General
-
Target
de2e27ab100bdbfd4e19d25cf2070c8a432567ddf3f16755df07080fa6a28c56.bin
-
Size
4.2MB
-
Sample
240913-117xcasdje
-
MD5
15d67294f491e440730620677c09a21d
-
SHA1
be49062a7fc2cb5b2ecfe42effa1d014f5c2d12a
-
SHA256
de2e27ab100bdbfd4e19d25cf2070c8a432567ddf3f16755df07080fa6a28c56
-
SHA512
a7076d56f0da6b2731aa63d00fc4f7713a254fdd20f0f0d53ae088d55cacafa21ff5e921dd97a05c071024535df9d0cca903c56a0ea04528f295fe6f2eb409bd
-
SSDEEP
98304:ruiNrDOS23Ji52FaoxtfxyRTORMrujKQ266Eli1RRl:ruiNs3JiMA0RxyRThrqp6mEB
Malware Config
Targets
-
-
Target
de2e27ab100bdbfd4e19d25cf2070c8a432567ddf3f16755df07080fa6a28c56.bin
-
Size
4.2MB
-
MD5
15d67294f491e440730620677c09a21d
-
SHA1
be49062a7fc2cb5b2ecfe42effa1d014f5c2d12a
-
SHA256
de2e27ab100bdbfd4e19d25cf2070c8a432567ddf3f16755df07080fa6a28c56
-
SHA512
a7076d56f0da6b2731aa63d00fc4f7713a254fdd20f0f0d53ae088d55cacafa21ff5e921dd97a05c071024535df9d0cca903c56a0ea04528f295fe6f2eb409bd
-
SSDEEP
98304:ruiNrDOS23Ji52FaoxtfxyRTORMrujKQ266Eli1RRl:ruiNs3JiMA0RxyRThrqp6mEB
Score7/10-
Queries account information for other applications stored on the device
Application may abuse the framework's APIs to collect account information stored on the device.
-
Queries the phone number (MSISDN for GSM devices)
-
Reads the content of the SMS messages.
-
Reads the content of the call log.
-
Acquires the wake lock
-
Makes use of the framework's foreground persistence service
Application may abuse the framework's foreground service to continue running in the foreground.
-
Queries the unique device ID (IMEI, MEID, IMSI)
-
Reads information about phone network operator.
-
Requests disabling of battery optimizations (often used to enable hiding in the background).
-