regk.ewpgvfdrbg.eskwdfv.fdkbkfibid.dfbooedsivdi.rdfbofobgppfr
android.intent.action.MAIN
General
-
Target
05c3883dab30dd8f521ad42b640fe1fbc7d851e03bbfbb0fb7a50502996f60c9.bin
-
Size
2.6MB
-
MD5
28613695fc1c400cb69835f442b57f41
-
SHA1
6e47845900ca01ef40f3af4b5e48aab43d3fc522
-
SHA256
05c3883dab30dd8f521ad42b640fe1fbc7d851e03bbfbb0fb7a50502996f60c9
-
SHA512
3aa9678b9807ac7b98b0da193ed83c081be396dd6fba10a7405a58428a5b6d15fa228558abedd174f0213c283bbd7c1c2e39456d297fb8387bc86beca6fe2992
-
SSDEEP
24576:4EF4m51+WtE0CmFgqrhKf5O6HyLy9DhkOUl0XPTOWySeOBN2PkCr6c:4lJWu0J2P3ZUldWdeOBRCrz
Score
10/10
Malware Config
Signatures
-
Android SoumniBot payload 1 IoCs
-
Soumnibot family
-
Attempts to obfuscate APK file format
Applies obfuscation techniques to the APK format in order to hinder analysis
-
Requests dangerous framework permissions 12 IoCs
Files
-
05c3883dab30dd8f521ad42b640fe1fbc7d851e03bbfbb0fb7a50502996f60c9.bin
regk.ewpgvfdrbg.eskwdfv
regk.ewpgvfdrbg.eskwdfv.fdkbkfibid.dfbooedsivdi.rdfbofobgppfr
Android Permissions
05c3883dab30dd8f521ad42b640fe1fbc7d851e03bbfbb0fb7a50502996f60c9.bin
Permissions
android.permission.ACCESS_WIFI_STATE
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.READ_PHONE_STATE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.GET_ACCOUNTS
android.permission.FOREGROUND_SERVICE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE_MEDIA_PLAYBACK