copybara | 83dd1456c41224fbb9a27d677f5184f7dfd9381f8d308e05de891a7a44020e14[.]bin

General

Target

83dd1456c41224fbb9a27d677f5184f7dfd9381f8d308e05de891a7a44020e14.bin
Size

4.7MB
MD5

548c83c4e1efc92897a2d2e2207bf668
SHA1

5112cd400cbf4dd5b8cb252fc14cbecdf63edaca
SHA256

83dd1456c41224fbb9a27d677f5184f7dfd9381f8d308e05de891a7a44020e14
SHA512

b8ee9035a45d50d0a66688333eafe9919e3b6d6e7884c430431728038a4cb5a45a7f30257f670d38b240c1078caae0cc425e4f815eae3184c05c68e07b8c98ea
SSDEEP

98304:iPG4rHHXcfaMTxcBNZGq+idKku2yaxLrtSozvO3IATQc5nKLOrq5FEYBi5/0b:iO4rHHXeTxcP+i3yWnDO3IADJq5SYB4g

Score

10^/10

copybara

Malware Config

Signatures

Copybara family
copybara

Copybara payload 1 IoCs

resource	yara_rule
sample	family_copybara

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Declares services with permission to bind to the system 2 IoCs

description	ioc
Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device.	android.permission.BIND_NOTIFICATION_LISTENER_SERVICE
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Files

83dd1456c41224fbb9a27d677f5184f7dfd9381f8d308e05de891a7a44020e14.bin
.apk android

com.xszzoza.ycjgizr

.a2vmyzxscmp

Activities

.a2vmyzxscmp

android.intent.action.MAIN
android.intent.action.SEND
android.intent.action.SENDTO

Permissions

android.permission.a2exsgrhq7uECEIVE_BOOT_COMPLETED
android.permission.a2exsgrhq7uEQUEST_DELETE_PACKAGES
android.permission.a2exsgrhq7uEAD_PHONE_STATE
android.permission.a2exsgrhq7uEAD_PHONE_STATE
android.permission.a2exsgrhq7uEAD_SMS
android.permission.a2exsgrhq7uEAD_CONTACTS
android.permission.a2exsgrhq7uEAD_CALL_LOG
android.permission.a2exsgrhq7uECORD_AUDIO
android.permission.a2exsgrhq7uECEIVE_BOOT_COMPLETED
com.android.alarm.permission.SET_ALARM
android.permission.a2exsgrhq7uEAD_EXTERNAL_STORAGE
android.permission.a2exsgrhq7uEQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.a2exsgrhq7uEQUEST_INSTALL_PACKAGES
android.permission.a2exsgrhq7uECEIVE_SMS
com.android.browser.permission.a2exsgrhq7uEAD_HISTORY_BOOKMARKS
com.android.browser.permission.WRITE_HISTORY_BOOKMARKS

Receivers

anywheresoftware.b4a.objects.AdminReceiver2

android.app.action.DEVICE_ADMIN_ENABLED

.udv4uckwqz$notificationservice_BR

android.intent.action.BOOT_COMPLETED

.ayag5zp5ud$s1_BR

android.provider.Telephony.SMS_RECEIVED

.yap1spsay3$service1_BR

android.provider.Telephony.SMS_DELIVER

.o34odwbnci$service2_BR

android.provider.Telephony.WAP_PUSH_DELIVER

.xyjtvxx0cd

android.intent.action.BOOT_COMPLETED

Services

anywheresoftware.b4a.objects.NotificationListenerWrapper

android.service.notification.NotificationListenerService

.uzndeqjzil

android.accessibilityservice.AccessibilityService

.eog0ofo015

android.intent.action.a2exsgrhq7uESPOND_VIA_MESSAGE

Android Permissions

83dd1456c41224fbb9a27d677f5184f7dfd9381f8d308e05de891a7a44020e14.bin

Permissions

android.permission.a2exsgrhq7uECEIVE_BOOT_COMPLETED

android.permission.a2exsgrhq7uEQUEST_DELETE_PACKAGES

android.permission.a2exsgrhq7uEAD_PHONE_STATE

android.permission.a2exsgrhq7uEAD_SMS

android.permission.a2exsgrhq7uEAD_CONTACTS

android.permission.a2exsgrhq7uEAD_CALL_LOG

android.permission.a2exsgrhq7uECORD_AUDIO

android.permission.a2exsgrhq7uECEIVE_BOOT_COMPLETED

com.android.alarm.permission.SET_ALARM

android.permission.a2exsgrhq7uEAD_EXTERNAL_STORAGE

android.permission.a2exsgrhq7uEQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.a2exsgrhq7uEQUEST_INSTALL_PACKAGES

android.permission.a2exsgrhq7uECEIVE_SMS

com.android.browser.permission.a2exsgrhq7uEAD_HISTORY_BOOKMARKS

com.android.browser.permission.WRITE_HISTORY_BOOKMARKS

Sharing

General

Malware Config

Signatures

Files

com.xszzoza.ycjgizr

.a2vmyzxscmp

Activities

.a2vmyzxscmp

Permissions

Receivers

anywheresoftware.b4a.objects.AdminReceiver2

.udv4uckwqz$notificationservice_BR

.ayag5zp5ud$s1_BR

.yap1spsay3$service1_BR

.o34odwbnci$service2_BR

.xyjtvxx0cd

Services

anywheresoftware.b4a.objects.NotificationListenerWrapper

.uzndeqjzil

.eog0ofo015

Android Permissions

83dd1456c41224fbb9a27d677f5184f7dfd9381f8d308e05de891a7a44020e14.bin