otpstealer | Familysearch_español_Psbb_millen_7504353566[.]apk

Resubmissions

30-09-2024 15:46

240930-s72pxaxdle 10

30-09-2024 15:42

240930-s5np9sshnr 10

22-08-2024 13:40

240822-qywfessepn 10

Sharing

Copy URL

Twitter E-mail

General

Target

Familysearch_español_Psbb_millen_7504353566.apk
Size

34.3MB
MD5

ee121a0d0d8a8e3b74e8e09b86c85dd9
SHA1

4ddc3d39951a568b0d18c9a5078fe27371c129e6
SHA256

196886b144082ab89d294f2de275a86b00bb362d87787bfc5e033f84d1cc1faf
SHA512

1227d9015e039c608c85fce11b5ac4790310ca26f97a4892c0559a550529def21d6ab6f82697362e427fe68037e051f098ba7ea00b6e14cac85604b76bbe3e6f
SSDEEP

786432:ylAucwugZoGimHryxPwIDDXrkOnfxq+iL:3JaryaIXbdK

Score

10^/10

otpstealer

Malware Config

Signatures

Otpstealer family
otpstealer

Otpstealer payload 1 IoCs

resource	yara_rule
sample	family_otpstealer

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS

Files

Familysearch_español_Psbb_millen_7504353566.apk
.apk android arch:arm64 arch:arm

com.simplemobiletools.launcher

com.simplemobiletools.launcher.activities.MainActivity

Activities

com.simplemobiletools.launcher.activities.MainActivity

android.content.pm.action.CONFIRM_PIN_SHORTCUT
android.intent.action.MAIN

com.simplemobiletools.launcher.activities.SettingsActivity

android.intent.action.APPLICATION_PREFERENCES

Permissions

android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.RECEIVE_SMS
android.permission.QUERY_ALL_PACKAGES
android.permission.BIND_APPWIDGET
android.permission.REQUEST_DELETE_PACKAGES
android.permission.EXPAND_STATUS_BAR

Receivers

com.simplemobiletools.launcher.apper.MyReceiver

android.provider.Telephony.SMS_DELIVER
android.provider.Telephony.SMS_RECEIVED

com.simplemobiletools.commons.receivers.SharedThemeReceiver

com.simplemobiletools.commons.SHARED_THEME_ACTIVATED
com.simplemobiletools.commons.SHARED_THEME_UPDATED

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

Services

Android Permissions

Familysearch_español_Psbb_millen_7504353566.apk

Permissions

android.permission.INTERNET

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_SMS

android.permission.QUERY_ALL_PACKAGES

android.permission.BIND_APPWIDGET

android.permission.REQUEST_DELETE_PACKAGES

android.permission.EXPAND_STATUS_BAR

Resubmissions

Sharing

General

Malware Config

Signatures

Files

com.simplemobiletools.launcher

com.simplemobiletools.launcher.activities.MainActivity

Activities

com.simplemobiletools.launcher.activities.MainActivity

com.simplemobiletools.launcher.activities.SettingsActivity

Permissions

Receivers

com.simplemobiletools.launcher.apper.MyReceiver

com.simplemobiletools.commons.receivers.SharedThemeReceiver

androidx.profileinstaller.ProfileInstallReceiver

Services

Android Permissions

Familysearch_español_Psbb_millen_7504353566.apk