Overview

overview

10

Static

static

10

SampHack.apk

android-13-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    SampHack.apk

  • Size

    5.5MB

  • MD5

    2a437a8a89d967d5f427ac2dab130b08

  • SHA1

    27e41b8577e5020f5b0cbb67e11ed5cd0651bf26

  • SHA256

    4cc9744c840ff2d81d2e9ec43aebe34d1f35cd4e92103642526e289ea576c0ab

  • SHA512

    785244791b11ba4fc9575b89a42919f8c74a84cbfde58f0b750fc63adc53e1a6519438310c8e91d52fe7bc534b002bcd03cb9605d9b2efdd2fe9a913474e3f41

  • SSDEEP

    98304:RdgUtVMWIivYb8AptrwAz4/GRW8uW/ARubXWUh8UofrFC+Vl6A:RntVDIiQAAptkAc/Go8uWI2XLyl6A

Score
10/10
airavat

Malware Config

Extracted

Family

airavat

C2

https://DATABASE URL

Signatures

  • Airavat family
    airavat
  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 11 IoCs

Files

  • SampHack.apk
    .apk android

    sigma.male

    .MainActivity


Android Permissions

SampHack.apk

Permissions

android.permission.INTERNET

android.permission.VIBRATE

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECORD_AUDIO

android.permission.FOREGROUND_SERVICE

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.BROADCAST_SMS

android.permission.SEND_SMS_NO_CONFIRMATION

android.permission.CALL_PHONE

android.permission.WRITE_CALL_LOG

android.permission.READ_CALL_LOG

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.SET_WALLPAPER