Mobile threat intelligence for the masses

Try a real life example of Pithus on TryHackMe: Android Malware Analysis
Search by fuzzy hash

Results

com.google.android.apps.restore
4956b6024d83ebf6b921ab4f10b89dc24474f513f5dea3e4d5630712fb18fd24
Data Restore Tool
Version: 31772
First seen: 2022-06-22T03:08:04.742838
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.google.android.apps.turbo
e6d621f68507bf48c25a87b775c318f8896ba71149b2e1e2854af8138d7c0fb2
Device Health Services
Version: 10242261
First seen: 2022-06-22T03:04:22.721247
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.google.android.permissioncontroller
4eb46b42b463eb188c1a1e03b2711de1a0bcfa9e77223d4ede8c205a18cde0cc
Permission controller
Version: 293100000
First seen: 2022-06-14T08:42:58.542469
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.android.systemui
20ec3b10c46c52bff1113663c47b48a7a2fade5a28c3b3df5d4e33be6ee5dc9e
System UI
Version: 30
First seen: 2022-05-27T16:22:18.864005
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.samsung.android.app.telephonyui
aaf3bee74e364c97d478a494b83b19014ef2d2447cb54a6d417df27d030b4704
Call settings
Version: 1013000036
First seen: 2022-05-27T13:38:13.666515
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.android.server.telecom
2082830afac6a03be1f52bdaea22afbb95db21e7b26d05257fab0e36945e1094
Call Management
Version: 28
First seen: 2022-05-27T13:34:04.098173
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Low Risk
com.samsung.desktopsystemui
0839d7f1f0a51f85903fa7f54c6b924746ec9db5d9810d23308215fac72ed8ec
Samsung DeX System UI
Version: 20171030
First seen: 2022-05-27T13:30:53.442285
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Low Risk
com.samsung.android.mobileservice
dfbcf5fdc9758da969e58fca5015be07ce1c83684a45e85df3de53a2e24071ca
Samsung Experience Svc
Version: 1060000013
First seen: 2022-05-24T02:43:51.503206
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: High Risk
com.samsung.android.dialer
f570463c863ea59cc499353080a7e8e78f82236b3a77fcf29b2eeff9f247235b
Phone
Version: 1023000010
First seen: 2022-05-24T02:42:59.821139
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

1/62
com.samsung.android.timezone.updater
bb010f928df1e1953eee589ae1a6ab88f59df0992d96cdea31786b1a29cbc5b2
Time Zone Updater
Version: 100000000
First seen: 2022-05-23T22:41:35.243540
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.samsung.android.video
bb9ebdfb53ee1852ec5bdd145348c5c9c603fe05bb644054ea6610963166449e
Video Player
Version: 730310039
First seen: 2022-05-23T22:36:24.504266
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.samsung.android.kgclient
c3a5eaa50e8ccc078e218428e5b23959f977111d9b0a40c78f2ed4ed9fb08fd5
Device Services
Version: 307800000
First seen: 2022-05-13T19:38:38.708944
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.google.android.apps.turbo
50fc1662f82ad94bd7af4293e4650664ddc9e9955d21690d6ae551ad0a678ce9
Device Health Services
Version: 10218297
First seen: 2022-05-09T22:35:24.014874
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.android.carrierdefaultapp
039a7a70554819603c2813b8399994e25b002214e78db9d7d9a7fa438d813605
CarrierDefaultApp
Version: 28
First seen: 2022-05-09T19:10:00.482450
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Low Risk
com.android.systemui
6590ccb9fe15f3437119d92a844f0b6fa231ddc3d2bc109f7b90f668f58b6d8a
System UI
Version: 31
First seen: 2022-05-01T16:57:57.049084
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.samsung.android.kgclient
ca2ff36ddf7b3a513729867afdd5f40327f8030be8d422d237e8d50df8aff25d
Device Services
Version: 228600000
First seen: 2022-04-26T18:43:01.251368
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.samsung.desktopsystemui
81fbdef970937c585a0be8274e4bfcff872a55f30b038cf6cc559ba057c4d285
Samsung DeX System UI
Version: 20171030
First seen: 2022-04-24T11:50:22.466843
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.google.android.apps.restore
b4963b541b650bf15ba182e69e68b65012d0520719acf79d99bebe418daba7d8
Android Setup
Version: 27768
First seen: 2022-03-11T21:23:22.962853
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

1/58
Similar samples:
com.google.andro…
com.android.systemui
3853b24afe011d30af6f0cd22a040054b697a3b706cd30fa7cab142d8b43810e
System UI
Version: 31
First seen: 2022-02-18T20:46:48.463692
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.google.android.apps.pixelmigrate
1c3106cf0afc7f9da66b9b15cf62053f37003c9236d7a69654b3ddab09707061
Data Transfer Tool
Version: 754052
First seen: 2022-02-10T21:40:05.971440
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

1/55
com.xiaomi.xmsf
06426a9093cc98517383cef13ae0c9a1a562c470d213d7bd4826968cf85cbb44
Xiaomi service framework
Version: 30003010
First seen: 2022-02-05T19:07:49.377298
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Low Risk
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.google.android.apps.restore
b682bd1bed5e0258324ff8dc5556ecf13bda873451701d9a0d4965326af5e231
Data Restore Tool
Version: 31776
First seen: 2022-01-03T22:16:30.597781
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

1/60
com.google.android.permissioncontroller
cbab80e0395f7d9598f3d471053852b7aae45e3721e490a51f289ecaaf3eb3d0
Permission controller
Version: 302000300
First seen: 2021-12-31T14:40:57.564893
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.android.vending
fad9458a597e9d18efdeeceefd9c4e0a74d83e75196d5b9043bd82ebcff87936
Google Play Store
Version: 82211810
First seen: 2021-12-30T10:12:24.929868
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.android.packageinstaller
722237f630081effa0f65afbf6726c65b7f58c55afb25dde76c0d0a87c7b6464
Package installer
Version: 29
First seen: 2021-12-09T07:58:30.479164
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.hoffnung
39036cb15c45a88e226f11cd538d1c525eb43ccc9fd0c25731c0ac41e17c10e3
TPMS
Version: 30400005
First seen: 2021-12-08T14:24:03.726757
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.google.android.apps.restore
02ed588318aaf315dc1c6bf847683a13d4808fd05b3c6072f37736807022ebe7
Android Setup
Version: 27760
First seen: 2021-12-01T15:08:19.460187
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

1/60
Similar samples:
com.google.andro…
com.sec.android.app.music
abe796539a856140b62faaf1939ab3b79e9ec400548b4a4c930d74f26d25889c
Samsung Music
Version: 1621102000
First seen: 2021-11-30T09:23:38.873717
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.samsung.android.kgclient
917297ef0e234715cda1554e03d25e6e20c58175fa7f0367c91ab61bd5b9398b
Device Services
Version: 228600000
First seen: 2021-11-28T18:42:35.640736
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.samsung.android.kgclient
afffc5fe43b5ac21a945601efcce7074ea15b541e6eb10ed8524d25c5963cdb2
Device Services
Version: 228800000
First seen: 2021-11-28T11:00:12.627582
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.google.android.setupwizard
84e30587e335225bb7235b94700842287fc2ce381f76c31d0357c3463a0ee03e
Android Setup
Version: 12775
First seen: 2021-11-23T07:41:17.577454
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.android.vending
28295da013908bb3af8f04a1a161dde1f5ab87ff7c8812f3412f8d555861696f
Google Play Store
Version: 82731510
First seen: 2021-11-17T05:36:38.390386
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.google.android.gms
db215f99499f8d0d37ec65ad8dd5958b541f595668cb08275c8f840aadd8a302
Google Play services
Version: 9452010
First seen: 2021-11-15T06:02:25.425661
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: High Risk
com.google.android.apps.restore
59519d5d97062e4c245050b449fd07967757c5dbb354a595a816f77bf6bab631
Android Setup
Version: 7588
First seen: 2021-11-14T10:43:45.760152
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.samsung.android.app.soundpicker
c558ed6f3cd1ede4d56e0e83bb50b59124638e056a3d867e08cee81e71470d94
Sound picker
Version: 1000034000
First seen: 2021-11-14T10:41:14.166947
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.sec.android.easyMover.Agent
2ce568599cbb60c3bdce5568e3f11c78f5423841273ef6a79c5956af1c73c6d2
Smart Switch Agent
Version: 160600061
First seen: 2021-11-14T10:39:58.712502
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.samsung.android.app.smartcapture
1ef79770bdd3f243a21975136be5da2fb61bc96574b0ccb818299e10bc195ac0
Samsung capture
Version: 291306009
First seen: 2021-11-14T10:39:16.361122
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

1/61
com.android.egg
53c87c83d775e6bd797fffae6f88fdde9132a59255f51c1f0e3f5b3fbd172d7f
Android Easter Egg
Version: 1
First seen: 2021-11-14T10:21:41.982880
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.android.carrierdefaultapp
1b61c178c20a808f553b83a8325e85b81a87e1886ab0e09472d7f2c0ee00812f
CarrierDefaultApp
Version: 28
First seen: 2021-11-14T10:15:44.336008
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Low Risk
com.android.bluetooth
bbfde6958884f9a7b179ebcae182cfba8eda93f95811fa6dedbd1edf70981b41
Bluetooth
Version: 28
First seen: 2021-11-14T10:14:12.004024
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.sec.android.easyMover
ebc6e9be38926caf1a5a08d89af6972d7be0dc9ddb9677533a17ed26a96f9431
Smart Switch
Version: 372405100
First seen: 2021-11-14T03:49:16.967752
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

1/61
com.samsung.android.bixby.agent
9917a690ad8da5237f1ec7b61085daa9c503d8377f2c2cb7c1b4f8b7a2c6abfe
Bixby Voice
Version: 213702000
First seen: 2021-11-13T06:28:21.569439
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.google.android.apps.turbo
f21ed0a13c029509ad9070e3176f009004b530cf0c076f502864e9fedd63f4ca
Device Health Services
Version: 10215957
First seen: 2021-11-10T05:42:05.319898
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk
com.android.vending
6408478abc364afa18f9d1fc4f612177042a18318a116c2fb12ecc9cabf10c6d
Google Play Store
Version: 82002000
First seen: 2021-11-08T06:33:16.232206
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: High Risk
com.android.vending
e89485da9b1ff77548eea12aee5ad9cec7656a3df62c3e914dceb362f4ad6348
Google Play Store
Version: 81582300
First seen: 2021-11-07T22:33:54.874173
Attribute: permissions

android.permission.SUBSTITUTE_NOTIFICATION_APP_NAME

Threat level: Moderate Risk