Overview

overview

10

Static

static

10

Interbank....ad.apk

android-9-x86

1

Interbank....ad.apk

android-10-x64

1

Interbank....ad.apk

android-11-x64

1

childapp.apk

android-9-x86

childapp.apk

android-10-x64

7

childapp.apk

android-11-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Interbank.Seguridad.apk

  • Size

    8.6MB

  • MD5

    f12334c49f47b7442943dcec85d4d5cc

  • SHA1

    6e551d2d701bb79834b0a915495f01885f7acda8

  • SHA256

    d0c34a43a01f24ae3414a9fb9de7bdfd49264b38310051785d338a9f3aaeaa96

  • SHA512

    f344cefbccbe71f6b22cabe0a86b5423c50cd21b59f97aac23c402222e5484693db6f8fdf148c8451e7beef2e5f9402bb2de656e8d2c47de8b96ded5deb68ebb

  • SSDEEP

    196608:M6SqyptZDn7x85hF6bhoBJeVlPLypPugBRfNmLLx:TSqyp3DV85hkhoB4NERBRK

Score
10/10
spynote

Malware Config

Signatures

  • Spynote family
    spynote
  • Spynote payload 1 IoCs
  • Attempts to obfuscate APK file format

    Applies obfuscation techniques to the APK format in order to hinder analysis

  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 3 IoCs
  • Requests dangerous framework permissions 3 IoCs

Files

  • Interbank.Seguridad.apk
    .apk android

    com.system.myaplication

    com.appd.instll.splash


  • childapp.apk
    .apk android

    build.ledear.xpwcy

    build.ledear.qdqnckphnskpoklnucahafazzeueiinkgelekbdwndgdqmgone2.MainActivity


Android Permissions

Interbank.Seguridad.apk

Permissions

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.REQUEST_DELETE_PACKAGES