93dc9e9017f77ecfd8d212fc4d3cd2a0aea0cda858f657f7ca271501ce81f26e

General

Target

93dc9e9017f77ecfd8d212fc4d3cd2a0aea0cda858f657f7ca271501ce81f26e
Size

8.8MB
MD5

1e1292a3a039d4b8b93914696a9ba8b8
SHA1

ec53d766f834301d5108bbf24f539f5f4437b686
SHA256

93dc9e9017f77ecfd8d212fc4d3cd2a0aea0cda858f657f7ca271501ce81f26e
SHA512

5d1865a05b824049e9b1da2c90286210569e2608ce6f8055d6ea5efa847f6a0b9a8a6792ab73a65f184493de7837ddd1292ae22be26e25f3cbb6bf6f9a87afb4
SSDEEP

196608:7i6wRFeYqfEWc7zle0A+0OydgQzkGPsO+PP+R7+BDj0yi:bwC15cvgQ0OIUO+PP/E

Score

6^/10

Malware Config

Signatures

Attempts to obfuscate APK file format
Applies obfuscation techniques to the APK format in order to hinder analysis

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Declares services with permission to bind to the system 2 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE
Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device.	android.permission.BIND_NOTIFICATION_LISTENER_SERVICE

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to read video files from external storage.	android.permission.READ_MEDIA_VIDEO
Allows an application to read image or video files from external storage that a user has selected via the permission prompt photo picker.	android.permission.READ_MEDIA_VISUAL_USER_SELECTED
Allows an application to read image files from external storage.	android.permission.READ_MEDIA_IMAGES
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an application to read image files from external storage.	android.permission.READ_MEDIA_IMAGES
Allows an application to read audio files from external storage.	android.permission.READ_MEDIA_AUDIO
Allows an application to read the user's calendar data.	android.permission.READ_CALENDAR

Files

93dc9e9017f77ecfd8d212fc4d3cd2a0aea0cda858f657f7ca271501ce81f26e
.apk android

com.amount.jazz

com.powder.resist.Gfireinherit

Activities

com.powder.resist.Gfireinherit

android.intent.action.MAIN
com.example.android.apis.content.SESSION_API_PACKAGE_INSTALLED

Permissions

android.permission.SAVE_APP_PAIRS
android.permission.READ_MEDIA_VIDEO
android.permission.EXPAND_STATUS_BAR
android.permission.READ_MEDIA_VISUAL_USER_SELECTED
com.android.launcher.permission.READ_SETTINGS
android.permission.READ_MEDIA_IMAGES
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.REQUEST_INSTALL_PACKAGES
com.android.launcher.permission.WRITE_SETTINGS
android.permission.SET_WALLPAPER_HINTS
android.permission.ACCESS_ADSERVICES_ATTRIBUTION
android.permission.USES_POLICY_FORCE_LOCK
android.permission.BIND_APPWIDGET
android.permission.READ_DEVICE_CONFIG
android.permission.GET_PACKAGE_SIZE
android.permission.READ_MEDIA_IMAGES
android.permission.BROADCAST_STICKY
android.permission.READ_MEDIA_AUDIO
android.permission.READ_CALENDAR
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.SET_WALLPAPER
android.permission.READ_SETTINGS
android.permission.BROADCAST_CLOSE_SYSTEM_DIALOGS
android.permission.ACCESS_ADSERVICES_TOPICS
android.permission.CONTROL_REMOTE_APP_TRANSITION_ANIMATIONS
base.apk
.apk android arch:arm arch:arm64 arch:x86 arch:x64

com.ndbookmarks8privselector

com.ndbookmarks8privselector.mqc6hSa

Activities

com.ndbookmarks8privselector.mqc6hSa

android.intent.action.MAIN

com.ndbookmarks8privselector.kxNbLiBugu

android.intent.action.SEND
android.intent.action.SENDTO
android.intent.action.VIEW
android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

Permissions

android.permission.POST_NOTIFICATIONS
android.permission.WAKE_LOCK
android.provider.Telephony.SMS_RECEIVED
android.permission.CALL_PHONE
android.permission.ACCESS_NOTIFICATION_POLICY
android.permission.WRITE_SMS
android.permission.FOREGROUND_SERVICE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.USE_FULL_SCREEN_INTENT
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.USES_POLICY_FORCE_LOCK
android.permission.VIBRATE
android.permission.QUERY_ALL_PACKAGES
android.permission.SEND_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_MMS
android.permission.READ_SMS
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.REORDER_TASKS
android.permission.WRITE_SETTINGS
android.permission.REQUEST_DELETE_PACKAGES
android.permission.READ_PHONE_NUMBERS
android.permission.RECEIVE_SMS
android.permission.READ_PHONE_STATE

Receivers

com.ndbookmarks8privselector.nxpjV9AT4

android.app.action.DEVICE_ADMIN_ENABLED
android.app.action.DEVICE_ADMIN_DISABLED

com.ndbookmarks8privselector.hVkiV

android.provider.Telephony.SMS_RECEIVED

com.ndbookmarks8privselector.mndCo

android.provider.Telephony.SMS_DELIVER

com.ndbookmarks8privselector.rke3vLW4sq

android.provider.Telephony.WAP_PUSH_DELIVER

com.ndbookmarks8privselector.mskYLRPGqu

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.provider.Telephony.SMS_RECEIVED
android.intent.action.SCREEN_ON
android.intent.action.SCREEN_OFF
android.intent.action.EXTERNAL_APPLICATIONS_AVAILABLE
android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.DREAMING_STOPPED

Services

com.ndbookmarks8privselector.xNJDgQuB

android.intent.action.RESPOND_VIA_MESSAGE

com.ndbookmarks8privselector.x2CFQkqL

android.accessibilityservice.AccessibilityService

com.ndbookmarks8privselector.hzu3q8

android.service.notification.NotificationListenerService

Android Permissions

93dc9e9017f77ecfd8d212fc4d3cd2a0aea0cda858f657f7ca271501ce81f26e

Permissions

android.permission.SAVE_APP_PAIRS

android.permission.READ_MEDIA_VIDEO

android.permission.EXPAND_STATUS_BAR

android.permission.READ_MEDIA_VISUAL_USER_SELECTED

com.android.launcher.permission.READ_SETTINGS

android.permission.READ_MEDIA_IMAGES

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.REQUEST_INSTALL_PACKAGES

com.android.launcher.permission.WRITE_SETTINGS

android.permission.SET_WALLPAPER_HINTS

android.permission.ACCESS_ADSERVICES_ATTRIBUTION

android.permission.USES_POLICY_FORCE_LOCK

android.permission.BIND_APPWIDGET

android.permission.READ_DEVICE_CONFIG

android.permission.GET_PACKAGE_SIZE

android.permission.READ_MEDIA_IMAGES

android.permission.BROADCAST_STICKY

android.permission.READ_MEDIA_AUDIO

android.permission.READ_CALENDAR

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.SET_WALLPAPER

android.permission.READ_SETTINGS

android.permission.BROADCAST_CLOSE_SYSTEM_DIALOGS

android.permission.ACCESS_ADSERVICES_TOPICS

android.permission.CONTROL_REMOTE_APP_TRANSITION_ANIMATIONS

Sharing

General

Malware Config

Signatures

Files

com.amount.jazz

com.powder.resist.Gfireinherit

Activities

com.powder.resist.Gfireinherit

Permissions

com.ndbookmarks8privselector

com.ndbookmarks8privselector.mqc6hSa

Activities

com.ndbookmarks8privselector.mqc6hSa

com.ndbookmarks8privselector.kxNbLiBugu

Permissions

Receivers

com.ndbookmarks8privselector.nxpjV9AT4

com.ndbookmarks8privselector.hVkiV

com.ndbookmarks8privselector.mndCo

com.ndbookmarks8privselector.rke3vLW4sq

com.ndbookmarks8privselector.mskYLRPGqu

Services

com.ndbookmarks8privselector.xNJDgQuB

com.ndbookmarks8privselector.x2CFQkqL

com.ndbookmarks8privselector.hzu3q8

Android Permissions

93dc9e9017f77ecfd8d212fc4d3cd2a0aea0cda858f657f7ca271501ce81f26e