.MainActivity
android.intent.action.MAIN
General
-
Target
Instagram_src.apk
-
Size
5.4MB
-
MD5
5a303328428b8e1109fa5894b453d00c
-
SHA1
e12cbd3385ac9ec552287d0f44c172fe2ecc98c1
-
SHA256
dbbe8bb40f158a4a9cb0cbfbdf6f08b08301dfcc88e02352d54583d8770baef2
-
SHA512
f4dfbb476fd6b265c6a0ac89c72159863e6e4c391e64e8ef960a0a6fc2eb1dfc906523a9027d6623f47afcfc1476ddaed8f593e215400f1715af14a174cb34e3
-
SSDEEP
98304:koOaEMM3MisEiPYCjMvNa8GkuRO9fBDXW8UofrFRQ0nAOubXW+kDyVOH:kbZviPRqa8G1EpHdAxXdk8OH
Score
10/10
Malware Config
Extracted
Family
airavat
C2
https://andronix-551b0-default-rtdb.firebaseio.com
Signatures
-
Airavat family
-
Declares broadcast receivers with permission to handle system events 1 IoCs
-
Declares services with permission to bind to the system 2 IoCs
-
Requests dangerous framework permissions 11 IoCs
Files
-
Instagram_src.apk
sigma.male
.MainActivity
Android Permissions
Instagram_src.apk
Permissions
android.permission.INTERNET
android.permission.VIBRATE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.FOREGROUND_SERVICE
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.BROADCAST_SMS
android.permission.SEND_SMS_NO_CONFIRMATION
android.permission.CALL_PHONE
android.permission.WRITE_CALL_LOG
android.permission.READ_CALL_LOG
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.SET_WALLPAPER