Overview

overview

10

Static

static

10

c05774fdb4...99.apk

android-9-x86

4

c05774fdb4...99.apk

android-10-x64

4

c05774fdb4...99.apk

android-11-x64

4

up.apk

android-9-x86

7

up.apk

android-10-x64

6

up.apk

android-11-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c05774fdb47c39b36a86e806ad9eec4eefc5c98619cf76c00e74dc7c7b7a4e99.bin

  • Size

    4.6MB

  • MD5

    1e8ed8905bd8964647452f8ba241ef4c

  • SHA1

    30eab028035dea300198b49ce82fa0f2fe00f664

  • SHA256

    c05774fdb47c39b36a86e806ad9eec4eefc5c98619cf76c00e74dc7c7b7a4e99

  • SHA512

    eae04bf6bbd27c5a9fa6cbf9e7d0199de095c0908d5f9cea2ea49454a3454b22b9ed8cf46f720fea83f50172d8239bdabf20af0233680c4b95d43391ca2537cc

  • SSDEEP

    98304:VpvvINX9beOJ7m8a7yLBMB566ng2HryD80QlCT:VVANH7m8awBM13mAZCT

Score
10/10
godfather

Malware Config

Extracted

Family

godfather

C2

https://t.me/yazmozaramekos

Signatures

  • Godfather family
    godfather
  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • c05774fdb47c39b36a86e806ad9eec4eefc5c98619cf76c00e74dc7c7b7a4e99.bin
    .apk android

    com.fiftythird.calomba

    com.fiftythird.calomba.imperfected


  • up.apk
    .apk android

    com.hibernoenglish.ditchbur

    com.hibernoenglish.ditchbur.ganoidean


Android Permissions

c05774fdb47c39b36a86e806ad9eec4eefc5c98619cf76c00e74dc7c7b7a4e99.bin

Permissions

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.QUERY_ALL_PACKAGES