Overview

overview

10

Static

static

6

239e662b90...24.apk

android-9-x86

10

239e662b90...24.apk

android-10-x64

10

239e662b90...24.apk

android-11-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    239e662b900dee78d6d7c9cb96b7228d6902b239dcd7e7fc53b6123fe119d524.bin

  • Size

    4.2MB

  • MD5

    881dae2cfaf07f517d387d2efc4374f1

  • SHA1

    8805a4f0be7f3b8f7c1d65255dae4414cf9098f2

  • SHA256

    239e662b900dee78d6d7c9cb96b7228d6902b239dcd7e7fc53b6123fe119d524

  • SHA512

    995d589e281dac65473fe76552485f937f9158b94269695093910b73ab65f29b11bf755a3010b359da963c1e0bb4f7c482c9430c94bbc23fb062733041cd6f69

  • SSDEEP

    98304:XQEEAQu4Sb2yubA4iLZzwUCpVNj8lnUZliI1gqi4YaDVeCz7U0Gqi45:XDZxCpMlnuIlzapeC80Gs5

Score
6/10

Malware Config

Signatures

  • Attempts to obfuscate APK file format

    Applies obfuscation techniques to the APK format in order to hinder analysis

  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 31 IoCs

Files

  • 239e662b900dee78d6d7c9cb96b7228d6902b239dcd7e7fc53b6123fe119d524.bin
    .apk android

    com.dehodigipuhixoyi.mafuko

    com.dehodigipuhixoyi.mafuko.ronubafitajavu


Android Permissions

239e662b900dee78d6d7c9cb96b7228d6902b239dcd7e7fc53b6123fe119d524.bin

Permissions

com.coloros.operationManual.permission.tipsprovider

com.oppo.permission.safe.BACKUP

com.coloros.codebook.permission.READ

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.GET_ACCOUNTS

android.permission.CHANGE_NETWORK_STATE

android.permission.REQUEST_DELETE_PACKAGES

com.oplus.permission.safe.POWER

android.permission.WRITE_CONTACTS

android.permission.RECEIVE_LAUNCH_BROADCASTS

android.permission.RECEIVE_SMS

android.permission.READ_PHONE_STATE

com.oppo.permission.safe.SECURITY

android.permission.ACCESS_WIFI_STATE

android.permission.DEVICE_POWER

android.permission.WRITE_CONTACTS

android.permission.INTERNET

com.oplus.metis.factdata.permission.DATABASE

android.permission.ACTION_MANAGE_OVERLAY_PERMISSION

android.permission.QUERY_ALL_PACKAGES

android.permission.WAKE_LOCK

android.permission.ACCESS_COARSE_LOCATION

android.permission.WRITE_EXTERNAL_STORAGE

oplus.permission.PHONE_CLONE_DATA_MIGRATION

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

com.oplus.permission.safe.SETTINGS

android.permission.READ_PHONE_STATE

com.coloros.alarmclock.permission.ACCESS_PROVIDER

android.permission.GET_TASKS

android.permission.FORCE_STOP_PACKAGES

android.permission.SYSTEM_ALERT_WINDOW

android.permission.FOREGROUND_SERVICE_LOCATION

android.permission.OVERRIDE_WIFI_CONFIG

android.permission.FOREGROUND_SERVICE

android.permission.INSTALL_PACKAGES

oplus.permission.OPLUS_COMPONENT_SAFE

android.permission.POST_NOTIFICATIONS

oppo.permission.OPPO_COMPONENT_SAFE

com.oppo.permission.RUTILCMD

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.BLUETOOTH_ADVERTISE

android.permission.WRITE_CLIPS

android.permission.WRITE_SECURE_SETTINGS

android.permission.MANAGE_APP_OPS_MODES

com.oplus.thirdkit.permission.SECURITY

com.oplus.permission.safe.AI_APP

android.permission.PEERS_MAC_ADDRESS

android.permission.DISABLE_KEYGUARD

android.permission.CAMERA