com.overtrample.unlatched.stormtossed
android.intent.action.MAIN
android.intent.action.VIEW
General
-
Target
fb034abe26c258845c226a4d2c65d0266e0d74b6f6ef37c25a86a3acbbfdc353.bin
-
Size
3.9MB
-
MD5
a8867673095f5e4be8e5a76ddbdec4c3
-
SHA1
a443f19c03e49927884899da8fd69745e7672d0d
-
SHA256
fb034abe26c258845c226a4d2c65d0266e0d74b6f6ef37c25a86a3acbbfdc353
-
SHA512
2807b0c2d1ff9674399ceb0315b87da1e40b30d9b1ab4123fa2d41e03c4f1b8a675f9f99675d7dfcbbf35750a2c1eff4fc86f0d22810b4b066ef74b44000fc11
-
SSDEEP
98304:fYX3sLQmf2g5hP75IPe2P4OH3BmNhqM9U2s1xorcIuOb8LYZ:fYsVhtIPeO4OHR20MworcIUYZ
Score
10/10
Malware Config
Extracted
Family
godfather
C2
https://t.me/napikozaremossod
Signatures
-
Godfather family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 1 IoCs
Files
-
fb034abe26c258845c226a4d2c65d0266e0d74b6f6ef37c25a86a3acbbfdc353.bin
com.overtrample.unlatched
com.overtrample.unlatched.stormtossed
Android Permissions
fb034abe26c258845c226a4d2c65d0266e0d74b6f6ef37c25a86a3acbbfdc353.bin
Permissions
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WAKE_LOCK
android.permission.POST_NOTIFICATIONS
android.permission.QUERY_ALL_PACKAGES
com.overtrample.unlatched.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION