com.playrix.donow.SplashActivity
android.intent.action.MAIN
Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e5142d7c118a806b5a42bbc624f490fb.apk
-
Size
14.8MB
-
MD5
e5142d7c118a806b5a42bbc624f490fb
-
SHA1
5bbe9a1737062f2bee84c838bce8948addcd9641
-
SHA256
1b0a086993708469bd00801c6ec2669d6dcb8b2098f539759514712ceb6be230
-
SHA512
c0e607abda9f1e02e480cc60945077a16211c9e831176dd7d9ad0a2df995ac54b18929b78a3e8013d75089cba3ebdf529c2d91a7e248ed7c7c95ff72adb8dc06
-
SSDEEP
393216:GiT2xVikSMGYOpmD98dLKKtborzTN5sP5:VKxU6Op1ZEzE
Score
10/10
Malware Config
Extracted
Family
axbanker
C2
https://newax-d7dc6-default-rtdb.firebaseio.com
Signatures
-
Axbanker family
-
Requests dangerous framework permissions 3 IoCs
Files
-
e5142d7c118a806b5a42bbc624f490fb.apk
com.playrix.donow
com.playrix.donow.SplashActivity
Android Permissions
e5142d7c118a806b5a42bbc624f490fb.apk
Permissions
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INSTANT_APP_FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE
android.permission.START_FOREGROUND_SERVICES_FROM_BACKGROUND
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
com.playrix.donow.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION