General

  • Target

    1c9d76686ad2e5b6a7311f76d94edbf6afd49ebf3aa8d5f37f1ae8dfa9ac4998.bin

  • Size

    2.6MB

  • MD5

    bc3176be014ab54f1695ac5bc1f5b4dd

  • SHA1

    fe2035d3bffafb9877eba4ce2e90498b29bce9b0

  • SHA256

    1c9d76686ad2e5b6a7311f76d94edbf6afd49ebf3aa8d5f37f1ae8dfa9ac4998

  • SHA512

    caf72c130f793eed29816f0a8b0efa1e139b651d1f67086b1e4de19dabb8b2afe69b2e7ef4ed11348bd6de8a82607ad51309dced95c145577906bbb9d575d61c

  • SSDEEP

    24576:NWS4m51+WtE09Bt4sgkdSUHqq22LyfuCSI8biYcAgJEotrD/7CUaK8:ERJWu0JReFXAgJztrC1

Score
10/10

Malware Config

Signatures

  • Android SoumniBot payload 1 IoCs
  • Soumnibot family
  • Attempts to obfuscate APK file format

    Applies obfuscation techniques to the APK format in order to hinder analysis

  • Requests dangerous framework permissions 12 IoCs

Files

  • 1c9d76686ad2e5b6a7311f76d94edbf6afd49ebf3aa8d5f37f1ae8dfa9ac4998.bin
    .apk android arch:arm64

    rkgkrd.ewfgrveodb.lsdefv

    rkgkrd.ewfgrveodb.lsdefv.wefreg.erwgler.ssfskdekvgrfd


Android Permissions

1c9d76686ad2e5b6a7311f76d94edbf6afd49ebf3aa8d5f37f1ae8dfa9ac4998.bin

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.READ_PHONE_STATE

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.WAKE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.GET_ACCOUNTS

android.permission.FOREGROUND_SERVICE

android.permission.RECEIVE_BOOT_COMPLETED