a14c3b50628d3228124bb0f7f4f0307f1f4a991e6205b5ec8851fdc5e1d505c6

General

Target

a14c3b50628d3228124bb0f7f4f0307f1f4a991e6205b5ec8851fdc5e1d505c6
Size

3.9MB
MD5

88de4f4a115c61938878849afb8308a9
SHA1

9315375f2a31bc938f7d90762754a2eae41f075c
SHA256

a14c3b50628d3228124bb0f7f4f0307f1f4a991e6205b5ec8851fdc5e1d505c6
SHA512

81faa9d6e41fa91cb54df79ff2cf53b2f0226b0094a2391445617a9e410f727558b75b59509b89ef70813d95f68c0924944b1bee2cef9a2e208db7b467a7b64e
SSDEEP

98304:rKh0ZQRmpf3YmlkMCkmExrTgmQWwiqXwJJtjsgKlH7b:uh0Z9pwmSMCk1XgPpXwjtjslH7b

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

Processes:

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

a14c3b50628d3228124bb0f7f4f0307f1f4a991e6205b5ec8851fdc5e1d505c6
.apk android arch:arm

com.shgiaf.zsyy

com.qomki.qo.QOMActivity

Activities

com.qomki.qo.QOMActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.VIBRATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.GET_TASKS
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.GET_PACKAGE_SIZE
android.permission.BLUETOOTH
android.permission.BATTERY_STATS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.SYSTEM_ALERT_WINDOW
android.permission.RESTART_PACKAGES
android.permission.WAKE_LOCK
android.permission.READ_LOGS
android.permission.WRITE_SETTINGS
android.permission.ACCESS_MTK_MMHW

Receivers

cn.dict.dialect.gdh.app.DownLoadBroadcastReceiver

cn.dict.dialect.gdh.DownLoadBroadcastReceiver

Services

com.qomkige.qomk.socialbase.downloader.downloader.IndependentProcessDownloadService

com.ss.android.socialbase.downloader.remote

a14c3b50628d3228124bb0f7f4f0307f1f4a991e6205b5ec8851fdc5e1d505c6

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.VIBRATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.GET_TASKS

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.GET_PACKAGE_SIZE

android.permission.BLUETOOTH

android.permission.BATTERY_STATS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.SYSTEM_ALERT_WINDOW

android.permission.RESTART_PACKAGES

android.permission.WAKE_LOCK

android.permission.READ_LOGS

android.permission.WRITE_SETTINGS

android.permission.ACCESS_MTK_MMHW

Sharing

General

Malware Config

Signatures

Files

com.shgiaf.zsyy

com.qomki.qo.QOMActivity

Activities

com.qomki.qo.QOMActivity

Permissions

Receivers

cn.dict.dialect.gdh.app.DownLoadBroadcastReceiver

Services

com.qomkige.qomk.socialbase.downloader.downloader.IndependentProcessDownloadService

Android Permissions

a14c3b50628d3228124bb0f7f4f0307f1f4a991e6205b5ec8851fdc5e1d505c6