ajina | 1ad12e70707c154cee616eec48b85564c5301eb03ca5d7a376f543652b0869ea[.]bin

General

Target

1ad12e70707c154cee616eec48b85564c5301eb03ca5d7a376f543652b0869ea.bin
Size

2.5MB
MD5

b434f65dc9c8771272059b58fa5b2199
SHA1

89cc0c629e31178cef2725a5df268f0e8ba557a5
SHA256

1ad12e70707c154cee616eec48b85564c5301eb03ca5d7a376f543652b0869ea
SHA512

233945e363cc170b92c4aaa326bf768833e01bae2b12112a94103809271c9e8706e10435646df1ff4dbb157bddeb94ec5c4e7576d843160ee2f2ffecb6d45107
SSDEEP

49152:1851PAs0xvL4bEPv5v/MMsFdNzc++XTyYoyietgssr+jFM:i51PfavgEPBc/dJ6XThVsr+jFM

Score

10^/10

ajina

Malware Config

Signatures

Ajina family
ajina

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows read access to the device's phone number(s).	android.permission.READ_PHONE_NUMBERS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE

Files

1ad12e70707c154cee616eec48b85564c5301eb03ca5d7a376f543652b0869ea.bin
.apk android

cheli.ia_tochno.ne_negr

cheli.ia_tochno.ne_negr.ui.MainActivity

Activities

cheli.ia_tochno.ne_negr.ui.MainActivity

android.intent.action.MAIN

Permissions

android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.READ_PHONE_STATE
android.permission.READ_PHONE_NUMBERS
android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.USE_EXACT_ALARM
android.permission.FOREGROUND_SERVICE_DATA_SYNC
android.permission.WAKE_LOCK
android.permission.QUERY_ALL_PACKAGES
cheli.ia_tochno.ne_negr.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

cheli.ia_tochno.ne_negr.core.MainReciever

android.intent.action.QUICKBOOT_POWERON
android.intent.action.BOOT_COMPLETED
android.intent.action.LOCKED_BOOT_COMPLETED
com.htc.action.QUICKBOOT_POWERON
android.intent.action.REBOOT
android.intent.action.ACTION_SHUTDOWN
android.intent.action.SCREEN_ON
android.intent.action.SCREEN_OFF
android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_CB_RECEIVED
android.intent.action.DATA_SMS_RECEIVED

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

Services

Android Permissions

1ad12e70707c154cee616eec48b85564c5301eb03ca5d7a376f543652b0869ea.bin

Permissions

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.READ_PHONE_STATE

android.permission.READ_PHONE_NUMBERS

android.permission.CALL_PHONE

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.USE_EXACT_ALARM

android.permission.FOREGROUND_SERVICE_DATA_SYNC

android.permission.WAKE_LOCK

android.permission.QUERY_ALL_PACKAGES

cheli.ia_tochno.ne_negr.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Sharing

General

Malware Config

Signatures

Files

cheli.ia_tochno.ne_negr

cheli.ia_tochno.ne_negr.ui.MainActivity

Activities

cheli.ia_tochno.ne_negr.ui.MainActivity

Permissions

Receivers

cheli.ia_tochno.ne_negr.core.MainReciever

androidx.profileinstaller.ProfileInstallReceiver

Services

Android Permissions

1ad12e70707c154cee616eec48b85564c5301eb03ca5d7a376f543652b0869ea.bin