wocwvy.czyxoxmbauu.slsa.ncec.myvbo
android.intent.action.MAIN
wocwvy.czyxoxmbauu.slsa.opzsdswiddt
android.intent.action.SEND
android.intent.action.SENDTO
General
-
Target
file.apk
-
Size
286KB
-
MD5
4f8e4940fb9d888231e9e46c5543555d
-
SHA1
069cb5382dd69890f8347183780b580bee895cff
-
SHA256
a742092af5eb0a8922aef65b0f80b93db243d9bd6f13e191dad5feb818d4b590
-
SHA512
1dc1a3e91785efbdc78b274a6f86552229bf2d003d192086bca1fa6b5b3dd2fbb53ec8d31b7ca9bc1a7240fb3ce7574848afbb74ce347c30e7dd6fdbd4829339
-
SSDEEP
6144:WmPMMwnOO8eSVORCOSDjPkUK00f636Q6m6g6t:WmPhtwRChn7KX
Score
10/10
Malware Config
Extracted
Family
anubis
C2
http://a1034400.xsph.ru
Signatures
-
Anubis family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 12 IoCs
Files
-
file.apk
wocwvy.czyxoxmbauu.slsa
wocwvy.czyxoxmbauu.slsa.ncec.myvbo
Android Permissions
file.apk
Permissions
android.permission.ACCESS_FINE_LOCATION
android.permission.GET_TASKS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.PACKAGE_USAGE_STATS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_NETWORK_STATE
android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.READ_CONTACTS
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS