ccc589c38d1c035cfe4e37cc6a46616dec1ef7372b74b2f19bfe539260095f18[.]bin

General

Target

ccc589c38d1c035cfe4e37cc6a46616dec1ef7372b74b2f19bfe539260095f18.bin
Size

2.3MB
MD5

10ea68a3d4a00c015043228929ca78b8
SHA1

62494acefe957b2fcb96bd526187be6b06cc6133
SHA256

ccc589c38d1c035cfe4e37cc6a46616dec1ef7372b74b2f19bfe539260095f18
SHA512

bf7264673c60d93acb701dfedfbe919b504b3a217fdc1856a7b6ecbade4807e20c161a3de9c692b7fc342adb5c3ae363477c1bf940929ea09a1cfac981315fef
SSDEEP

24576:6IDVnglhU8tpL73uxsubh4GVqYlBw7SnfxA47EnZTF1XEhw8ZKZvzpERRukCfFzW:XVnglhGsm4GVdfxdS/UhDOv9dOdl

Score

6^/10

Malware Config

Signatures

Attempts to obfuscate APK file format
Applies obfuscation techniques to the APK format in order to hinder analysis

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device.	android.permission.BIND_NOTIFICATION_LISTENER_SERVICE

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows an application to receive WAP push messages.	android.permission.RECEIVE_WAP_PUSH
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS

Files

ccc589c38d1c035cfe4e37cc6a46616dec1ef7372b74b2f19bfe539260095f18.bin
.apk android

ru.putisha.app

ru.putisha.app.MainActivity

Activities

ru.putisha.app.MainActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.SEND
android.intent.action.SENDTO

Permissions

android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_MMS
android.permission.RECEIVE_WAP_PUSH
android.permission.READ_CELL_BROADCASTS
android.permission.READ_PHONE_STATE
android.permission.FOREGROUND_SERVICE
android.permission.FOREGROUND_SERVICE_DATA_SYNC
android.permission.POST_NOTIFICATIONS
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.QUERY_ALL_PACKAGES
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_CALL_LOG
android.permission.CALL_PHONE
android.permission.PROCESS_OUTGOING_CALLS
android.permission.BIND_NOTIFICATION_LISTENER_SERVICE
ru.putisha.app.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

ru.putisha.app.SMSBroadcastReceiver

android.provider.Telephony.SMS_DELIVER

ru.putisha.app.MMSBroadcastReceiver

android.provider.Telephony.WAP_PUSH_DELIVER

ru.putisha.app.BootCompletedReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
android.intent.action.REBOOT
android.intent.action.LOCKED_BOOT_COMPLETED

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

Services

ru.putisha.app.HeadlessSmsSendService

android.intent.action.RESPOND_VIA_MESSAGE

ru.putisha.app.SmsService

android.intent.action.BOOT_COMPLETED
android.intent.action.LOCKED_BOOT_COMPLETED

ru.putisha.app.NotificationService

android.service.notification.NotificationListenerService

Android Permissions

ccc589c38d1c035cfe4e37cc6a46616dec1ef7372b74b2f19bfe539260095f18.bin

Permissions

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.RECEIVE_MMS

android.permission.RECEIVE_WAP_PUSH

android.permission.READ_CELL_BROADCASTS

android.permission.READ_PHONE_STATE

android.permission.FOREGROUND_SERVICE

android.permission.FOREGROUND_SERVICE_DATA_SYNC

android.permission.POST_NOTIFICATIONS

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.QUERY_ALL_PACKAGES

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_CALL_LOG

android.permission.CALL_PHONE

android.permission.PROCESS_OUTGOING_CALLS

android.permission.BIND_NOTIFICATION_LISTENER_SERVICE

ru.putisha.app.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Sharing

General

Malware Config

Signatures

Files

ru.putisha.app

ru.putisha.app.MainActivity

Activities

ru.putisha.app.MainActivity

Permissions

Receivers

ru.putisha.app.SMSBroadcastReceiver

ru.putisha.app.MMSBroadcastReceiver

ru.putisha.app.BootCompletedReceiver

androidx.profileinstaller.ProfileInstallReceiver

Services

ru.putisha.app.HeadlessSmsSendService

ru.putisha.app.SmsService

ru.putisha.app.NotificationService

Android Permissions

ccc589c38d1c035cfe4e37cc6a46616dec1ef7372b74b2f19bfe539260095f18.bin

We care about your privacy.