com.etechd.l3mon.MainActivity
android.intent.action.MAIN
General
-
Target
TASK-MANAGER.apk
-
Size
256KB
-
MD5
aff6bce844a656890e3a647a8871c479
-
SHA1
070c319ac871d9bd63a6af562bd8e5b237e01acf
-
SHA256
ab5d91a02f508e5e0e9567e1558ce1e006c0e30a6b432bef72842a1adebffbff
-
SHA512
c7e7b41fc9bcda5fb1c4741bc7ece6d6714265e06b3835a2c307a1a1d279ba109f91d762008fb672f3a90e78cac121163424569f8d6f08f20dcecc0d2f5e59c8
-
SSDEEP
6144:vie8HiRem77eyFBPxoLZ7ILWFDPLnQ/9UNPIDdjQXvhuN5DuUuF:vi7HiRh6CoV08nI9UNADlQ/h6aBF
Score
10/10
Malware Config
Extracted
Family
ahmyth
C2
http://10.20.30.40:4488
Signatures
-
Ahmyth family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 11 IoCs
Files
-
TASK-MANAGER.apk
com.etechd.l3mon
com.etechd.l3mon.MainActivity
Android Permissions
TASK-MANAGER.apk
Permissions
android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_CALL_LOG
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_CONTACTS