General

  • Target

    9bf9b54ff34459ea77c1d3c849de9bc557b40c9a13ac9e20254eaf1569ceb05e.zip

  • Size

    1.0MB

  • MD5

    7c04a6090ea39a1311f2214962b3e2d1

  • SHA1

    37b77eb72a133011993c79cb726f9b345cf2c2a0

  • SHA256

    4894af6c172ffe621e601ff731f697989e9a7a7a53064c917b393242263d86eb

  • SHA512

    161ebca8a04771968ac26afc187e0005a4f88d7a2b8986168b7b9d95aa15af11a12b8a1581f585366302569caf903937dbc11a3de49511dd3f667d7acbdaf47b

  • SSDEEP

    24576:xtyGvaqONfDTIRXYd5db5on2qimIeQy7Sr2QouGAB0gfVm:H/v722IdunVimI9yG3ol80L

Score
6/10

Malware Config

Signatures

  • Attempts to obfuscate APK file format

    Applies obfuscation techniques to the APK format in order to hinder analysis

  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 7 IoCs

Files

  • 9bf9b54ff34459ea77c1d3c849de9bc557b40c9a13ac9e20254eaf1569ceb05e.zip
    .zip

    Password: infected

  • 9bf9b54ff34459ea77c1d3c849de9bc557b40c9a13ac9e20254eaf1569ceb05e.apk
    .apk android arch:arm64 arch:arm arch:x86

    Password: infected

    com.beginhigh19

    com.beginhigh19.p079j