Resubmissions

25/02/2025, 04:07

250225-ep1g8stkv8 10

25/02/2025, 03:00

250225-dhg7mszkt3 10

General

  • Target

    c7411c0daff520468c3accff4318076a66034b2d14cbae08a5d3ecec2c6ce9ed.apk

  • Size

    262KB

  • MD5

    c7f7f2541de29ec01eadcbe8351c4652

  • SHA1

    2efc433d4a9a9491b59d0a3eff30a15c4f5bf589

  • SHA256

    c7411c0daff520468c3accff4318076a66034b2d14cbae08a5d3ecec2c6ce9ed

  • SHA512

    582805862a0d2ab5af8e01f2207e3681d6f61cc2171d39fc74e22e5455cce9b1608319d28fc66174e6278d8fbdf14142e987dc8309dceaf6cd498e93433b17e9

  • SSDEEP

    6144:f00p82jt82jU82je82jU82jDxpw9E+y9ED5lS2NWVa:fXjJjgjajQjMv5D5k2Nd

Score
10/10

Malware Config

Extracted

Family

anubis

C2

https://e-kasimaydin.xyz

Signatures

  • Anubis family
  • Declares services with permission to bind to the system 1 IoCs
  • Requests dangerous framework permissions 12 IoCs

Files

  • c7411c0daff520468c3accff4318076a66034b2d14cbae08a5d3ecec2c6ce9ed.apk
    .apk android

    wocwvy.czyxoxmbauu.slsa

    wocwvy.czyxoxmbauu.slsa.ncec.myvbo


Android Permissions

c7411c0daff520468c3accff4318076a66034b2d14cbae08a5d3ecec2c6ce9ed.apk

Permissions

android.permission.ACCESS_FINE_LOCATION

android.permission.GET_TASKS

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.PACKAGE_USAGE_STATS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_NETWORK_STATE

android.permission.CALL_PHONE

android.permission.INTERNET

android.permission.SEND_SMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.RECORD_AUDIO

android.permission.READ_CONTACTS

android.permission.READ_PHONE_STATE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS