com.eilhjczm.oprygbvg.uDEJXUGapz
android.intent.action.MAIN
com.eilhjczm.oprygbvg.sBNKFgmJCw
android.intent.action.MAIN
Static task
static1
3 signatures
General
-
Target
cf49fbcc5e1d0fdaaff212d00f26db2585217e48be0300472d141be6924af488.zip
-
Size
2.8MB
-
MD5
1d3bc4ca52dc887adfd83f65dbb2b3e4
-
SHA1
acfe89d5545f783826f3e6af50d6946622f11aad
-
SHA256
170bb7669b9469a884f2bfbd23ecb05d0ffb05997a109ab53d32fb79af1c1c4e
-
SHA512
c1e8d0a9b7813e5972626f71719e9570c77081a554470745ef613fe3898593930b4c838042618e843168f83ad33adc86fd3677b8f5bb9ff986cd3272c1dc025f
-
SSDEEP
49152:jW6OmuywORpBqXHCiFQZD9tr7yZB6VU9Q6G58bCVmMMD3coXwW+b09C7mG:a6GgsmUaVU9Ql58nMMDMxW+b00mG
Score
6/10
Malware Config
Signatures
-
Declares broadcast receivers with permission to handle system events 1 IoCs
description ioc Required by device admin receivers to bind with the system. Allows apps to manage device administration features. android.permission.BIND_DEVICE_ADMIN -
Declares services with permission to bind to the system 2 IoCs
description ioc Required by accessibility services to bind with the system. Allows apps to access accessibility features. android.permission.BIND_ACCESSIBILITY_SERVICE Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device. android.permission.BIND_NOTIFICATION_LISTENER_SERVICE -
Requests dangerous framework permissions 16 IoCs
description ioc Allows an application to read the user's contacts data. android.permission.READ_CONTACTS Allows an application to read SMS messages. android.permission.READ_SMS Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call. android.permission.CALL_PHONE Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE Allows the app to answer an incoming phone call. android.permission.ANSWER_PHONE_CALLS Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether. android.permission.PROCESS_OUTGOING_CALLS Allows an application to read the user's call log. android.permission.READ_CALL_LOG Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION Allows an application to read the user's calendar data. android.permission.READ_CALENDAR Allows an application to record audio. android.permission.RECORD_AUDIO Required to be able to access the camera device. android.permission.CAMERA Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps. android.permission.SYSTEM_ALERT_WINDOW Allows an application to collect component usage statistics. android.permission.PACKAGE_USAGE_STATS Allows an application to read or write the system settings. android.permission.WRITE_SETTINGS
Files
-
cf49fbcc5e1d0fdaaff212d00f26db2585217e48be0300472d141be6924af488.zip.zip
Password: infected
-
cf49fbcc5e1d0fdaaff212d00f26db2585217e48be0300472d141be6924af488.apk.apk android arch:arm arch:arm64
com.eilhjczm.oprygbvg
com.eilhjczm.oprygbvg.uDEJXUGapz
Activities
Permissions
com.eilhjczm.oprygbvg.permission.C2D_MESSAGE
android.permission.READ_CONTACTS
android.permission.READ_SMS
android.permission.CALL_PHONE
android.permission.READ_PHONE_STATE
android.permission.ANSWER_PHONE_CALLS
android.permission.PROCESS_OUTGOING_CALLS
android.permission.READ_LOGS
android.permission.READ_CALL_LOG
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.SDCARD_WRITE
android.permission.VIBRATE
android.permission.INTERNET
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_CALENDAR
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECORD_AUDIO
android.permission.CAMERA
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.GET_TASKS
android.permission.BIND_DEVICE_ADMIN
android.permission.CHANGE_NETWORK_STATE
android.permission.ACCESS_SUPERUSER
android.permission.SYSTEM_ALERT_WINDOW
android.permission.PACKAGE_USAGE_STATS
android.permission.USES_POLICY_WIPE_DATA
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.WRITE_SETTINGS
android.permission.WRITE_SECURE_SETTINGS
android.permission.BROADCAST_STICKY
android.permission.GET_PACKAGE_SIZE
android.permission.WRITE_SYNC_SETTINGS
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.BATTERY_STATS
android.permission.CHANGE_CONFIGURATION
android.permission.FOREGROUND_SERVICE
Receivers
com.eilhjczm.oprygbvg.core.ujnjfmOJIn
com.eilhjczm.oprygbvg.core.ujnjfmOJIn.TIMER_ALARM
com.eilhjczm.oprygbvg.core.lyrUMbToKb
com.eilhjczm.oprygbvg.core.lyrUMbToKb.START
com.eilhjczm.oprygbvg.core.lyrUMbToKb.STOP
com.eilhjczm.oprygbvg.core.eYZnCfxBrs
android.intent.action.NEW_OUTGOING_CALL
android.provider.Telephony.SMS_RECEIVED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.PHONE_STATE
android.intent.action.SIM_STATE_CHANGED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_ADDED
com.eilhjczm.oprygbvg.MqtckuTstY
com.google.android.c2dm.intent.REGISTRATION
com.google.android.c2dm.intent.RECEIVE
com.google.android.c2dm.intent.RETRY
com.google.firebase.iid.FirebaseInstanceIdReceiver
com.google.android.c2dm.intent.RECEIVE
com.google.android.c2dm.intent.REGISTRATION
com.google.android.c2dm.intent.RECEIVE
com.eilhjczm.oprygbvg.core.hBtrEpaYke
android.app.action.DEVICE_ADMIN_ENABLED
Services
com.google.firebase.iid.FirebaseInstanceIdService
com.google.firebase.INSTANCE_ID_EVENT
com.eilhjczm.oprygbvg.wTeBmXQxTd
com.google.firebase.MESSAGING_EVENT
com.eilhjczm.oprygbvg.ntpsWNWDKn
com.google.firebase.INSTANCE_ID_EVENT
com.eilhjczm.oprygbvg.core.listener.kTtjEVVyyr
android.accessibilityservice.AccessibilityService
com.eilhjczm.oprygbvg.core.listener.JtRpnZuxtV
android.service.notification.NotificationListenerService
com.google.firebase.messaging.FirebaseMessagingService
com.google.firebase.MESSAGING_EVENT