wocwvy.czyxoxmbauu.slsa.ncec.myvbo
android.intent.action.MAIN
wocwvy.czyxoxmbauu.slsa.opzsdswiddt
android.intent.action.SEND
android.intent.action.SENDTO
General
-
Target
c7411c0daff520468c3accff4318076a66034b2d14cbae08a5d3ecec2c6ce9ed.apk
-
Size
262KB
-
MD5
c7f7f2541de29ec01eadcbe8351c4652
-
SHA1
2efc433d4a9a9491b59d0a3eff30a15c4f5bf589
-
SHA256
c7411c0daff520468c3accff4318076a66034b2d14cbae08a5d3ecec2c6ce9ed
-
SHA512
582805862a0d2ab5af8e01f2207e3681d6f61cc2171d39fc74e22e5455cce9b1608319d28fc66174e6278d8fbdf14142e987dc8309dceaf6cd498e93433b17e9
-
SSDEEP
6144:f00p82jt82jU82je82jU82jDxpw9E+y9ED5lS2NWVa:fXjJjgjajQjMv5D5k2Nd
Score
10/10
Malware Config
Extracted
Family
anubis
C2
https://e-kasimaydin.xyz
Signatures
-
Anubis family
-
Declares services with permission to bind to the system 1 IoCs
-
Requests dangerous framework permissions 12 IoCs
Files
-
c7411c0daff520468c3accff4318076a66034b2d14cbae08a5d3ecec2c6ce9ed.apk
wocwvy.czyxoxmbauu.slsa
wocwvy.czyxoxmbauu.slsa.ncec.myvbo
Android Permissions
c7411c0daff520468c3accff4318076a66034b2d14cbae08a5d3ecec2c6ce9ed.apk
Permissions
android.permission.ACCESS_FINE_LOCATION
android.permission.GET_TASKS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.PACKAGE_USAGE_STATS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_NETWORK_STATE
android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.SEND_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.READ_CONTACTS
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS