Overview

overview

10

Static

static

10

8160d883fc...d8.apk

android-9-x86

4

8160d883fc...d8.apk

android-10-x64

4

8160d883fc...d8.apk

android-11-x64

4

i.apk

android-9-x86

7

i.apk

android-10-x64

6

i.apk

android-11-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8160d883fc3b8bc7b902ab96d3de0fc21d48997d861a8b890d499aaa693f0bd8.bin

  • Size

    4.6MB

  • MD5

    39b91a6637a0544c2181acb1875d10fd

  • SHA1

    570f8ebf31ecb850b272ea069a431dbba06b7519

  • SHA256

    8160d883fc3b8bc7b902ab96d3de0fc21d48997d861a8b890d499aaa693f0bd8

  • SHA512

    c1815eea4b93d6e4ae89ee98fa8f4738936068e11fc2b7f012b30ddb58a945003a0431e40d2df4e6796f4d2470fbc471040f67f784452146fac8665b74e8c461

  • SSDEEP

    98304:3wvIl701zShJA86jIoDbaMEkZSaO7NaN8aRbn:3wB1zS16jIObE8j++bn

Score
10/10
godfather

Malware Config

Extracted

Family

godfather

C2

https://t.me/tumonokasiperake

Signatures

  • Godfather family
    godfather
  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • 8160d883fc3b8bc7b902ab96d3de0fc21d48997d861a8b890d499aaa693f0bd8.bin
    .apk android

    com.chirau.absolutist

    com.chirau.absolutist.intellectualizing


  • i.apk
    .apk android

    com.unprefined.tsarevitch

    com.unprefined.tsarevitch.sphygmomanometrically


Android Permissions

8160d883fc3b8bc7b902ab96d3de0fc21d48997d861a8b890d499aaa693f0bd8.bin

Permissions

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.QUERY_ALL_PACKAGES