com.example.reverseshell2.MainActivity
android.intent.action.MAIN
General
-
Target
help.apk
-
Size
2.2MB
-
MD5
0471827cca1e413182ecc5b25fae2d16
-
SHA1
f565d14584951f53dc79964331f6d211399bb87e
-
SHA256
3438bc077550138a51a2cf35f41e54a86f0654ac5452782b69f6f95c713e78cc
-
SHA512
eb14ad9589352e409c48155f4e5f3d8408320f0775b38def6d11ad9f6cd0464781df3207484757e37068124f1278ba5b9e466d61a16bb6eb25b1bc8c24da1cf3
-
SSDEEP
49152:uPiLwsl1gvYcXYThnzFDLtGCvIh88YWtSZ7+N2fFzHVuwJLitXnA:u6LNHnxDLt/LGIZqSFDvLKQ
Score
10/10
Malware Config
Extracted
Family
androrat
C2
10.0.10.28:8000
Signatures
-
Androrat family
-
Requests dangerous framework permissions 10 IoCs
Files
-
help.apk
com.example.reverseshell2
com.example.reverseshell2.MainActivity
Android Permissions
help.apk
Permissions
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.READ_SMS
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_CALL_LOG
android.permission.RECORD_AUDIO
android.permission.SYSTEM_ALERT_WINDOW
android.permission.READ_PHONE_STATE