com.drama.photo.camera.PhotoCamera
android.intent.action.MAIN
Static task
static1
2 signatures
General
-
Target
18810625823.zip
-
Size
1.4MB
-
MD5
cf2b08ae46462cd281de486ac03fa404
-
SHA1
64550614d23a558b4668eefff9caab20ff9c2b34
-
SHA256
63bbcf408aa3ea751f27ab3098942e82021451d9619a7f622fe553d830a3549d
-
SHA512
fd60395d5172e4b9de2fafbedcda377851a456619e28c457a5355d3c3375ca9236ebb51c5e5c214be2f90e4f99c65c107aaa4ee86a18583d7dd07c65aed89e23
-
SSDEEP
24576:H+rgVr9ZPzAiMF+UhBPyGz8HH6vR3bLaB3xPMwt5w2ESNWadukoDLKkSdXhoALRU:HEg3CNIUPPn8653bWwwt5KadODLKWONG
Score
6/10
Malware Config
Signatures
-
Declares services with permission to bind to the system 1 IoCs
description ioc Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device. android.permission.BIND_NOTIFICATION_LISTENER_SERVICE -
Requests dangerous framework permissions 2 IoCs
description ioc Required to be able to access the camera device. android.permission.CAMERA Allows an application to record audio. android.permission.RECORD_AUDIO
Files
-
18810625823.zip.zip
Password: infected
-
936c19d03c181c926f8bd55abe6e729a61f548866a95b37ea172e372b08fd5a4.apk android
Password: infected
com.drama.photo.camera
com.drama.photo.camera.PhotoCamera
Activities
Permissions
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.CAMERA
android.permission.RECORD_AUDIO
android.permission.CHANGE_NETWORK_STATE
com.drama.photo.camera.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
Receivers
androidx.profileinstaller.ProfileInstallReceiver
androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION
Services
com.drama.photo.camera.OnPhoto
android.service.notification.NotificationListenerService