ahmyth | virus_dont_install[.]apk

General

Target

virus_dont_install.apk
Size

263KB
MD5

bac5a03477cfb01fff78546c4ea0364f
SHA1

fdca8e7c03d88d30694e669db2a211e957166725
SHA256

50188b7ed007103b238fe5cf5417e12057373bfcde8324779337a19f00ff39d0
SHA512

ee0f2c5a3626cb3a9209bd7bc96c32c78ab4b11ccb7631e9fe43c3d550054f2dc4999f976faeae84906aed7fb18c51911ed0a737b3140faaf090d99484d08459
SSDEEP

6144:xkW7l340W2BWzvyWlj3vPWDtUI0rgG6Q2fyMFFAdJjNr90M:xkW7lo6BijVPWyIg+fyMFydj9F

Score

10^/10

ahmyth

Malware Config

Extracted

Family

ahmyth

C2

http://ubxn6j9dc.localto.net:2424

Signatures

Ahmyth family
ahmyth

Requests dangerous framework permissions 10 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

virus_dont_install.apk
.apk android

ahmyth.mine.king.ahmyth

ahmyth.mine.king.ahmyth.MainActivity

Activities

ahmyth.mine.king.ahmyth.MainActivity

android.intent.action.MAIN

Permissions

android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_CALL_LOG
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_CONTACTS

Receivers

ahmyth.mine.king.ahmyth.MyReceiver

android.intent.action.BOOT_COMPLETED

Services

Android Permissions

virus_dont_install.apk

Permissions

android.permission.WAKE_LOCK

android.permission.CAMERA

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_PHONE_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_CALL_LOG

android.permission.RECORD_AUDIO

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_CONTACTS

Sharing

General

Malware Config

Extracted

Signatures

Files

ahmyth.mine.king.ahmyth

ahmyth.mine.king.ahmyth.MainActivity

Activities

ahmyth.mine.king.ahmyth.MainActivity

Permissions

Receivers

ahmyth.mine.king.ahmyth.MyReceiver

Services

Android Permissions

virus_dont_install.apk