General

  • Target

    143c3bae3c9d502b37d8b936c5752b9862d145cbdf581373009f9cef38650752.bin

  • Size

    2.1MB

  • MD5

    a6f157f916ba73101a6fffec48926d51

  • SHA1

    b54bf85d996cdf424b5ec3fda04553840dd948b1

  • SHA256

    143c3bae3c9d502b37d8b936c5752b9862d145cbdf581373009f9cef38650752

  • SHA512

    cba55376cd02fc3d537f42764fb4d3bd93169e5205037aaf32c671bb500c0a663a61d19f7bc5a5a68bf50cc03ec63ef99780701b69d1f5785a8812f9612dc7af

  • SSDEEP

    49152:4ewvgyTAHKHee3Gfj22USYWkArJzkSmS3VzC2HXMpaY4:KxEHgojoSyIz9mS3lCQcpa9

Score
6/10

Malware Config

Signatures

  • Attempts to obfuscate APK file format

    Applies obfuscation techniques to the APK format in order to hinder analysis

  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 18 IoCs

Files

  • 143c3bae3c9d502b37d8b936c5752b9862d145cbdf581373009f9cef38650752.bin
    .apk android arch:x86 arch:arm64 arch:x64 arch:arm

    com.snap.hub

    com.can.p045l


Android Permissions

143c3bae3c9d502b37d8b936c5752b9862d145cbdf581373009f9cef38650752.bin

Permissions

com.oplus.metis.factdata.permission.DATABASE

android.permission.READ_PHONE_STATE

android.permission.BATTERY_STATS

android.permission.READ_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.REQUEST_DELETE_PACKAGES

android.permission.RECEIVE_SMS

android.permission.FOREGROUND_SERVICE

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.INSTALL_SHORTCUT

android.permission.USES_POLICY_FORCE_LOCK

android.permission.UPDATE_APP_OPS_STATS

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.CHANGE_COMPONENT_ENABLED_STATE

com.xiaomi.permission.ACCESS_SECURITY_CENTER

android.permission.GET_TASKS

android.permission.WRITE_SETTINGS

com.oppo.launcher.permission.READ_SETTINGS

com.oppo.permission.safe.SAU

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_ADSERVICES_ATTRIBUTION

com.coloros.alarmclock.permission.ACCESS_PROVIDER

com.oplus.thirdkit.permission.SECURITY

com.oppo.launcher.permission.WRITE_SETTINGS

com.oppo.permission.RUTILCMD

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_ADSERVICES_AD_ID

android.permission.ADD_VOICEMAIL

android.permission.GET_PACKAGE_SIZE

android.permission.ACCESS_NOTIFICATION_POLICY

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CLEAR_APP_CACHE

oppo.permission.OPPO_COMPONENT_SAFE

android.permission.REORDER_TASKS

android.permission.SEND_SMS

android.permission.READ_SMS

com.coloros.bootreg.permission.OPPO_BOOTREG_COMPLETED

android.permission.READ_MEDIA_IMAGES

com.google.android.gms.permission.AD_ID

com.coloros.backuprestore.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_MTP

com.google.android.gms.permission.ACTIVITY_RECOGNITION

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.FOREGROUND_SERVICE

com.google.android.providers.gsf.permission.READ_GSERVICES