xamalicious | PKHeX[.]MAUI[.]apk

General

Target

PKHeX.MAUI.apk
Size

71.0MB
MD5

b709ed55d90fd49837832574f1beaae1
SHA1

49a0776dd37f672d6d1378ad7568e40ccb4ddc9a
SHA256

8c066487d78757684baf0b112eb7259553b73784019ec9bd121045e4b664839f
SHA512

ab8ad955010180354d02d92b1c0add5e30237346def11da4164d469753aa49629321d1dad402e5f4f21af84562b0010abd06aabbdaf110b1ecdcafabd85ea815
SSDEEP

1572864:UAVxc09UN1e41VAsuwhRRlTeeUzK5SpNJOCILIVYg8LcAvkE:9Vxb9UN1ekAC3RiK5MNoCIEYlsE

Score

10^/10

xamalicious

Android Xamalicious payload 1 IoCs

Processes:

resource	yara_rule
sample	family_xamalicious

Requests dangerous framework permissions 2 IoCs

Processes:

description	ioc
Allows an application a broad access to external storage in scoped storage.	android.permission.MANAGE_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.MANAGE_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

PKHeX.MAUI.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION