General

  • Target

    8bddf2344ed43f36c39ff4d3f7895884b6fd0fb2f2772f3899f59d775c93507d.bin

  • Size

    1.3MB

  • MD5

    1ddfdb871efaa80ce16f786fbd9de2bb

  • SHA1

    855cd7ecdaf888aa9536113c3c61c7c480abd85d

  • SHA256

    8bddf2344ed43f36c39ff4d3f7895884b6fd0fb2f2772f3899f59d775c93507d

  • SHA512

    1a5b8735888ed27e0f2f224fed7aa7d9bc84f9f0ac90a7755c149ae3465325a92101fb3118ab2f2464ff68ea879e4ab995177062bc92a5c4503e1bbe51d66b3d

  • SSDEEP

    24576:e4DgSy1/A8ZN4v77B8dMAhMwIQF4zaXdgdCbvIK/it7acAYf:e4DgS6UC5lSJMbwig7OYf

Score
10/10

Malware Config

Signatures

  • Ermac family
  • Ermac2 payload 1 IoCs
  • Hook family
  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 15 IoCs

Files

  • 8bddf2344ed43f36c39ff4d3f7895884b6fd0fb2f2772f3899f59d775c93507d.bin
    .apk android

    com.dehodigipuhixoyi.mafuko

    com.dehodigipuhixoyi.mafuko.ronubafitajavu


Android Permissions

8bddf2344ed43f36c39ff4d3f7895884b6fd0fb2f2772f3899f59d775c93507d.bin

Permissions

android.permission.INTERNET

android.permission.CAMERA

android.permission.FOREGROUND_SERVICE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.READ_PHONE_STATE

android.permission.READ_PHONE_NUMBERS

android.permission.READ_CALL_LOG

android.permission.CALL_PHONE

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.GET_ACCOUNTS

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACTION_MANAGE_OVERLAY_PERMISSION

android.permission.SYSTEM_ALERT_WINDOW

android.permission.DISABLE_KEYGUARD

android.permission.GET_TASKS

android.permission.QUERY_ALL_PACKAGES

android.permission.GET_CLIPS

android.permission.READ_CLIPS

android.permission.WRITE_CLIPS

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.REQUEST_DELETE_PACKAGES

android.permission.RECEIVE_LAUNCH_BROADCASTS

android.permission.QUICKBOOT_POWERON