Техническая информация
Вредоносные функции:
Загружает на исполнение код следующих детектируемых угроз:
- Android.MobiDash.2.origin
Сетевая активность:
Подключается к:
- UDP(DNS) <Google DNS>
- TCP(TLS/1.0) api.face####.com:443
- TCP(TLS/1.0) e.crashly####.com:443
- TCP(TLS/1.0) 1####.217.17.110:443
- TCP(TLS/1.0) sett####.crashly####.com:443
- TCP(TLS/1.0) api.sofas####.com:443
Запросы DNS:
- api.sofas####.com
- e.crashly####.com
- g####.face####.com
- sett####.crashly####.com
Изменения в файловой системе:
Создает следующие файлы:
- <Package Folder>/app_app_apk/results.dat.jar
- <Package Folder>/cache/####/12c598a133f659c3e21736ac66409a80.0.tmp
- <Package Folder>/cache/####/12c598a133f659c3e21736ac66409a80.1.tmp
- <Package Folder>/cache/####/1379f728df09f2b3ecb23116cd804ce2.0.tmp
- <Package Folder>/cache/####/1379f728df09f2b3ecb23116cd804ce2.1.tmp
- <Package Folder>/cache/####/17387655ab7a4ae24942e64e74e8b1b2.0.tmp
- <Package Folder>/cache/####/17387655ab7a4ae24942e64e74e8b1b2.1.tmp
- <Package Folder>/cache/####/1c9894a153405401fc7bbd324f0d41ca.0.tmp
- <Package Folder>/cache/####/1c9894a153405401fc7bbd324f0d41ca.1.tmp
- <Package Folder>/cache/####/1e28b1f1893424a6a0ff421e9afee1a8.0.tmp
- <Package Folder>/cache/####/1e28b1f1893424a6a0ff421e9afee1a8.1.tmp
- <Package Folder>/cache/####/25d6f677350dc6c5b5bdcfc5f7041d18.0.tmp
- <Package Folder>/cache/####/25d6f677350dc6c5b5bdcfc5f7041d18.1.tmp
- <Package Folder>/cache/####/261b89a4100c044e97525c17ebf0d19e.0.tmp
- <Package Folder>/cache/####/261b89a4100c044e97525c17ebf0d19e.1.tmp
- <Package Folder>/cache/####/28ce0e4adc4f0cca71267ecd095a31a8.0.tmp
- <Package Folder>/cache/####/28ce0e4adc4f0cca71267ecd095a31a8.1.tmp
- <Package Folder>/cache/####/2d1ead44ae27084c009dad47ec82611d.0.tmp
- <Package Folder>/cache/####/2d1ead44ae27084c009dad47ec82611d.1.tmp
- <Package Folder>/cache/####/373f78b0923328ba8368801c63c7e331.0.tmp
- <Package Folder>/cache/####/373f78b0923328ba8368801c63c7e331.1.tmp
- <Package Folder>/cache/####/37f70789d1e416f5be66d25d57c76173.0.tmp
- <Package Folder>/cache/####/37f70789d1e416f5be66d25d57c76173.1.tmp
- <Package Folder>/cache/####/3e3432d721f1c9e076f408f679f391a0.0.tmp
- <Package Folder>/cache/####/3e3432d721f1c9e076f408f679f391a0.1.tmp
- <Package Folder>/cache/####/41db6202d4585c64f686bb3a95f8104d.0.tmp
- <Package Folder>/cache/####/41db6202d4585c64f686bb3a95f8104d.1.tmp
- <Package Folder>/cache/####/4c5fc1d8c03168c3f8f6e37b714e8fb9.0.tmp
- <Package Folder>/cache/####/4c5fc1d8c03168c3f8f6e37b714e8fb9.1.tmp
- <Package Folder>/cache/####/5630e54338071171c985029d38745dc9.0.tmp
- <Package Folder>/cache/####/5630e54338071171c985029d38745dc9.1.tmp
- <Package Folder>/cache/####/67e6513cb768747716483fcf50c3a0fa.0.tmp
- <Package Folder>/cache/####/67e6513cb768747716483fcf50c3a0fa.1.tmp
- <Package Folder>/cache/####/751758677497b95ddae0c34ebbac5091.0.tmp
- <Package Folder>/cache/####/751758677497b95ddae0c34ebbac5091.1.tmp
- <Package Folder>/cache/####/77c83631864544f28b625670abb9d3c9.0.tmp
- <Package Folder>/cache/####/77c83631864544f28b625670abb9d3c9.1.tmp
- <Package Folder>/cache/####/7d566c86c2194e7fd374e3a2bd45e107.0.tmp
- <Package Folder>/cache/####/7d566c86c2194e7fd374e3a2bd45e107.1.tmp
- <Package Folder>/cache/####/8162211322ff86a558953e648f470552.0.tmp
- <Package Folder>/cache/####/8162211322ff86a558953e648f470552.1.tmp
- <Package Folder>/cache/####/87486adcb7a1bb536007eac0d20fffac.0.tmp
- <Package Folder>/cache/####/87486adcb7a1bb536007eac0d20fffac.1.tmp
- <Package Folder>/cache/####/8b69fcb61d476c5c66623c81f98a42ff.0.tmp
- <Package Folder>/cache/####/8b69fcb61d476c5c66623c81f98a42ff.1.tmp
- <Package Folder>/cache/####/8e82726fa4e13a7e70e1cdc73fd75135.0.tmp
- <Package Folder>/cache/####/8e82726fa4e13a7e70e1cdc73fd75135.1.tmp
- <Package Folder>/cache/####/9375051d524539aa4ea21fa0ca27dfcf.0.tmp
- <Package Folder>/cache/####/9375051d524539aa4ea21fa0ca27dfcf.1.tmp
- <Package Folder>/cache/####/9ce26281df0c6c82ed39ff0ea20cf586.0.tmp
- <Package Folder>/cache/####/9ce26281df0c6c82ed39ff0ea20cf586.1.tmp
- <Package Folder>/cache/####/a7198ae9f60ee1b35df5981a4a629d17.0.tmp
- <Package Folder>/cache/####/a7198ae9f60ee1b35df5981a4a629d17.1.tmp
- <Package Folder>/cache/####/a9a82f33d198d86dccaa2b6fb1618e56.0.tmp
- <Package Folder>/cache/####/a9a82f33d198d86dccaa2b6fb1618e56.1.tmp
- <Package Folder>/cache/####/a9eba3e2a14521f162106270a0841f83.0.tmp
- <Package Folder>/cache/####/a9eba3e2a14521f162106270a0841f83.1.tmp
- <Package Folder>/cache/####/b4b95cf71c9606644a9fee25748d074f.0.tmp
- <Package Folder>/cache/####/b4b95cf71c9606644a9fee25748d074f.1.tmp
- <Package Folder>/cache/####/b6c014789b4cb44dd73eff0337829335.0.tmp
- <Package Folder>/cache/####/b6c014789b4cb44dd73eff0337829335.1.tmp
- <Package Folder>/cache/####/b7658abd1c7710a4456ca559414b3ccd.0.tmp
- <Package Folder>/cache/####/b7658abd1c7710a4456ca559414b3ccd.1.tmp
- <Package Folder>/cache/####/ba5726ce15ca54a99aadb08f477e773d.0.tmp
- <Package Folder>/cache/####/ba5726ce15ca54a99aadb08f477e773d.1.tmp
- <Package Folder>/cache/####/c70e44310ba673545ad8a7d2aded2589.0.tmp
- <Package Folder>/cache/####/c70e44310ba673545ad8a7d2aded2589.1.tmp
- <Package Folder>/cache/####/cae6f55a59594863ca2a82d213f6c87a.0.tmp
- <Package Folder>/cache/####/cae6f55a59594863ca2a82d213f6c87a.1.tmp
- <Package Folder>/cache/####/d66a3c909c31316546ba1bba065c37f0.0.tmp
- <Package Folder>/cache/####/d66a3c909c31316546ba1bba065c37f0.1.tmp
- <Package Folder>/cache/####/dfaaf2246c116b20700e4dbfff57f68d.0.tmp
- <Package Folder>/cache/####/dfaaf2246c116b20700e4dbfff57f68d.1.tmp
- <Package Folder>/cache/####/e086d6b0174255d1ef918911743eff7e.0.tmp
- <Package Folder>/cache/####/e086d6b0174255d1ef918911743eff7e.1.tmp
- <Package Folder>/cache/####/eae0b12023d98391b88dfcec2f381c0d.0.tmp
- <Package Folder>/cache/####/eae0b12023d98391b88dfcec2f381c0d.1.tmp
- <Package Folder>/cache/####/ed1723cd32a565c00c824679ca7278d9.0.tmp
- <Package Folder>/cache/####/ed1723cd32a565c00c824679ca7278d9.1.tmp
- <Package Folder>/cache/####/f3711bd5761a128a3d6b4a09e86b7d48.0.tmp
- <Package Folder>/cache/####/f3711bd5761a128a3d6b4a09e86b7d48.1.tmp
- <Package Folder>/cache/####/fa6d76f1e55ac4970919b1a49520dca3.0.tmp
- <Package Folder>/cache/####/fa6d76f1e55ac4970919b1a49520dca3.1.tmp
- <Package Folder>/cache/####/fb22fd260e5ed03b9d32f9bfcd63b9c2.0.tmp
- <Package Folder>/cache/####/fb22fd260e5ed03b9d32f9bfcd63b9c2.1.tmp
- <Package Folder>/cache/####/journal.tmp
- <Package Folder>/code_cache/####/MultiDex.lock
- <Package Folder>/code_cache/####/tmp-<Package>-1.apk.classes-289951030.zip
- <Package Folder>/databases/google_analytics_v4.db-journal
- <Package Folder>/databases/sofascore.db-journal
- <Package Folder>/files/####/5A0D85BB0098-0001-081B-511F38FAA940...OS.cls
- <Package Folder>/files/####/5A0D85BB0098-0001-081B-511F38FAA940...pp.cls
- <Package Folder>/files/####/5A0D85BB0098-0001-081B-511F38FAA940...s_temp
- <Package Folder>/files/####/<Package>-1.apk.classes-99762864.zip
- <Package Folder>/files/####/com.crashlytics.settings.json
- <Package Folder>/files/####/initialization_marker
- <Package Folder>/files/####/sa_9ae6103a-9071-4242-bc47-9789b96b...97.tap
- <Package Folder>/files/####/session_analytics.tap
- <Package Folder>/files/####/session_analytics.tap.tmp
- <Package Folder>/files/AppEventsLogger.persistedevents
- <Package Folder>/files/pHisyfSwB
- <Package Folder>/files/persisted_config
- <Package Folder>/no_backup/com.google.android.gms.appid-no-backup
- <Package Folder>/shared_prefs/<Package>_preferences.xml
- <Package Folder>/shared_prefs/TwitterAdvertisingInfoPreferences.xml
- <Package Folder>/shared_prefs/_has_set_default_values.xml
- <Package Folder>/shared_prefs/com.crashlytics.prefs.xml
- <Package Folder>/shared_prefs/com.crashlytics.sdk.android.crash...re.xml
- <Package Folder>/shared_prefs/com.crashlytics.sdk.android;answe...gs.xml
- <Package Folder>/shared_prefs/com.facebook.sdk.appEventPreferences.xml
- <Package Folder>/shared_prefs/com.facebook.sdk.attributionTracking.xml
- <Package Folder>/shared_prefs/com.google.android.gms.analytics.prefs.xml
- <Package Folder>/shared_prefs/com.google.android.gms.appid.xml
- <Package Folder>/shared_prefs/com.google.android.gms.measurement.prefs.xml
- <Package Folder>/shared_prefs/io.fabric.sdk.android;fabric;io.f....l.xml
- <Package Folder>/shared_prefs/multidex.version.xml
Другие:
Загружает динамические библиотеки:
- pHisyfSwB
Осуществляет доступ к информации о сети.
Осуществляет доступ к информации о телефоне (номер, imei и тд.).
Добавляет задания в системный планировщик.
Отрисовывает собственные окна поверх других приложений.
