General

  • Target

    17b3916b2d4ef0726cf9026fb2102c1c2508b1b8474753f18089e416d94edf97.bin

  • Size

    545KB

  • MD5

    79f7e1cea2d309fa7f5bb5b676bb682f

  • SHA1

    0b4e9566c7a63a37d5b3d3c2644fe99fe7769547

  • SHA256

    17b3916b2d4ef0726cf9026fb2102c1c2508b1b8474753f18089e416d94edf97

  • SHA512

    db69025f40aee735a456c8eea182880e2eac957d90d4658c8c725bed4237e9c343d1d5f539c33d68a3252b6666b3cccd3bf7f9fddf2eb1a065ca61ea0c462562

  • SSDEEP

    12288:96F3llX9BfLVHBNmMDcjkcYduxkbpjHrgf6bWpf2ZiL4XO4UdiVHr2lXn:96lllX9fH3pQ0LLgf6yp+ZQ4UaalXn

Score
10/10

Malware Config

Signatures

  • Cerberus family
  • Cerberus payload 1 IoCs
  • Attempts to obfuscate APK file format

    Applies obfuscation techniques to the APK format in order to hinder analysis

  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 2 IoCs
  • Requests dangerous framework permissions 10 IoCs

Files

  • 17b3916b2d4ef0726cf9026fb2102c1c2508b1b8474753f18089e416d94edf97.bin
    .apk android

    com.mhiauaqmlacl.ypmsfwbkjhsbeoz

    com.mhiauaqmlacl.ypmsfwbkjhsbeoz.dhadsej


Android Permissions

17b3916b2d4ef0726cf9026fb2102c1c2508b1b8474753f18089e416d94edf97.bin

Permissions

android.permission.USE_FULL_SCREEN_INTENT

android.permission.FOREGROUND_SERVICE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.CALL_PHONE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.REQUEST_DELETE_PACKAGES

android.permission.SEND_SMS

android.permission.READ_CONTACTS

android.permission.WAKE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.GET_ACCOUNTS

android.permission.RECORD_AUDIO