Mobile threat intelligence for the masses

Try a real life example of Pithus on TryHackMe: Android Malware Analysis
Search by fuzzy hash

Results

org.tasks
d0b380652470f44503e5474b8720b7d2685cf87a575c4429031cf6e48cad481d
Tasks
Version: 120700
First seen: 2022-09-29T07:39:50.997492
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.google.audio.hearing.visualization.accessibility.scribe
1762ec427f5336b168b3046e5573d58afbd11ba5e57ed7c44729f3915e8af8b8
Live Transcribe & Sound Notifications
Version: 64912
First seen: 2022-09-28T01:22:04.100005
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.android.bluetooth
9abdf93e63d0ff29b8f686d4ebd1aa7cbe0c3830096405f102d895672b4f3733
Bluetooth
Version: 31
First seen: 2022-09-27T23:46:50.801799
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.samsung.android.aware.service
83c092e82d37449473432690b106a57e6dd7fd2009c26c69fd28b7fbf0b2a638
Quick Share
Version: 351334100
First seen: 2022-09-27T23:06:52.893232
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.samsung.android.samsungpass
b290dc6605e015e6e9b4d013fe67f2200daf942ee3e28691986508eb1b6afcf4
Samsung Pass
Version: 300601900
First seen: 2022-09-27T20:01:50.026735
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.samsung.android.game.gamehome
eb52cf656ca4ad1fad3830fb53fe736d0ff668071c4706b1aee0697f7a8af067
Game Launcher
Version: 600103000
First seen: 2022-09-27T16:59:49.523779
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.whatsapp
e545f3a958f5542f58b99412a3052f0a67fdcd6d53340da7d366dc22da2edb51
WhatsApp
Version: 222078000
First seen: 2022-09-27T08:39:16.581661
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

com.muvinai.carnet2
4d6f806a3a9ac0b3744c5aad87723972e9d12d4b3a7337a6bec4b601b1f40f94
SportClub
Version: 37
First seen: 2022-09-26T12:07:53.341447
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.google.android.setupwizard
d19371ea1f972a89a9757aa018ce90baf35e7aaa65af0bc0e10146074705f746
Android Setup
Version: 15967
First seen: 2022-09-24T20:02:57.178504
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.google.android.feedback
127fe66504e036a3687b81e7114997c2626930cea29fe100fb38e82accc27d06
Market Feedback Agent
Version: 31
First seen: 2022-09-24T20:01:36.974752
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.whatsapp
c48dc6e10d7f7d4cea7c8bef56f0d8bbb3083583b942560456e4265760a4d260
WhatsApp
Version: 221977000
First seen: 2022-09-23T18:58:55.336690
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
se.vkur.clientapp
d53f7423f9d391b637686ba7e9596858ba4b6fbc46ac3eca02a6e03dcdc20e55
Vkurse Client
Version: 160
First seen: 2022-09-18T20:02:47.292889
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

18/63
Similar samples:
net.reptilicus.c…
com.whereismytrain.android
de086b0b791abab6119622f2d30ca0f42c4c80279ea7390600f05f693702a711
Where is my Train
Version: 713
First seen: 2022-09-18T03:56:25.735612
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.whatsapp
5689d6fd58741e183be1ec4abd96d4f963414d39f2595842a086ba8f263e08e0
WhatsApp
Version: 2139210154
First seen: 2022-09-17T17:45:22.415218
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

1/63
com.flixify
49720031074ebf91c84c2eecbeb4ec51940dcc60e6ea8f25ab2918d510036764
FlixTV
Version: 7
First seen: 2022-09-15T12:34:13.188528
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

1/63
video.player.videoplayer
1c6bff15258bbd61cd53de93f18f38036df71608a0fdd97afbb9fc184a25fb78
XPlayer - Video Player
Version: 231400
First seen: 2022-09-15T10:48:54.616793
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

1/64
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: High Risk
com.lsdroid.cerberus.client
f41fa15a2f0f89c96ff292d0f64caecaa17fd5fadc566e4918e5ab6bcdd6e12b
Client Cerberus
Version: 15
First seen: 2022-09-13T20:17:21.957902
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

10/64
jkdf.gds.gds.g
4e5ea73770c5bee7fb8cbaeb188d2d7258ba8879cfdb4d459dfbdd7dd9a3e650
My GPS Location
Version: 1
First seen: 2022-09-09T17:57:34.523102
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Low Risk
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.ymwhatsapp
2ab9a00121f018ec0b2e7d43505385e46d8f26e87ce3bc40d57691f0fc46af82
WhatsApp
Version: 999999999
First seen: 2022-09-05T18:29:21.277757
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: High Risk
Similar samples:
com.whatsapp
com.whatsapp
2a8952d3a6079fa6c873b73936928470c8c8f2085d0bbae89f645017ee14dada
WhatsApp
Version: 999999999
First seen: 2022-09-05T17:59:55.315475
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: High Risk
Similar samples:
com.ymwhatsapp
com.orange.aura.oobe
93995900d9003b351fd281fe7285e62650452619cb3903c6b3fe2a8614d81b5e
Orange Manual Selector
Version: 322053
First seen: 2022-09-05T17:30:57.126314
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.delemento
902c5f46ac101b6f30032d4c5c86ecec115add3605fb0d66057130b6e11c57e6
Rasmlar
Version: 1
First seen: 2022-09-04T17:59:37.457535
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat:
31/62
Android.Spyware.DroidWatcher
com.vtosters.lite
7bfc2de17d7e0feec9cb3f0cf6a5473ffd20a056cb91368140d994b28c273dd6
VTLite
Version: 3439
First seen: 2022-09-02T17:42:24.080073
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
net.reptilicus.clientapp
99b36b155f432d5b36b46f294cda426b08a1a5cca0796ccd418b15e070448fd3
Reptilicus Client
Version: 160
First seen: 2022-08-30T17:07:18.137867
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat:
18/64
Android.Spyware.Reptilic
Similar samples:
se.vkur.clientapp
com.shadyspy.monitor
4d43ecaadc57910cd8df8ee7c280e411dba3089efe760cd5d001098e3e052cf3
ShadySpy
Version: 114
First seen: 2022-08-29T02:13:04.710613
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.softissimo.reverso.context
42966fb73f4e3d4f85950b6d1071f321cba06ddebf54d9c0e858394bfc7f47ef
Reverso Context
Version: 10000068
First seen: 2022-08-28T23:10:42.886913
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.geozilla.family
fa2310eff0c365d8f03317dbf8fc1272ed524a6f94ac0f358aab04e12a9c9d80
GeoZilla
Version: 131653
First seen: 2022-08-28T19:54:05.299150
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.zoemob.gpstracking
7c26281b2fd8b62350c49156e2fbf0d4009f1fdba1f59e51c7ad102a9018fe91
Family Locator
Version: 475
First seen: 2022-08-28T18:54:34.095180
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.bitdefender.security
d6a11f10a9aa10416f9e6e3d8d0a62aeacdfb9c3ec603088259c30ac8ab1fbe9
Bitdefender Security
Version: 31754024
First seen: 2022-08-22T08:14:02.401811
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.pdangi
9690b0abf4f56e6ef8e1ae097fc86c878528782edb7cfec17df3a23dcbddde88
BRT Nusantara
Version: 4
First seen: 2022-08-20T06:34:13.430366
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
Similar samples:
com.pdangi
com.pdangi
0a35ecbe05be3287dd709a38f204da92891e4bab0a754ad244e8da8d81173d8f
BRT Nusantara
Version: 4
First seen: 2022-08-20T06:24:55.977548
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
Similar samples:
com.pdangi
com.global.foodpanda.android
437e5ad5974ef16bd5cd9c937fc3e5f230409e833761719bfd7ca33121fe968b
foodpanda
Version: 212266274
First seen: 2022-08-19T13:54:31.753385
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.WhatsApp2Plus
a890d2c81a15258d50dba53e0ea7811efc77b9e483538f2be64bb5016fc298c0
WhatsApp
Version: 2119210099
First seen: 2022-08-16T21:33:05.668914
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

5/63
com.ludashi.dualspaceprox
a44a1a2d4a0c771741939cfeb4ee3428c6bf3eebea56d532c27ab5ca973cc634
DualSpace Pro
Version: 22
First seen: 2022-08-14T04:43:09.641906
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

1/65
com.google.android.setupwizard
c1306dab1fe0e5e3425741df260c4fbde3c79b1c90ac8c58869df52451ae5b8c
Android Setup
Version: 14567
First seen: 2022-08-13T23:34:45.975946
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.google.android.gsf
dd69b04b98d9b086138ac7b27924c9731c1c22357904a0ac40b53d720d13312b
Google Services Framework
Version: 31
First seen: 2022-08-13T23:33:44.352729
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
photo.editor.photoeditor.photoeditorpro
300af20a1d07dcd7b77cd22d29a4e2ebca8e1017a2cf690632afd2fdcc0cd926
Photo Editor Pro - Polish
Version: 127001
First seen: 2022-08-12T12:02:26.221078
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
com.broker
5c9cd2ab466b49a6718e61f056d272836906314eae7346f00b479ae427827e2a
Raheja Brokers
Version: 10
First seen: 2022-08-12T11:41:13.953910
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk
in.startv.hotstar
5b60313a47edf3619c656c138e0a893e5ef8c64e8877b1549d7b979802cd439c
Hotstar
Version: 701
First seen: 2022-08-12T08:24:30.221039
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: High Risk
com.backup.tt
5668ce93a99eff4dea6366619e70904efb8d61082c3adf89020fc7582f14d9ca
Backup Service
Version: 1
First seen: 2022-08-11T07:51:42.309595
Attribute: permissions

com.google.android.providers.gsf.permission.READ_GSERVICES

Threat level: Moderate Risk