Overview

overview

10

Static

static

10

theotown-m...om.apk

android-9-x86

Sharing

Copy URL
Twitter E-mail

General

  • Target

    theotown-mod_1.11.83a-an1.com.apk

  • Size

    93.7MB

  • MD5

    19d8a9e92cc151d89e166e3e483cff1e

  • SHA1

    1d041cb13dc829545e6d52308bd321ba254224cd

  • SHA256

    fd80947189156d5b4fd50991ff8279bd43378354d8fd4a0dac29d8b389fac6a8

  • SHA512

    6b2e369d3da7f373bf455776382243c99ae928e8062728345ea5cce69cdaec39ca4d5e57a023b9a3669330f9f9d21c2d078e10aed181f2710000c0cb895db619

  • SSDEEP

    1572864:TthmmiuOLHdbzlyQExrcj0tEdJmDMzcdQQ1NeWybFQtPDFE2URNRlITA:ZIoqHdXlmxrdEdJRYdLqWybFQBWxkA

Score
10/10
meduza

Malware Config

Signatures

  • Meduza Stealer payload 1 IoCs
  • Meduza family
    meduza
  • Requests dangerous framework permissions 3 IoCs

Files

  • theotown-mod_1.11.83a-an1.com.apk
    .apk android arch:arm64 arch:arm

    info.flowersoft.theotown.theotown

    info.flowersoft.theotown.theotown.MainActivity


Android Permissions

theotown-mod_1.11.83a-an1.com.apk

Permissions

android.permission.POST_NOTIFICATIONS

com.google.android.gms.permission.AD_ID

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.FOREGROUND_SERVICE

com.android.vending.BILLING

android.permission.ACCESS_ADSERVICES_TOPICS

android.permission.ACCESS_ADSERVICES_ATTRIBUTION

android.permission.WAKE_LOCK

android.permission.ACCESS_ADSERVICES_AD_ID

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

info.flowersoft.theotown.theotown.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION