com.alpras.dialer.SplashActivity
android.intent.action.MAIN
android.intent.action.DIAL
android.intent.action.DIAL
Static task
static1
2 signatures
General
-
Target
240909-f6ahtatdrm_pw_infected.zip
-
Size
2.7MB
-
MD5
9936ad1ebd2f35f5405dcc7346a4894f
-
SHA1
02760b19452867508bb895e438e64fc993e6a7eb
-
SHA256
16aaab7990772fab3618e98bb88cbbaf5f0c9f2e33e12c68d3e1c3e25eedb11c
-
SHA512
42a96ce1d205a21884f72b873d18e3e2dc2e7abe0c3c89fe1f751846ca93cd98698b5e956e8d949592bb711617ac2af0ba7e6bd96ae4bb4faf76f71e01798897
-
SSDEEP
49152:VnVl5ELQPliwW7erdvUmGqvtIn/vy3JYR/6aPKSCu5N0S8/l31nq64X6lP9341y:VVMLciwvUmDvqKJCdRP03/llq64KlPCU
Score
6/10
Malware Config
Signatures
-
Declares services with permission to bind to the system 2 IoCs
description ioc Required by in-call services to bind with the system. Allows apps to handle aspects of phone calls while they are in progress. android.permission.BIND_INCALL_SERVICE Required by accessibility services to bind with the system. Allows apps to access accessibility features. android.permission.BIND_ACCESSIBILITY_SERVICE -
Requests dangerous framework permissions 18 IoCs
description ioc Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether. android.permission.PROCESS_OUTGOING_CALLS Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call. android.permission.CALL_PHONE Allows an application to read the user's call log. android.permission.READ_CALL_LOG Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device. android.permission.READ_PHONE_STATE Allows an application to write and read the user's call log data. android.permission.WRITE_CALL_LOG Allows an application to record audio. android.permission.RECORD_AUDIO Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows an application a broad access to external storage in scoped storage. android.permission.MANAGE_EXTERNAL_STORAGE Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION Allows read access to the device's phone number(s). android.permission.READ_PHONE_NUMBERS Allows an application to read SMS messages. android.permission.READ_SMS Allows an application to receive SMS messages. android.permission.RECEIVE_SMS Allows an application to send SMS messages. android.permission.SEND_SMS Allows an application to read the user's contacts data. android.permission.READ_CONTACTS Allows applications to use exact alarm APIs. android.permission.SCHEDULE_EXACT_ALARM
Files
-
240909-f6ahtatdrm_pw_infected.zip.zip
Password: infected
-
020c51ca238439080ec12f7d4bc4ddbdcf79664428cd0fb5e7f75337eff11d8a.zip.apk android
com.alpras.dialer
com.alpras.dialer.SplashActivity
Activities
Permissions
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.PROCESS_OUTGOING_CALLS
android.permission.CALL_PHONE
android.permission.READ_CALL_LOG
android.permission.READ_PHONE_STATE
android.permission.WRITE_CALL_LOG
android.permission.MANAGE_OWN_CALLS
android.permission.RECORD_AUDIO
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MANAGE_EXTERNAL_STORAGE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_PHONE_NUMBERS
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_CONTACTS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.SCHEDULE_EXACT_ALARM
android.permission.USE_EXACT_ALRAM
Receivers
com.alpras.dialer.BootCompletedReceiver
android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
com.alpras.dialer.DownloadResurceReceiver
android.intent.action.DOWNLOADIMAGE
Services
com.alpras.dialer.CallService
android.telecom.InCallService
com.alpras.dialer.CustomAccessibilityService
android.accessibilityservice.AccessibilityService