aed0c977175c0704b9934a3d80a04120593d71777c2e838b1c47fe7bafcd92f6[.]bin

Sharing

Copy URL

Twitter E-mail

General

Target

aed0c977175c0704b9934a3d80a04120593d71777c2e838b1c47fe7bafcd92f6.bin
Size

1.8MB
MD5

af6d8b27181b104634e11dcebe2b35b7
SHA1

acfb9251eae04b2934c7ae467f3c3ec43ec9d8f7
SHA256

aed0c977175c0704b9934a3d80a04120593d71777c2e838b1c47fe7bafcd92f6
SHA512

65c9d13ae8902e799663a0fec915c5df1a080bfc47a62e28aa6ba446b732bf1d05ba5b4834ac047131799214ae87a5e480151a0430f797af32f5d4db2344644e
SSDEEP

24576:CY1lHIMS6P5yP99hH/9VgESEzUnoUXuvzsy8UZSyLFjozs8FmR9a54V5b7+dHuM0:CY1ZjPkF3/vUoHzsdUQ6FEfFah/Ou7

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

Processes:

description ioc

Required by accessibility services to bind with the system. Allows apps to access accessibility features. android.permission.BIND_ACCESSIBILITY_SERVICE

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 8 IoCs

Processes:

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows read access to the device's phone number(s).	android.permission.READ_PHONE_NUMBERS
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS

Files

aed0c977175c0704b9934a3d80a04120593d71777c2e838b1c47fe7bafcd92f6.bin
.apk android

org.zzzz.aaa

org.zzzz.aaa.ui.MainActivity

Activities

org.zzzz.aaa.ui.MainActivity

android.intent.action.MAIN

Permissions

oppo.permission.OPPO_COMPONENT_SAFE
com.huawei.permission.external_app_settings.USE_COMPONENT
android.permission.READ_PHONE_STATE
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.CALL_PHONE
android.permission.READ_PHONE_NUMBERS
android.permission.READ_CALL_LOG
android.permission.READ_CONTACTS
android.permission.GET_ACCOUNTS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_BOOT_COMPLETED
org.zzzz.aaa.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

org.zzzz.aaa.core.SmsReceiver

android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_CB_RECEIVED
android.intent.action.DATA_SMS_RECEIVED
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.AIRPLANE_MODE
android.intent.action.SCREEN_ON
android.intent.action.SCREEN_OFF
android.intent.action.QUICKBOOT_POWERON
android.intent.action.BOOT_COMPLETED
android.intent.action.LOCKED_BOOT_COMPLETED
com.htc.action.QUICKBOOT_POWERON
android.intent.action.REBOOT
android.intent.action.BATTERY_OKAY
android.intent.action.DATE_CHANGED

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

Services

org.zzzz.aaa.core.MainAccessibilityService

android.accessibilityservice.AccessibilityService

aed0c977175c0704b9934a3d80a04120593d71777c2e838b1c47fe7bafcd92f6.bin

Permissions

oppo.permission.OPPO_COMPONENT_SAFE

com.huawei.permission.external_app_settings.USE_COMPONENT

android.permission.READ_PHONE_STATE

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.CALL_PHONE

android.permission.READ_PHONE_NUMBERS

android.permission.READ_CALL_LOG

android.permission.READ_CONTACTS

android.permission.GET_ACCOUNTS

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.RECEIVE_BOOT_COMPLETED

org.zzzz.aaa.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Sharing

General

Malware Config

Signatures

Files

org.zzzz.aaa

org.zzzz.aaa.ui.MainActivity

Activities

org.zzzz.aaa.ui.MainActivity

Permissions

Receivers

org.zzzz.aaa.core.SmsReceiver

androidx.profileinstaller.ProfileInstallReceiver

Services

org.zzzz.aaa.core.MainAccessibilityService

Android Permissions

aed0c977175c0704b9934a3d80a04120593d71777c2e838b1c47fe7bafcd92f6.bin