Overview

overview

10

Static

static

10

c49c238735...34.apk

android-9-x86

c49c238735...34.apk

android-10-x64

4

c49c238735...34.apk

android-11-x64

4

up.apk

android-9-x86

6

up.apk

android-10-x64

6

up.apk

android-11-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    c49c238735d7ac11e95449ebabffec7581cc74dba8090790d53f1fe4c574d434.bin

  • Size

    4.6MB

  • MD5

    5c9a6a905a6a8999610ab53d48a60764

  • SHA1

    c84c1c32fbc68399d215ef32b8109dbb9654aa91

  • SHA256

    c49c238735d7ac11e95449ebabffec7581cc74dba8090790d53f1fe4c574d434

  • SHA512

    ed8ddfbf6a6b6ea180b56a82b35dbc20d9242b96062704780b9312923ac33b2f6d6fad0dc208842a3990a8220e5822d7ea72c5064e0ae105cfa6248431f574d4

  • SSDEEP

    98304:j37e8iLYjq9z2LVdx9U/CkeVEz9nA5cX9yt0y4MYb4mU6:j31iAqyVdxm/CkeVEz2cWYb/r

Score
10/10
godfather

Malware Config

Extracted

Family

godfather

C2

https://t.me/trinomazkonera

Signatures

  • Godfather family
    godfather
  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • c49c238735d7ac11e95449ebabffec7581cc74dba8090790d53f1fe4c574d434.bin
    .apk android

    com.trull.blackbrush

    com.trull.blackbrush.cytocyst


  • up.apk
    .apk android

    com.metabolizability.sunbathe

    com.metabolizability.sunbathe.parrotcoal


Android Permissions

c49c238735d7ac11e95449ebabffec7581cc74dba8090790d53f1fe4c574d434.bin

Permissions

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.QUERY_ALL_PACKAGES