package.name.ifctsbrfwekkcimpraklcqqoxsjdczd4673
android.intent.action.MAIN
General
-
Target
19880f372f3bcf059e43129f56978ee3
-
Size
39.3MB
-
MD5
19880f372f3bcf059e43129f56978ee3
-
SHA1
b06cf40b5a7668fbcf3880e3cb5af175fca8a773
-
SHA256
bde3d81846abd79435187497bb1d52b24c6c1d6fc9047e2dc2be61b23db3bd61
-
SHA512
1f51ef868e1cccda46cd2661cd51849065d49d01f21a78b86ae3cf270adbfadb0b7b3d065feaa710f5f552894766f983ee47a865b9e0858396d65ace37ce38a6
-
SSDEEP
786432:Bxh2ou5DO1dZDV1FirhsjXe2j4u+WA0ltQsm3dSxea39WSt2XT60RTTc5M:bhYZsdpTFskXHj4u+B0leZNaea8St2Xf
Score
10/10
Malware Config
Extracted
Family
spymax
C2
khalss.zapto.org:1337
Signatures
-
Spymax family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 16 IoCs
Files
-
19880f372f3bcf059e43129f56978ee3
package.name.suffix
package.name.ifctsbrfwekkcimpraklcqqoxsjdczd4673
Android Permissions
19880f372f3bcf059e43129f56978ee3
Permissions
android.permission.WRITE_SETTINGS
android.permission.WRITE_SECURE_SETTINGS
android.permission.FOREGROUND_SERVICE
android.permission.READ_SMS
android.permission.READ_CALL_LOG
android.permission.READ_CONTACTS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.GET_ACCOUNTS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CAMERA
android.permission.INTERNET
android.permission.SYSTEM_ALERT_WINDOW
android.permission.RECORD_AUDIO
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
com.android.alarm.permission.SET_ALARM
android.permission.WRITE_CALL_LOG
android.permission.WRITE_CONTACTS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
com.oppo.launcher.permission.READ_SETTINGS
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.CALL_PHONE
android.permission.SET_WALLPAPER