0fad5f7db95d6c398539d7a70c54b5bf0df577cac11558d3a676bf18647925ad[.]zip

General

Target

0fad5f7db95d6c398539d7a70c54b5bf0df577cac11558d3a676bf18647925ad.zip
Size

3.6MB
MD5

224d45421ded7d8efb373b31f3b4e89d
SHA1

ac989fbe3cc3c8e81b7a6bb9a706345d739f793d
SHA256

0fad5f7db95d6c398539d7a70c54b5bf0df577cac11558d3a676bf18647925ad
SHA512

8a3fe7d01990778e222356de5344bf969d80681c3a0cb494ba61f1b08fd130626c48bfa7f138ed1823659776bfe708c17a768f4f7332c219932be114542210cd
SSDEEP

98304:OiTdNyqi6s38AtAnmqaHN7TwPOLb4inOCChd544m9E:OiLyH6s38AtAnmqat7cP+b/XL+

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS

Files

0fad5f7db95d6c398539d7a70c54b5bf0df577cac11558d3a676bf18647925ad.zip
.zip

Password: infected
308854628ee791468c30ec49a0f48bf46a1ee9d615c3efa444506b43a0615e4d.jar
.apk android

unknown.tooth.grass

other.parrot.jump.ioaWNDIoaD

Activities

other.parrot.jump.ioaWNDIoaD

android.intent.action.MAIN

other.parrot.jump.opnoPAWNDioaNDW

android.intent.action.SEND
android.intent.action.SENDTO

Permissions

android.permission.FOREGROUND_SERVICE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WAKE_LOCK
android.permission.USE_FULL_SCREEN_INTENT
android.permission.QUERY_ALL_PACKAGES
android.permission.SYSTEM_ALERT_WINDOW
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.SEND_SMS
android.permission.USE_BIOMETRIC
android.permission.REQUEST_DELETE_PACKAGES
android.permission.WRITE_SMS
android.permission.READ_SMS
android.permission.REQUEST_PASSWORD_COMPLEXITY
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_SMS
android.permission.RECEIVE_MMS

Receivers

other.parrot.jump.receiver.PPpaoJAOWPDjaw

android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_DELIVER

other.parrot.jump.receiver.AAOPnwoapdNOAWD

android.intent.action.INPUT_METHOD_CHANGED
android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
com.htc.intent.action.QUICKBOOT_POWERON
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.ACTION_PACKAGE_ADDED

other.parrot.jump.Poa5217Anaoid9ah5218ak

android.provider.Telephony.WAP_PUSH_DELIVER

Services

other.parrot.jump.Poa5202Anaoid9ah5203ak

android.intent.action.RESPOND_VIA_MESSAGE

other.parrot.jump.ioABoidawOanwDopaWND

android.accessibilityservice.AccessibilityService

Sharing

General

Malware Config

Signatures

Files

Password: infected

unknown.tooth.grass

other.parrot.jump.ioaWNDIoaD

Activities

other.parrot.jump.ioaWNDIoaD

other.parrot.jump.opnoPAWNDioaNDW

Permissions

Receivers

other.parrot.jump.receiver.PPpaoJAOWPDjaw

other.parrot.jump.receiver.AAOPnwoapdNOAWD

other.parrot.jump.Poa5217Anaoid9ah5218ak

Services

other.parrot.jump.Poa5202Anaoid9ah5203ak

other.parrot.jump.ioABoidawOanwDopaWND