android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.READ_CONTACTS
android.permission.QUERY_ALL_PACKAGES
Behavioral task
behavioral1
Sample
CE99D7FBDEF651BB9437B967B032C30F03B2CC8BEC55064B674BBCE9AFE57448.apk
Resource
android-x86-arm-20240910-en
android-9-x86
0 signatures
150 seconds
Behavioral task
behavioral2
Sample
CE99D7FBDEF651BB9437B967B032C30F03B2CC8BEC55064B674BBCE9AFE57448.apk
Resource
android-33-x64-arm64-20240910-en
android-13-x64
0 signatures
150 seconds
Behavioral task
behavioral3
Sample
Tasker.apk
Resource
android-x86-arm-20240910-en
android-9-x86
5 signatures
150 seconds
Behavioral task
behavioral4
Sample
Tasker.apk
Resource
android-x64-20240910-en
android-10-x64
6 signatures
150 seconds
Behavioral task
behavioral5
Sample
Tasker.apk
Resource
android-x64-arm64-20240624-en
android-11-x64
4 signatures
150 seconds
General
-
Target
CE99D7FBDEF651BB9437B967B032C30F03B2CC8BEC55064B674BBCE9AFE57448.apk
-
Size
34.4MB
-
MD5
ebcc85503b05594fe16e4febfa088e16
-
SHA1
095e0aebbc793dd1b70b76f9934c7c4abed5c283
-
SHA256
ce99d7fbdef651bb9437b967b032c30f03b2cc8bec55064b674bbce9afe57448
-
SHA512
a5389b33f92b70f0f98f98115454f95f98d4a031b75ea6c5a03397c83bc274663e4e9c708bf7822229dacb1e85ce69f9d958251c5a5763d43728a89375984827
-
SSDEEP
786432:CxSTQVQuVrqJ8PwoBi8A/ZpPE3ypz8wO36RDAr+0I:CxVVFULBvPmsDO3iDACN
Score
10/10
Malware Config
Signatures
-
SmsAgent payload 2 IoCs
resource yara_rule static1/unpack001/Tasker.apk family_smsagent static1/unpack001/Tasker.apk family_smsagent -
Smsagent family
-
Declares broadcast receivers with permission to handle system events 1 IoCs
description ioc Required by device admin receivers to bind with the system. Allows apps to manage device administration features. android.permission.BIND_DEVICE_ADMIN -
Declares services with permission to bind to the system 10 IoCs
description ioc Required by quick settings tile services to bind with the system. Allows apps to add custom tiles to the quick settings menu. android.permission.BIND_QUICK_SETTINGS_TILE Required by quick settings tile services to bind with the system. Allows apps to add custom tiles to the quick settings menu. android.permission.BIND_QUICK_SETTINGS_TILE Required by quick settings tile services to bind with the system. Allows apps to add custom tiles to the quick settings menu. android.permission.BIND_QUICK_SETTINGS_TILE Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device. android.permission.BIND_NOTIFICATION_LISTENER_SERVICE Required by VPN services to bind with the system. Allows apps to provision VPN services. android.permission.BIND_VPN_SERVICE Required by accessibility services to bind with the system. Allows apps to access accessibility features. android.permission.BIND_ACCESSIBILITY_SERVICE Required by input method services to bind with the system. Allows apps to provide custom input methods (keyboards). android.permission.BIND_INPUT_METHOD Required by control services to bind with the system. Allows apps to contribute controls to the System UI. android.permission.BIND_CONTROLS Required by call screening services to bind with the system. Allows apps to filter and manage incoming phone calls. android.permission.BIND_SCREENING_SERVICE Required by in-call services to bind with the system. Allows apps to handle aspects of phone calls while they are in progress. android.permission.BIND_INCALL_SERVICE -
Requests dangerous framework permissions 2 IoCs
description ioc Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows an application to read the user's contacts data. android.permission.READ_CONTACTS
Files
-
CE99D7FBDEF651BB9437B967B032C30F03B2CC8BEC55064B674BBCE9AFE57448.apk.apk android arch:arm arch:x64 arch:x86 arch:arm64
net.dinglisch.android.appfactory
Factory
Activities
Permissions
-
Tasker.apk.apk android
net.dinglisch.android.taskerm
net.dinglisch.android.taskerm.Tasker
Activities
com.joaomgcd.taskerm.net.auth.ActivityHttpAuthentication
android.intent.action.VIEW
net.dinglisch.android.taskerm.Tasker
android.intent.action.MAIN
com.joaomgcd.taskerm.util.ActivitySecondaryApp
android.intent.action.MAIN
android.media.action.IMAGE_CAPTURE
android.media.action.IMAGE_CAPTURE_SECURE
android.media.action.STILL_IMAGE_CAMERA
android.media.action.STILL_IMAGE_CAMERA_SECURE
android.media.action.VIDEO_CAMERA
android.media.action.VIDEO_CAPTURE
android.intent.action.VOICE_COMMAND
android.intent.action.VIEW
net.dinglisch.android.taskerm.LongPressSearch
android.intent.action.SEARCH_LONG_PRESS
net.dinglisch.android.taskerm.Settings
net.dinglisch.android.tasker.ACTION_OPEN_PREFS
android.service.quicksettings.action.QS_TILE_PREFERENCES
net.dinglisch.android.taskerm.MIDIHandler
android.hardware.usb.action.USB_DEVICE_ATTACHED
net.dinglisch.android.taskerm.WebSearchHandler
android.speech.action.WEB_SEARCH
net.dinglisch.android.taskerm.AssistHandler
android.intent.action.ASSIST
net.dinglisch.android.taskerm.IntentHandler
net.dinglisch.android.tasker.WIDICKYUM
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
net.dinglisch.android.taskerm.TaskSelect
net.dinglisch.android.tasker.ACTION_TASK_SELECT
net.dinglisch.android.taskerm.DockActivityCar
android.intent.action.MAIN
net.dinglisch.android.taskerm.DockActivityDesk
android.intent.action.MAIN
net.dinglisch.android.taskerm.TaskerAppWidgetConfigure
android.appwidget.action.APPWIDGET_CONFIGURE
net.dinglisch.android.taskerm.TaskerAppWidgetConfigureShortcut
android.intent.action.CREATE_SHORTCUT
net.dinglisch.android.taskerm.TaskerAppWidgetCountdownConfigure
android.appwidget.action.APPWIDGET_CONFIGURE
net.dinglisch.android.taskerm.IpackIconSelect
net.dinglisch.android.ipack.actions.ICON_SELECT
com.joaomgcd.taskerm.datashare.import.ActivityImportTaskerDataFromXml
android.intent.action.SEND
android.intent.action.SEND
android.intent.action.SEND
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
com.joaomgcd.taskerm.datashare.import.ActivityImportTaskerDataFromUri
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
com.joaomgcd.taskerm.datashare.import.ActivityPreviewTaskerDataFromUri
android.intent.action.VIEW
com.joaomgcd.taskerm.nfc.ActivityNFCTag
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.TECH_DISCOVERED
android.nfc.action.TECH_DISCOVERED
android.nfc.action.TAG_DISCOVERED
android.nfc.action.TAG_DISCOVERED
com.joaomgcd.taskerm.navigationbar.ActivityReceiveKey
android.intent.action.MAIN
com.joaomgcd.taskerm.settings.ActivityOpenSetting
android.intent.action.VIEW
com.joaomgcd.taskerm.util.ActivityAssistantActions
android.intent.action.VIEW
androidx.core.google.shortcuts.TrampolineActivity
androidx.core.content.pm.SHORTCUT_LISTENER
Permissions
net.dinglisch.android.zoom.permission.MAKE_CHANGES
android.permission.PACKAGE_USAGE_STATS
cyanogenmod.permission.PUBLISH_CUSTOM_TILE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.REQUEST_COMPANION_RUN_IN_BACKGROUND
android.permission.REQUEST_COMPANION_USE_DATA_IN_BACKGROUND
android.permission.BODY_SENSORS
android.permission.WRITE_CALL_LOG
android.permission.READ_CALL_LOG
android.permission.RECEIVE_SMS
com.latedroid.juicedefender.permission.CONTROL_JUICEDEFENDER
com.latedroid.juicedefender.permission.TOGGLE_MOBILE_DATA
android.permission.MODIFY_PHONE_STATE
com.android.phone.CHANGE_NETWORK_MODE
android.permission.SET_TIME_ZONE
android.permission.WRITE_SYNC_SETTINGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_SETTINGS
android.permission.RECORD_AUDIO
android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.WRITE_SMS
android.permission.READ_SMS
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
com.android.alarm.permission.SET_ALARM
android.permission.EXPAND_STATUS_BAR
android.permission.CHANGE_NETWORK_STATE
android.permission.CAMERA
android.permission.DISABLE_KEYGUARD
android.permission.BLUETOOTH_ADMIN
android.permission.BLUETOOTH
android.permission.ACCESS_NETWORK_STATE
android.permission.SET_WALLPAPER
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.PROCESS_OUTGOING_CALLS
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.INTERNET
android.permission.CALL_PHONE
android.permission.READ_SYNC_SETTINGS
android.permission.READ_CALENDAR
android.permission.WRITE_CALENDAR
android.permission.WRITE_SECURE_SETTINGS
android.permission.DUMP
android.permission.CHANGE_CONFIGURATION
android.permission.TETHER_PRIVILEGED
com.joaomgcd.taskersettings.SET_SETTING
android.permission.ANSWER_PHONE_CALLS
android.permission.CAPTURE_AUDIO_OUTPUT
android.permission.FOREGROUND_SERVICE
android.permission.USE_BIOMETRIC
android.permission.NFC
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.REQUEST_DELETE_PACKAGES
android.permission.SET_MEDIA_KEY_LISTENER
android.permission.SET_WALLPAPER_COMPONENT
android.permission.RESTART_PACKAGES
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.ACCESS_WIMAX_STATE
android.permission.CHANGE_WIMAX_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_NOTIFICATION_POLICY
android.permission.READ_CLIPBOARD_IN_BACKGROUND
android.permission.SET_VOLUME_KEY_LONG_PRESS_LISTENER
android.permission.READ_LOGS
android.permission.SET_PROCESS_LIMIT
android.permission.USE_FINGERPRINT
com.wireguard.android.permission.CONTROL_TUNNELS
com.termux.permission.RUN_COMMAND
com.google.android.gms.permission.ACTIVITY_RECOGNITION
android.permission.ACTIVITY_RECOGNITION
android.permission.QUERY_ALL_PACKAGES
android.permission.ACCESS_BACKGROUND_LOCATION
android.permission.MANAGE_EXTERNAL_STORAGE
android.permission.CALL_COMPANION_APP
android.permission.INTERACT_ACROSS_USERS
android.permission.BLUETOOTH_PRIVILEGED
moe.shizuku.manager.permission.API_V23
com.android.vending.CHECK_LICENSE
Receivers
net.dinglisch.android.taskerm.IpackReceiver
net.dinglisch.android.ipack.actions.QUERY_PACKS
net.dinglisch.android.ipack.actions.QUERY_ICONS
net.dinglisch.android.taskerm.ReceiverStaticPhoneState
android.intent.action.PHONE_STATE
net.dinglisch.android.taskerm.ReceiverStaticNotification
net.dinglisch.android.tasker.NOTORUM
net.dinglisch.android.taskerm.ReceiverStaticCallRewriter
android.intent.action.NEW_OUTGOING_CALL
net.dinglisch.android.taskerm.ReceiverStaticCallBlocker
android.intent.action.NEW_OUTGOING_CALL
net.dinglisch.android.taskerm.ReceiverStaticAlwaysOn
android.intent.action.BOOT_COMPLETED
net.dinglisch.android.tasker.WILLYUM
net.dinglisch.android.tasker.AWAKEY
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED
android.intent.action.MY_PACKAGE_REPLACED
net.dinglisch.android.taskerm.ReceiverStaticRunTasks
net.dinglisch.android.tasker.ACTION_TASK
net.dinglisch.android.tasker.ACTION_TASK
net.dinglisch.android.taskerm.ReceiverStaticInternal
net.dinglisch.android.tasker.ACTION_FILE_CHANGED
net.dinglisch.android.tasker.SMSEY
net.dinglisch.android.tasker.ALARUM
net.dinglisch.android.tasker.CALARUM
net.dinglisch.android.tasker.COOLORUM
net.dinglisch.android.tasker.WIDICKYUM
net.dinglisch.android.tasker.ANDPROFTUM
android.intent.action.DATE_CHANGED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED
com.twofortyfouram.locale.intent.action.REQUEST_QUERY
net.dinglisch.android.taskerm.TaskerAppWidgetProvider
android.appwidget.action.APPWIDGET_UPDATE
net.dinglisch.android.taskerm.TaskerAppWidgetCountdownProvider
android.appwidget.action.APPWIDGET_UPDATE
net.dinglisch.android.taskerm.MyDeviceAdminReceiver
android.app.action.DEVICE_ADMIN_ENABLED
com.joaomgcd.taskerm.event.datetime.BroadcastReceiverNextAlarmChanged
android.app.action.NEXT_ALARM_CLOCK_CHANGED
Services
net.dinglisch.android.taskerm.QSTileService0
android.service.quicksettings.action.QS_TILE
net.dinglisch.android.taskerm.QSTileService1
android.service.quicksettings.action.QS_TILE
net.dinglisch.android.taskerm.QSTileService2
android.service.quicksettings.action.QS_TILE
net.dinglisch.android.taskerm.NotificationListenerService
android.service.notification.NotificationListenerService
net.dinglisch.android.taskerm.MyVpnService
android.net.VpnService
net.dinglisch.android.taskerm.MyAccessibilityService
android.accessibilityservice.AccessibilityService
com.joaomgcd.taskerm.plugin.ServiceRequestQuery
com.twofortyfouram.locale.intent.action.REQUEST_QUERY
com.joaomgcd.taskerm.keyboard.InputMethodServiceTasker
android.view.InputMethod
com.joaomgcd.taskerm.controlsprovider.ControlsProviderServiceTasker
android.service.controls.ControlsProviderService
com.joaomgcd.taskerm.call.ServiceCallScreening
android.telecom.CallScreeningService
com.joaomgcd.taskerm.call.ServiceCallCompanion
android.telecom.InCallService
Android Permissions
CE99D7FBDEF651BB9437B967B032C30F03B2CC8BEC55064B674BBCE9AFE57448.apk
Permissions
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.READ_CONTACTS
android.permission.QUERY_ALL_PACKAGES