2bd89b471ffc560832a2f8ffcc5be9d77afe353c6b54ea00321595a508531670[.]bin

Sharing

Copy URL

Twitter E-mail

General

Target

2bd89b471ffc560832a2f8ffcc5be9d77afe353c6b54ea00321595a508531670.bin
Size

2.2MB
MD5

adf392c6557a1abff722740f1813142b
SHA1

0690a2818d5eff8ab20e4e31a199ecb1764ccdf8
SHA256

2bd89b471ffc560832a2f8ffcc5be9d77afe353c6b54ea00321595a508531670
SHA512

7b1267fdee7f9028eac72f1fbec4cc2c50e0d07df140f792786716f81076de392128c9d896e6f068b371053c2c3a20b8996740da3bff6cc63fc47e159f006485
SSDEEP

49152:ZFClMQXCQnn0+cAnfukpXbaS6DMZu/HR/ZEj1xf5g4e8H:vQn3LXSh/ZEjD5g4

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

Processes:

description	ioc
Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device.	android.permission.BIND_NOTIFICATION_LISTENER_SERVICE

Requests dangerous framework permissions 7 IoCs

Processes:

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

2bd89b471ffc560832a2f8ffcc5be9d77afe353c6b54ea00321595a508531670.bin
.apk android

com.pickersoft.myweb

com.pickersoft.myweb.MainActivity

Activities

com.pickersoft.myweb.MainActivity

android.intent.action.MAIN

com.pickersoft.myweb.ComposeSmsActivity

android.intent.action.SEND
android.intent.action.SENDTO

Permissions

android.permission.WAKE_LOCK
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.CALL_PHONE
android.permission.READ_CALL_LOG
android.permission.READ_CONTACTS
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_CLIPBOARD
com.pickersoft.myweb.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Receivers

com.pickersoft.myweb.SmsReceiver

android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_DELIVER

com.pickersoft.myweb.MmsReceiver

android.provider.Telephony.WAP_PUSH_DELIVER

com.pickersoft.myweb.CallReceiver

android.intent.action.PHONE_STATE

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

Services

com.pickersoft.myweb.NotificationListener

android.service.notification.NotificationListenerService

com.pickersoft.myweb.HeadlessSmsSendService

android.intent.action.RESPOND_VIA_MESSAGE

2bd89b471ffc560832a2f8ffcc5be9d77afe353c6b54ea00321595a508531670.bin

Permissions

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.CALL_PHONE

android.permission.READ_CALL_LOG

android.permission.READ_CONTACTS

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_CLIPBOARD

com.pickersoft.myweb.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

Sharing

General

Malware Config

Signatures

Files

com.pickersoft.myweb

com.pickersoft.myweb.MainActivity

Activities

com.pickersoft.myweb.MainActivity

com.pickersoft.myweb.ComposeSmsActivity

Permissions

Receivers

com.pickersoft.myweb.SmsReceiver

com.pickersoft.myweb.MmsReceiver

com.pickersoft.myweb.CallReceiver

androidx.profileinstaller.ProfileInstallReceiver

Services

com.pickersoft.myweb.NotificationListener

com.pickersoft.myweb.HeadlessSmsSendService

Android Permissions

2bd89b471ffc560832a2f8ffcc5be9d77afe353c6b54ea00321595a508531670.bin