Overview

overview

10

Static

static

10

337756abc3...21.apk

android-9-x86

1

337756abc3...21.apk

android-10-x64

1

337756abc3...21.apk

android-11-x64

1

childapp.apk

android-9-x86

childapp.apk

android-10-x64

10

childapp.apk

android-11-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    337756abc3fa02dfe09bc0e5e1b1d79e044df39d43ab83610ceba38d313ed821.bin

  • Size

    2.7MB

  • MD5

    6ff4f3fa1d7f7bc9bfe57a5398cc1f3d

  • SHA1

    23167df1f7acdd50c75683320d2902f1c248e2c6

  • SHA256

    337756abc3fa02dfe09bc0e5e1b1d79e044df39d43ab83610ceba38d313ed821

  • SHA512

    77fb0ba1aa52da15741b03aed9f7a01039de2cb2cc441637640677ca9d9b33e4ebe52be8cc60e1599b977ee0a4505fc7cc39bb6fbb645c89a4de09cb2b41b6ea

  • SSDEEP

    49152:JBrHKdqNDcZJEH8SpZqqqvDzPPifbH5nj/0XFfC0DFnvAfPZy54gzJPx:HqscJEH8SpZqqqHsJjc1fBnOo54MJ

Score
10/10
ermac

Malware Config

Signatures

  • Ermac family
    ermac
  • Ermac2 payload 2 IoCs
  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 3 IoCs

Files

  • 337756abc3fa02dfe09bc0e5e1b1d79e044df39d43ab83610ceba38d313ed821.bin
    .apk android

    com.appd.instll.load

    com.appd.instll.splash


  • childapp.apk
    .apk android

    com.UDjHbYuSgUQH.snqeOjkYttiK

    com.UDjHbYuSgUQH.snqeOjkYttiK.ErGAHQnNOPlj


Android Permissions

337756abc3fa02dfe09bc0e5e1b1d79e044df39d43ab83610ceba38d313ed821.bin

Permissions

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.REQUEST_DELETE_PACKAGES