0fe2f70603...3b.apk

android-11-x64

4

up.apk

android-9-x86

6

up.apk

android-10-x64

7

up.apk

android-11-x64

6

Sharing

Copy URL Twitter E-mail

General

  • Target

    0fe2f7060385cd8eccffe07b16300c36e7c0391460a346d747d6b3cb211a263b.bin

  • Size

    4.6MB

  • MD5

    fde141c9ea0baafa78819121a2ac57fb

  • SHA1

    57c20c60a8a18c196b496c1e560f3f9174fd70c2

  • SHA256

    0fe2f7060385cd8eccffe07b16300c36e7c0391460a346d747d6b3cb211a263b

  • SHA512

    e5f1d729f3b3571a7afb465902ed186f98598c7ad1fd9e99c83c819503c7f91a811b3edd36ed9fdc8b9fafa790b050b3a33f4a2bc6296bd68d99cbb33c02111d

  • SSDEEP

    98304:uWFRGalV0Y7FIZnRYwRva+x+00TbJMjN2KKkkeMvdQL4KfMTG3M4xm:uWDliJ3M3TbJMp0HIMq3S

Score
10/10
godfather

Malware Config

Extracted

Family

godfather

C2

https://t.me/trinomazkonera

Signatures

  • Godfather family
    godfather
  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • 0fe2f7060385cd8eccffe07b16300c36e7c0391460a346d747d6b3cb211a263b.bin
    .apk android

    com.subter.interspersion

    com.subter.interspersion.periphraxy


  • up.apk
    .apk android

    com.semiconceal.wimple

    com.semiconceal.wimple.exocoele


Android Permissions

0fe2f7060385cd8eccffe07b16300c36e7c0391460a346d747d6b3cb211a263b.bin

Permissions

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.QUERY_ALL_PACKAGES