com.unseptated.underhung.ladderway
android.intent.action.MAIN
android.intent.action.VIEW
General
-
Target
b60d7d8d735b94361931d60d903b262142acc50dd867815110b3bd68a854f459.bin
-
Size
3.9MB
-
MD5
afbe5fef700fd18136d1810d86a9d00c
-
SHA1
d1c9310005cace73b8d5860188a8733e0afd984e
-
SHA256
b60d7d8d735b94361931d60d903b262142acc50dd867815110b3bd68a854f459
-
SHA512
71143dbf2a259a4718e5629a1e7e76de250fceead76e0001e681e7dbc5a14b02dd1a388563515bb2bd9d2400a4715a5fac224aac32e2f40dd7b31ee79b14494f
-
SSDEEP
98304:I8NIS6rtk5TQmTHz0eQSMA+75RUqlqX0wtMCsfzw4U:zNIbrtw0mTHIeQSYY1JTsU4U
Score
10/10
Malware Config
Extracted
Family
godfather
C2
https://t.me/trinomazkonera
Signatures
-
Godfather family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 1 IoCs
Files
-
b60d7d8d735b94361931d60d903b262142acc50dd867815110b3bd68a854f459.bin
com.unseptated.underhung
com.unseptated.underhung.ladderway
Android Permissions
b60d7d8d735b94361931d60d903b262142acc50dd867815110b3bd68a854f459.bin
Permissions
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WAKE_LOCK
android.permission.POST_NOTIFICATIONS
android.permission.QUERY_ALL_PACKAGES
com.unseptated.underhung.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION