Target
Delta-2.640.730.apk
Size
174.0MB
MD5
c11ae7c610d82f3ed5e089c9354a1364
SHA1
fac8a637adbcead2c6c09f9eff5f13b0b0a5db4d
SHA256
7d023efcdf26578df4aa4f792fa62e553e8f91305758e9e6d4550c9ab5f759de
SHA512
1946a883eab3890d5be3ef7b8302ea1daafd05276696e350263ba6d0564071f229f78cc57e3f6f51998670df61fb30a9541486de6dd68eff3079a93d011d5d9d
SSDEEP
3145728:A8Hy1RCAMLEsstDC6+C6/zCugMvZDP5YI+qrY7mf/W0o+3XDL6Sp1m37X8BsR+F6:A8gR1YEskS/znJ5YI9rYCtoLSpw37X8a
Office document macro which triggers in special circumstances - often malicious.
| resource | yara_rule |
|---|---|
| sample | office_macro_on_action |
| description | ioc |
|---|---|
| Allows an app to post notifications. | android.permission.POST_NOTIFICATIONS |
| Allows an application to read the user's contacts data. | android.permission.READ_CONTACTS |
| Allows an application to write to external storage. | android.permission.WRITE_EXTERNAL_STORAGE |
| Allows an application a broad access to external storage in scoped storage. | android.permission.MANAGE_EXTERNAL_STORAGE |
| Allows an application to read from external storage. | android.permission.READ_EXTERNAL_STORAGE |
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.MAIN
android.permission.BLUETOOTH
android.permission.POST_NOTIFICATIONS
android.permission.VIBRATE
com.android.vending.BILLING
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.READ_CONTACTS
android.permission.FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE_DATA_SYNC
android.permission.USE_FULL_SCREEN_INTENT
android.permission.DISABLE_KEYGUARD
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MANAGE_EXTERNAL_STORAGE
com.google.android.gms.permission.AD_ID
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_ADSERVICES_ATTRIBUTION
com.huawei.appmarket.service.commondata.permission.GET_COMMON_DATA
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
com.roblox.client.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
com.google.android.gms.auth.api.phone.SMS_RETRIEVED
android.intent.action.MY_PACKAGE_REPLACED
com.android.vending.INSTALL_REFERRER
com.google.android.c2dm.intent.RECEIVE
com.google.firebase.MESSAGING_EVENT
com.google.firebase.MESSAGING_EVENT
android.permission.BLUETOOTH
android.permission.POST_NOTIFICATIONS
android.permission.VIBRATE
com.android.vending.BILLING
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.READ_CONTACTS
android.permission.FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE_DATA_SYNC
android.permission.USE_FULL_SCREEN_INTENT
android.permission.DISABLE_KEYGUARD
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MANAGE_EXTERNAL_STORAGE
com.google.android.gms.permission.AD_ID
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_ADSERVICES_ATTRIBUTION
com.huawei.appmarket.service.commondata.permission.GET_COMMON_DATA
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
com.roblox.client.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION