ahmyth.mine.king.ahmyth.MainActivity
android.intent.action.MAIN
General
-
Target
AndroRAt.apk
-
Size
293KB
-
MD5
3d3b2a66ae3a8a8cf21e2cde12f5387f
-
SHA1
a6c8e87367f8168ece54c8f27ba182df406a41c3
-
SHA256
9af5c084b7203741bc26debb6212bf138f3c7a41e04d96948a332be4a842882e
-
SHA512
81ee8d00eae3a3c3d4276b370e7d3f755be01a429dc16b144c7ffeba3c3b49957152392715eeaa19aa284574e49139b914e4d6cdc5a4171a7ccadc432c39436d
-
SSDEEP
6144:ZbkPe2DpLKXsb1ULz9Qg7KZdyuKI0mYkMdfO:QtDpbmLBSGuK2YJJO
Score
10/10
Malware Config
Extracted
Family
ahmyth
C2
http://34.125.188.220:50901
Signatures
-
Ahmyth family
-
Declares broadcast receivers with permission to handle system events 1 IoCs
-
Requests dangerous framework permissions 16 IoCs
Files
-
AndroRAt.apk
ahmyth.mine.king.ahmyth
ahmyth.mine.king.ahmyth.MainActivity
Android Permissions
AndroRAt.apk
Permissions
android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MANAGE_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.WRITE_SECURE_SETTINGS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_PHONE_STATE
android.permission.READ_CALL_LOG
android.permission.PROCESS_OUTGOING_CALLS
android.permission.READ_CONTACTS
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_BACKGROUND_LOCATION
android.permission.INSTALL_PACKAGE