axbanker | 69bfefdb5b0753a99ddd4b02cebee9b88ee6d4b5f232c6d6d66d245807413e4d[.]apk

General

Target

69bfefdb5b0753a99ddd4b02cebee9b88ee6d4b5f232c6d6d66d245807413e4d.apk
Size

6.1MB
MD5

a2ccfdf63995e39969b0df818448a1f6
SHA1

ac4c75c89a5a4ca45db33a673ba13535874fbb7f
SHA256

69bfefdb5b0753a99ddd4b02cebee9b88ee6d4b5f232c6d6d66d245807413e4d
SHA512

67738c2af7ed8707e029eb64a15edbfed819f1b5833a3bf07da106b23919c32564b72e3e1405b69ffb17b6fa922175b533ee9366b2cc291b03d771bbb1ef7e34
SSDEEP

98304:k3BxsSVQdxfm3jtr07bUtRSHd5t+K4UbIzjjaoV53EsrsI:kouUxfm3jp0KqtIz6oVp

Score

10^/10

axbanker

Malware Config

Extracted

Family

axbanker

C2

https://icicirwd.com/api/user/step2

https://newax-d7dc6-default-rtdb.firebaseio.com

Signatures

Axbanker family
axbanker

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

69bfefdb5b0753a99ddd4b02cebee9b88ee6d4b5f232c6d6d66d245807413e4d.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.gameram.gameramer

com.gameram.gameramer.SplashActivity

Activities

com.gameram.gameramer.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.BIND_NOTIFICATION_LISTENER_SERVICE
android.permission.WRITE_SETTINGS
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.CALL_PHONE
android.permission.MODIFY_PHONE_STATE
android.permission.POST_NOTIFICATIONS
android.permission.FOREGROUND_SERVICE_DATA_SYNC
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE_CONNECTED_DEVICE
android.permission.INTERNET
android.permission.READ_PRIVILEGED_PHONE_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.MODIFY_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WAKE_LOCK
android.permission.WRITE_SECURE_SETTINGS
android.permission.USE_FINGERPRINT
android.permission.BIND_ACCESSIBILITY_SERVICE

Receivers

com.gameram.gameramer.MyReceiver

com.example.autostart.ACTION_IMPLICIT_BROADCAST
com.example.autostart.ACTION_EXPLICIT_BROADCAST
android.provider.Telephony.SMS_RECEIVED

Services

Android Permissions

69bfefdb5b0753a99ddd4b02cebee9b88ee6d4b5f232c6d6d66d245807413e4d.apk

Permissions

android.permission.BIND_NOTIFICATION_LISTENER_SERVICE

android.permission.WRITE_SETTINGS

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.CALL_PHONE

android.permission.MODIFY_PHONE_STATE

android.permission.POST_NOTIFICATIONS

android.permission.FOREGROUND_SERVICE_DATA_SYNC

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.FOREGROUND_SERVICE

android.permission.FOREGROUND_SERVICE_CONNECTED_DEVICE

android.permission.INTERNET

android.permission.READ_PRIVILEGED_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.MODIFY_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WAKE_LOCK

android.permission.WRITE_SECURE_SETTINGS

android.permission.USE_FINGERPRINT

android.permission.BIND_ACCESSIBILITY_SERVICE

Sharing

General

Malware Config

Extracted

Signatures

Files

com.gameram.gameramer

com.gameram.gameramer.SplashActivity

Activities

com.gameram.gameramer.SplashActivity

Permissions

Receivers

com.gameram.gameramer.MyReceiver

Services

Android Permissions

69bfefdb5b0753a99ddd4b02cebee9b88ee6d4b5f232c6d6d66d245807413e4d.apk

We care about your privacy.