com.etechd.l3mon.MainActivity
android.intent.action.MAIN
General
-
Target
2aec43a86c635cae0ec5f4bd2e216eba61da36b65068a86da324224627193bce.apk
-
Size
267KB
-
MD5
cf1832b4243205d3b3bca133d2129f7e
-
SHA1
7ce6f37d41ae1a6282cac0e285da75a2a2c4871f
-
SHA256
2aec43a86c635cae0ec5f4bd2e216eba61da36b65068a86da324224627193bce
-
SHA512
c3c3eabf2a59f950f3638e3360b6de2e2071261a553daedacbe74a16bb887c0f71005872338c79318c30facf0ba975aaf3c3f44d5d1bfd6f42e0551b44e83c57
-
SSDEEP
6144:UEow1GGGTBC22Lri4EvAj0pl30q4RMdBsMYW3N/90W:UEow1NaIbJjg0fQBs3Q9B
Score
10/10
Malware Config
Extracted
Family
ahmyth
C2
http://127.0.0.1:22222
Signatures
-
Ahmyth family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 11 IoCs
Files
-
2aec43a86c635cae0ec5f4bd2e216eba61da36b65068a86da324224627193bce.apk
com.etechd.l3mon
com.etechd.l3mon.MainActivity
Android Permissions
2aec43a86c635cae0ec5f4bd2e216eba61da36b65068a86da324224627193bce.apk
Permissions
android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_CALL_LOG
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_CONTACTS