Overview

overview

10

Static

static

6

Install-Pro.apk

android-11-x64

10

Install-Pro.apk

android-13-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Install-Pro.apk

  • Size

    8.3MB

  • MD5

    a74d54f5da626eee43934d48bc1854e9

  • SHA1

    ec9ffaec84db40506c1aa994bd40c0779169adc3

  • SHA256

    999e95765111215c6c91cc230a8a775f9b542f8d8d52f24f4ad402e949b46ce9

  • SHA512

    ecb2d2896a41d9a7b1d11cbb9bb76937bb0e96c3af31666eb917900f24d05fc6afff208ec3eb31bc737c43c5093f7c0155f71374b1824bc11cc2036a27fb20c8

  • SSDEEP

    196608:HI7++j03CqGQPmpb4FWke/YvtX3p7K8xbyyXmmuz4s6f:a++wcQOpsHvJ3RK8pyyXmm0A

Score
6/10

Malware Config

Signatures

  • Attempts to obfuscate APK file format

    Applies obfuscation techniques to the APK format in order to hinder analysis

  • Declares services with permission to bind to the system 4 IoCs
  • Requests dangerous framework permissions 1 IoCs

Files

  • Install-Pro.apk
    .apk android

    com.cevazu.operating

    com.cevazu.operating.kBTktbwcC


  • duzori
    .apk android

    com.toreya.dev

    com.toreya.dev.XRknnXVdnXL


Android Permissions

Install-Pro.apk

Permissions

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.QUERY_ALL_PACKAGES

android.permission.FOREGROUND_SERVICE

android.permission.INTERNET

com.cevazu.operating.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.CREDENTIAL_MANAGER_SET_ALLOWED_PROVIDERS

android.permission.WAKE_LOCK

android.permission.ACCESS_NETWORK_STATE