General

  • Target

    45bfd8f41285445153e72968de43bdc424f3aa89a8dbed8e4b7f65035fe9a508.bin

  • Size

    3.3MB

  • MD5

    def38b9daee0654daad2a5b04bcf70eb

  • SHA1

    09df3907111fed6bfa1ca4d2b1e19a98c8a1e85b

  • SHA256

    45bfd8f41285445153e72968de43bdc424f3aa89a8dbed8e4b7f65035fe9a508

  • SHA512

    52b691e6f952d2f181baff8907f24efa7c4d33e6c5b51a20b7743d7f0a2b5d3dd4c7539ce4c63a80d08ce7af3cc31e0ce6c0b149e0f6b5ddd8edf39de1f8c454

  • SSDEEP

    49152:Yg1Zs3sxmibDRMQiZdQpwT0WiKMoaEJtiPDcLmEc+UUzq0sdkEjIPJicUHqqS3rZ:Yg1ZcriJxMqpkrRecLbKj8JiBqRqwrVJ

Score
6/10

Malware Config

Signatures

  • Attempts to obfuscate APK file format

    Applies obfuscation techniques to the APK format in order to hinder analysis

  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 29 IoCs

Files

  • 45bfd8f41285445153e72968de43bdc424f3aa89a8dbed8e4b7f65035fe9a508.bin
    .apk android

    com.nanapusomodo.toru

    com.nanapusomodo.toru.tucupeyo


Android Permissions

45bfd8f41285445153e72968de43bdc424f3aa89a8dbed8e4b7f65035fe9a508.bin

Permissions

android.permission.CAMERA

android.permission.FOREGROUND_SERVICE_LOCATION

com.oppo.permission.RUTILCMD

android.permission.ACCESS_NETWORK_STATE

android.permission.DELETE_PACKAGES

android.permission.READ_CONTACTS

com.oplus.permission.safe.PRIVATE

android.permission.FOREGROUND_SERVICE

android.permission.CALL_PHONE

android.permission.GET_ACCOUNTS

android.permission.READ_CALL_LOG

android.permission.CHANGE_NETWORK_STATE

android.permission.MANAGE_EXTERNAL_STORAGE

com.oplus.codebook.permission.BACKUP_AND_RESTORE

android.permission.PACKAGE_USAGE_STATS

android.permission.GET_PACKAGE_SIZE

android.permission.QUERY_ALL_PACKAGES

heytap.permission.cloud.ACCESS_CLOUD

android.permission.UPDATE_APP_OPS_STATS

com.oppo.launcher.permission.READ_SETTINGS

android.permission.NEARBY_WIFI_DEVICES

com.oplus.permission.safe.SETTINGS

android.permission.RECEIVE_BOOT_COMPLETED

com.oplus.permission.safe.SAU

com.coloros.codebook.permission.READ

com.oppo.launcher.permission.WRITE_SETTINGS

android.permission.MANAGE_USB

android.permission.WRITE_MEDIA_STORAGE

android.permission.READ_PHONE_NUMBERS

com.oplus.permission.safe.APP_MANAGER

com.oplus.permission.safe.PASSWORD

android.permission.RECEIVE_LAUNCH_BROADCASTS

android.permission.DISABLE_KEYGUARD

android.permission.BLUETOOTH_CONNECT

android.permission.MODIFY_PHONE_STATE

com.oplus.thirdkit.permission.SECURITY

oplus.permission.PHONE_CLONE_DATA_MIGRATION

com.oppo.permission.safe.SECURITY

com.oplus.permission.safe.PROTECT

android.permission.ACCESS_FINE_LOCATION

android.permission.RECEIVE_SMS

android.permission.GET_TASKS

android.permission.ACCESS_BACKGROUND_LOCATION

com.oplus.permission.safe.SECURITY

com.oppo.permission.safe.SAU

android.permission.WRITE_SECURE_SETTINGS

com.android.permission.GET_INSTALLED_APPS

android.permission.READ_CLIPS

com.oplus.permission.safe.AI_APP

android.permission.CAMERA