Customer Support[.]s84[.]apk

General

Target

Customer Support.s84.apk
Size

5.3MB
MD5

d5aeab1fecfdbff3e19f7bd253cc26a3
SHA1

364b6ed46baa9bae8166955b16cfda983a24dcbc
SHA256

a95cb4e94461b1bd6ed3a285371eea580fde3fa90aeaab436266583cc7402202
SHA512

b127135042a94bf2ac08cbc1bae86a8470a49c1a479051e4df93b6c8b64ebb31e8bd48420a55b667e4ea58b919a4fb5b66f8f6d64efb9ef0c9cbea728c0a0be7
SSDEEP

98304:wpe8CSTVINQIbAfiV3lt1svB7fMRW/wt8HNmut7O5tiH:wk8CQV40blYiwSNmbg

Score

6^/10

Malware Config

Signatures

Attempts to obfuscate APK file format
Applies obfuscation techniques to the APK format in order to hinder analysis

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

Customer Support.s84.apk
.apk android

com.facebook.smsrecevies

com.dhruv.smsrecevier.MainActivity

Activities

com.dhruv.smsrecevier.MainActivity

android.intent.action.MAIN

Permissions

android.permission.RECEIVE_SMS
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.SEND_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.BIND_NOTIFICATION_LISTENER_SERVICE
android.permission.INTERNET
android.permission.READ_LOGS
net.dinglisch.android.tasker.PERMISSION_RUN_TASKS
android.permission.BLUETOOTH_ADMIN
android.permission.VIBRATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CHANGE_WIFI_STATE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.ACCESS_NETWORK_STATE
android.permission.USE_FINGERPRINT
android.permission.ACCESS_WIFI_STATE
android.permission.BLUETOOTH
android.permission.WRITE_SETTINGS
android.permission.READ_SETTINGS
android.permission.RECEIVE_BOOT_COMPLETED

Receivers

com.dhruv.smsrecevier.ReceiveSms

android.provider.Telephony.SMS_RECEIVED

roxma.org.sms_forward.SmsListener

android.provider.Telephony.SMS_RECEIVED

com.dhruv.smsrecevier.startupOnBootUpReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON

com.applisto.appcloner.classes.BootReceiver

android.intent.action.BOOT_COMPLETED

Services

Android Permissions

Customer Support.s84.apk

Permissions

android.permission.RECEIVE_SMS

android.permission.INTERNET

android.permission.FOREGROUND_SERVICE

android.permission.SEND_SMS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.BIND_NOTIFICATION_LISTENER_SERVICE

android.permission.INTERNET

android.permission.READ_LOGS

net.dinglisch.android.tasker.PERMISSION_RUN_TASKS

android.permission.BLUETOOTH_ADMIN

android.permission.VIBRATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.CHANGE_WIFI_STATE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.ACCESS_NETWORK_STATE

android.permission.USE_FINGERPRINT

android.permission.ACCESS_WIFI_STATE

android.permission.BLUETOOTH

android.permission.WRITE_SETTINGS

android.permission.READ_SETTINGS

android.permission.RECEIVE_BOOT_COMPLETED

Sharing

General

Malware Config

Signatures

Files

com.facebook.smsrecevies

com.dhruv.smsrecevier.MainActivity

Activities

com.dhruv.smsrecevier.MainActivity

Permissions

Receivers

com.dhruv.smsrecevier.ReceiveSms

roxma.org.sms_forward.SmsListener

com.dhruv.smsrecevier.startupOnBootUpReceiver

com.applisto.appcloner.classes.BootReceiver

Services

Android Permissions

Customer Support.s84.apk