DHL1[.]apk | Triage

General

Target

DHL1.apk
Size

5.3MB
MD5

d8344f575dd39cbdee2949b98d86139a
SHA1

46fb041f19b442767c043f0fae022b1d590b79a9
SHA256

5b404c066e702802b7475d2c2eecebd6fceb2490773f92d501d57b53de34213c
SHA512

6be54056802de48f65dca16ef8b23fbaa9e97282aea4a33b0e614a67b08917ec30ef346114dd9c5b01444e33a0caa88c7bd9cd610c5c77c98a8bce3d2dea5259
SSDEEP

98304:vUqRkavZH6lYEzGNe/gIW1uWGN3NykYLQUiCubgkAMkP3cr7yxrKT68:vUOLvHwY09ykYLQ3LbUMkP3cr7yNKTv

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to read SMS messages.	android.permission.READ_SMS

Files

DHL1.apk
.apk android

com.qq.reader

com.qq.reader.p05f9560f

Activities

com.qq.reader.pe795bd05

android.intent.action.MAIN

com.qq.reader.p05f9560f

android.intent.action.MAIN

com.qq.reader.p3cb7d6b7

android.intent.action.SENDTO
android.intent.action.SEND

Permissions

android.permission.CALL_PHONE
android.permission.SEND_SMS
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_SMS
android.permission.RECEIVE_SMS
android.permission.VIBRATE
android.permission.READ_CONTACTS
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.INTERNET
android.permission.FOREGROUND_SERVICE
android.permission.READ_SMS
android.permission.QUERY_ALL_PACKAGES
android.permission.WAKE_LOCK
android.permission.REQUEST_DELETE_PACKAGES

Receivers

com.qq.reader.pd7fc8ca3

android.provider.Telephony.SMS_DELIVER

com.qq.reader.p800c47cd

android.provider.Telephony.WAP_PUSH_DELIVER

Services

com.qq.reader.p91564b42

android.service.notification.NotificationListenerService

com.qq.reader.p65fa7fa4

android.intent.action.RESPOND_VIA_MESSAGE

com.qq.reader.p4c4a83bb

android.accessibilityservice.AccessibilityService

Android Permissions

DHL1.apk

Permissions

android.permission.CALL_PHONE

android.permission.SEND_SMS

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_SMS

android.permission.RECEIVE_SMS

android.permission.VIBRATE

android.permission.READ_CONTACTS

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

android.permission.INTERNET

android.permission.FOREGROUND_SERVICE

android.permission.READ_SMS

android.permission.QUERY_ALL_PACKAGES

android.permission.WAKE_LOCK

android.permission.REQUEST_DELETE_PACKAGES

Sharing

General

Malware Config

Signatures

Files

com.qq.reader

com.qq.reader.p05f9560f

Activities

com.qq.reader.pe795bd05

com.qq.reader.p05f9560f

com.qq.reader.p3cb7d6b7

Permissions

Receivers

com.qq.reader.pd7fc8ca3

com.qq.reader.p800c47cd

Services

com.qq.reader.p91564b42

com.qq.reader.p65fa7fa4

com.qq.reader.p4c4a83bb

Android Permissions

DHL1.apk