ajina | 3bc004f44dc6a18d318fe2b3c81cf25b3d8fc9356fa6eb6b4b9e32b597b42318[.]bin

General

Target

3bc004f44dc6a18d318fe2b3c81cf25b3d8fc9356fa6eb6b4b9e32b597b42318.bin
Size

2.5MB
MD5

305d9718fbdbf6eeba0f88e1c722fa30
SHA1

9684dfc358a6c424141e9ae2adfa781beb7a9dca
SHA256

3bc004f44dc6a18d318fe2b3c81cf25b3d8fc9356fa6eb6b4b9e32b597b42318
SHA512

d28e29c85cbc05a2d72ec3ebc076f5ba6b6cffafdc2dc63d14dc6a0574d7a56f49e9492585d639d33d9d37b2aca043fa18df0e1bb790303a22b513bb8db9b981
SSDEEP

49152:UNXigIwN8lyIIoghevZcLSMZrhdbc48otgVsr1V:gXhTNOychedPksr1V

Score

10^/10

ajina

Malware Config

Signatures

Ajina family
ajina

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows read access to the device's phone number(s).	android.permission.READ_PHONE_NUMBERS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE

Files

3bc004f44dc6a18d318fe2b3c81cf25b3d8fc9356fa6eb6b4b9e32b597b42318.bin
.apk android

cheli.ia_tochno.ne_negr

cheli.ia_tochno.ne_negr.ui.MainActivity

Activities

cheli.ia_tochno.ne_negr.ui.MainActivity

android.intent.action.MAIN

Permissions

android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.READ_PHONE_STATE
android.permission.READ_PHONE_NUMBERS
android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.USE_EXACT_ALARM
android.permission.FOREGROUND_SERVICE_DATA_SYNC
android.permission.WAKE_LOCK
android.permission.QUERY_ALL_PACKAGES
cheli.ia_tochno.ne_negr.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

cheli.ia_tochno.ne_negr.core.MainReciever

android.intent.action.QUICKBOOT_POWERON
android.intent.action.BOOT_COMPLETED
android.intent.action.LOCKED_BOOT_COMPLETED
com.htc.action.QUICKBOOT_POWERON
android.intent.action.REBOOT
android.intent.action.ACTION_SHUTDOWN
android.intent.action.SCREEN_ON
android.intent.action.SCREEN_OFF
android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_CB_RECEIVED
android.intent.action.DATA_SMS_RECEIVED

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

Services

Android Permissions

3bc004f44dc6a18d318fe2b3c81cf25b3d8fc9356fa6eb6b4b9e32b597b42318.bin

Permissions

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.READ_PHONE_STATE

android.permission.READ_PHONE_NUMBERS

android.permission.CALL_PHONE

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.USE_EXACT_ALARM

android.permission.FOREGROUND_SERVICE_DATA_SYNC

android.permission.WAKE_LOCK

android.permission.QUERY_ALL_PACKAGES

cheli.ia_tochno.ne_negr.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Sharing

General

Malware Config

Signatures

Files

cheli.ia_tochno.ne_negr

cheli.ia_tochno.ne_negr.ui.MainActivity

Activities

cheli.ia_tochno.ne_negr.ui.MainActivity

Permissions

Receivers

cheli.ia_tochno.ne_negr.core.MainReciever

androidx.profileinstaller.ProfileInstallReceiver

Services

Android Permissions

3bc004f44dc6a18d318fe2b3c81cf25b3d8fc9356fa6eb6b4b9e32b597b42318.bin