ahmyth | robloxunlockedfree[.]apk

General

Target

robloxunlockedfree.apk
Size

263KB
MD5

63e1d12b56960cb36f7301385c705555
SHA1

745d5f6de33d8d349bd90a2d79890587f65994a8
SHA256

6de9c4a91a1d17473029aa0c7ca98580779734282cb91bf7aa7b8dd54cd6c6b6
SHA512

61f21203e926a27d8e81d6b77fbb2cf654458cb5d0b29bbcd971afb759b0b7624862e94c57d7e62e1e6989f89507a2205030cc07bee68a72fe1fa130f3f7390f
SSDEEP

6144:CTsIig5FV6YAqt2Cw2AnyJ6XGgJ2AsgmdQNnMN3l:CIriFQYAqtPwXn5Wg4fgmuNel

Score

10^/10

ahmyth

Malware Config

Extracted

Family

ahmyth

C2

http://197.48.230.161:5505

Signatures

Ahmyth family
ahmyth

Requests dangerous framework permissions 10 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

robloxunlockedfree.apk
.apk android

ahmyth.mine.king.ahmyth

ahmyth.mine.king.ahmyth.MainActivity

Activities

ahmyth.mine.king.ahmyth.MainActivity

android.intent.action.MAIN

Permissions

android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_CALL_LOG
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_CONTACTS

Receivers

ahmyth.mine.king.ahmyth.MyReceiver

android.intent.action.BOOT_COMPLETED

Services

Android Permissions

robloxunlockedfree.apk

Permissions

android.permission.WAKE_LOCK

android.permission.CAMERA

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_PHONE_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_CALL_LOG

android.permission.RECORD_AUDIO

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_CONTACTS

Sharing

General

Malware Config

Extracted

Signatures

Files

ahmyth.mine.king.ahmyth

ahmyth.mine.king.ahmyth.MainActivity

Activities

ahmyth.mine.king.ahmyth.MainActivity

Permissions

Receivers

ahmyth.mine.king.ahmyth.MyReceiver

Services

Android Permissions

robloxunlockedfree.apk