com.etechd.l3mon.MainActivity
android.intent.action.MAIN
General
-
Target
build.s.apk
-
Size
267KB
-
MD5
5d75e747ee6c22e97bb8b6583c613c89
-
SHA1
e6dd14937e631b86fa9cf52e46c5b875a772a5ee
-
SHA256
057689e28c35811575811beaa1fa07bdc0130188f4590d286a564a0236060048
-
SHA512
00c5dff37a9a550d6149caa5e11cf89fee4970e16e8363d133f25f1b1f99443ffc54e36e8485dd93ef48481328efb35963112896f5d98400bd02b35e77573d66
-
SSDEEP
6144:VAqOHJbQC/0BbaRWSoTlA87mhYrIZFjllLGvNv90ku:VAfJc4NUA8TI3llLo9A
Score
10/10
Malware Config
Extracted
Family
ahmyth
C2
http://51.20.2.165:3001
Signatures
-
Ahmyth family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 11 IoCs
Files
-
build.s.apk
com.etechd.l3mon
com.etechd.l3mon.MainActivity
Android Permissions
build.s.apk
Permissions
android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_CALL_LOG
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_CONTACTS