Overview

overview

10

Static

static

10

Interbank....1).apk

android-9-x86

1

Interbank....1).apk

android-10-x64

1

Interbank....1).apk

android-11-x64

1

childapp.apk

android-9-x86

childapp.apk

android-10-x64

7

childapp.apk

android-11-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    Interbank.Seguridad (1).apk

  • Size

    8.6MB

  • MD5

    821b5d030082efa1dad1301741feaa91

  • SHA1

    04cd24b8b9ece639d4ced8d8a3e37d60765c8983

  • SHA256

    534729743f2226b147350301fa634fb82afc04421267bc32bc4c24e1a1b3b18c

  • SHA512

    56052120c48d1d40dcea2c0f5aa33c7b7ad9b3bc560bc2f03f25708f6ddb1e9fc697a4982b7e7a777c84de1045a59a1643a1941fadba75f9f89fe918b3b53901

  • SSDEEP

    196608:h6SqlptZDnKOr8IQURtXfBNsrPIsIxWdShl+NfLmQ:USqlp3DXPlfjs7/g+Shls

Score
10/10
spynote

Malware Config

Signatures

  • Spynote family
    spynote
  • Spynote payload 1 IoCs
  • Attempts to obfuscate APK file format

    Applies obfuscation techniques to the APK format in order to hinder analysis

  • Declares broadcast receivers with permission to handle system events 1 IoCs
  • Declares services with permission to bind to the system 3 IoCs
  • Requests dangerous framework permissions 3 IoCs

Files

  • Interbank.Seguridad (1).apk
    .apk android

    com.system.myaplication

    com.appd.instll.splash


  • childapp.apk
    .apk android

    build.ledear.xpwcy

    build.ledear.qdqnckphnskpoklnucahafazzeueiinkgelekbdwndgdqmgone2.MainActivity


Android Permissions

Interbank.Seguridad (1).apk

Permissions

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.REQUEST_DELETE_PACKAGES