com.vnpt.tnvn.MainActivity
android.intent.action.MAIN
android.intent.action.VIEW
com.vnpt.vnptmedia.soft.vnptpaysdkfull.ui.bank.WebviewBankActivity
android.intent.action.VIEW
Static task
static1
1 signatures
General
-
Target
240928-vg4gxswerq_pw_infected.zip
-
Size
130.4MB
-
MD5
30cf0bc3a18b353cd04ceaf71f4eddd4
-
SHA1
186d9486f809e9dda3bbef00c1f8b98b329dd802
-
SHA256
2cd36ebeacd65ccd7588b027f1c6d123e3c6e984c8797cc4eb9caeefce0c0c05
-
SHA512
a9a42170b0d1f4ab1583cb47b4e1e70818dc726052c2be5827ef525d6a8036f30460afb0ca9ec85a8b2a5969f3ce77f6ee27b5f288192d25c7be9de99dbb403a
-
SSDEEP
3145728:laSGZFRlE8mdEg19m3lNYIk2zu9mtXLASKnsyRM:wTepdBI0p2S9c1KsT
Score
6/10
Malware Config
Signatures
-
Requests dangerous framework permissions 13 IoCs
description ioc Required to be able to access the camera device. android.permission.CAMERA Allows an application to read from external storage. android.permission.READ_EXTERNAL_STORAGE Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows an application to read image files from external storage. android.permission.READ_MEDIA_IMAGES Allows an application to read video files from external storage. android.permission.READ_MEDIA_VIDEO Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows an application to read the user's contacts data. android.permission.READ_CONTACTS Allows an application to write the user's contacts data. android.permission.WRITE_CONTACTS Allows an app to post notifications. android.permission.POST_NOTIFICATIONS Allows applications to use exact alarm APIs. android.permission.SCHEDULE_EXACT_ALARM Allows access to the list of accounts in the Accounts Service. android.permission.GET_ACCOUNTS Allows an app to access precise location. android.permission.ACCESS_FINE_LOCATION Allows an app to access approximate location. android.permission.ACCESS_COARSE_LOCATION
Files
-
240928-vg4gxswerq_pw_infected.zip.zip
Password: infected
-
Thanh niên Việt Nam_2.0.2_apkcombo.com.apk.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64
com.vnpt.tnvn
com.vnpt.tnvn.MainActivity
Activities
Permissions
android.permission.CAMERA
android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_MEDIA_IMAGES
android.permission.READ_MEDIA_VIDEO
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.WAKE_LOCK
android.permission.POST_NOTIFICATIONS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.USE_FULL_SCREEN_INTENT
android.permission.SCHEDULE_EXACT_ALARM
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
android.permission.ACCESS_ADSERVICES_ATTRIBUTION
android.permission.ACCESS_ADSERVICES_AD_ID
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.FOREGROUND_SERVICE
com.vnpt.tnvn.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
android.permission.ACCESS_WIFI_STATE
android.permission.GET_ACCOUNTS
android.permission.USE_FINGERPRINT
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
com.sec.android.provider.badge.permission.WRITE
com.sec.android.provider.badge.permission.READ
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
android.permission.READ_APP_BADGE
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
me.everything.badger.permission.BADGE_COUNT_READ
me.everything.badger.permission.BADGE_COUNT_WRITE
Receivers
io.flutter.plugins.firebase.messaging.FlutterFirebaseMessagingReceiver
com.google.android.c2dm.intent.RECEIVE
com.dexterous.flutterlocalnotifications.ScheduledNotificationBootReceiver
android.intent.action.BOOT_COMPLETED
android.intent.action.MY_PACKAGE_REPLACED
android.intent.action.QUICKBOOT_POWERON
com.htc.intent.action.QUICKBOOT_POWERON
dev.fluttercommunity.plus.share.SharePlusPendingIntent
EXTRA_CHOSEN_COMPONENT
com.google.firebase.iid.FirebaseInstanceIdReceiver
com.google.android.c2dm.intent.RECEIVE
androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy
android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW
androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy
android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK
androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy
android.net.conn.CONNECTIVITY_CHANGE
androidx.work.impl.background.systemalarm.RescheduleReceiver
android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED
androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver
androidx.work.impl.background.systemalarm.UpdateProxies
androidx.work.impl.diagnostics.DiagnosticsReceiver
androidx.work.diagnostics.REQUEST_DIAGNOSTICS
androidx.profileinstaller.ProfileInstallReceiver
androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION
com.vnpt.vnptmedia.soft.vnptpaysdkfull.internal.tool.sms.SmsReceiver
android.provider.Telephony.SMS_RECEIVED
Services
io.flutter.plugins.firebase.messaging.FlutterFirebaseMessagingService
com.google.firebase.MESSAGING_EVENT
com.google.android.gms.metadata.ModuleDependencies
com.google.android.gms.metadata.MODULE_DEPENDENCIES
com.google.firebase.messaging.FirebaseMessagingService
com.google.firebase.MESSAGING_EVENT