com.rest.tymkos.MainActivity
android.intent.action.MAIN
android.intent.action.VIEW
General
-
Target
4e0a69bf232a9c12ec915bac7dd6789adb2116927b51f10e4bd996cbde854682.bin
-
Size
2.1MB
-
MD5
db2b8d9e6a63938611648554990c4554
-
SHA1
b11c00bf6f049c3ee2b54d5372340d1c30191ddd
-
SHA256
4e0a69bf232a9c12ec915bac7dd6789adb2116927b51f10e4bd996cbde854682
-
SHA512
9dded3680a1425d12cb8bea30918626b8373566ac32b47fcb757ad960be2532009430fab2ce4fcd63f9c041f17a65b3c6f8b8d07022c98587fd250d9be0370ce
-
SSDEEP
49152:yrm0ADPDFE4z5V+ek1i+qzyd4N/h5uKgWR:yCt779kPiu8
Score
10/10
Malware Config
Signatures
-
Vultur family
-
Vultur payload 1 IoCs
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 9 IoCs
Files
-
4e0a69bf232a9c12ec915bac7dd6789adb2116927b51f10e4bd996cbde854682.bin
com.rest.tymkos
com.rest.tymkos.MainActivity
Android Permissions
4e0a69bf232a9c12ec915bac7dd6789adb2116927b51f10e4bd996cbde854682.bin
Permissions
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.RECORD_AUDIO
android.permission.REQUEST_DELETE_PACKAGES
android.permission.FOREGROUND_SERVICE
Manifest.permission.CAPTURE_VIDEO_OUTPUT
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.QUERY_ALL_PACKAGES
android.permission.CHANGE_WIFI_STATE
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_BACKGROUND_LOCATION
android.permission.USE_FINGERPRINT
android.permission.READ_EXTERNAL_STORAGE
android.permission.SCHEDULE_EXACT_ALARM
Manifest.permission.CAPTURE_SECURE_VIDEO_OUTPUT
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
com.android.vending.BILLING
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.REQUEST_DELETE_PACKAGES
android.permission.WRITE_SETTINGS
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
com.google.android.c2dm.permission.RECEIVE