frp0z6fgav3fu9z7_android[.]apk

Reason

unknown chunk type: 43470

General

Target

frp0z6fgav3fu9z7_android.apk
Size

62.5MB
MD5

440623a8671f79840531b4eb83f15ce5
SHA1

c5e90c533473def1adc9cd7e631ce591c2145653
SHA256

27512fb04eb26f6eac7d1a4bd3c529f7e82998254ca8f2b7b6bdfa8f92b62446
SHA512

56c5e3f053187203cfaa54309dcb1c46c74a8444a9ff3b78f1b53e6b0edd431f24f6c4a8c28e5e8b1721e51d669119bdb037b4a2d7ce2f858173ec0156bacbaa
SSDEEP

1572864:4m/8tCbopuYb2Qf3vx8/YN6rWMl9L3hgBjgdQwpuLz87PGG1MlRhP:4m/8tCbopuYyQvZ8/o6KIvgR+wLoiG1U

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access location in the background.	android.permission.ACCESS_BACKGROUND_LOCATION
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

frp0z6fgav3fu9z7_android.apk
.apk android arch:arm arch:arm64

jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye

com.wind.im.MainActivity

Activities

com.wind.im.MainActivity

android.intent.action.MAIN

com.imacapp.common.WindCommTransitActivity

android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.CAMERA
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.WAKE_LOCK
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.FOREGROUND_SERVICE
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE
com.huawei.android.launcher.permission.CHANGE_BADGE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.permission.MIPUSH_RECEIVE
com.meizu.flyme.push.permission.RECEIVE
jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.push.permission.MESSAGE
com.meizu.c2dm.permission.RECEIVE
jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.permission.C2D_MESSAGE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.ACCESS_BACKGROUND_LOCATION
android.permission.READ_EXTERNAL_STORAGE
jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.permission.PROCESS_PUSH_MSG
jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.permission.PUSH_PROVIDER
android.permission.REQUEST_INSTALL_PACKAGES
com.huawei.appmarket.service.commondata.permission.GET_COMMON_DATA
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.FLASHLIGHT

Receivers

com.wind.im.push.receiver.VivoPushMessageReceiverImpl

com.vivo.pushclient.action.RECEIVE

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

com.wind.im.push.receiver.XiaomiPushMessageReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.wind.im.push.receiver.MeizuPushServerMsgReceiver

com.meizu.flyme.push.intent.MESSAGE
com.meizu.flyme.push.intent.REGISTER.FEEDBACK
com.meizu.flyme.push.intent.UNREGISTER.FEEDBACK
com.meizu.c2dm.intent.REGISTRATION
com.meizu.c2dm.intent.RECEIVE

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

com.meizu.cloud.pushsdk.SystemReceiver

com.meizu.cloud.pushservice.action.PUSH_SERVICE_START

com.huawei.hms.support.api.push.PushMsgReceiver

com.huawei.intent.action.PUSH_DELAY_NOTIFY
com.huawei.intent.action.PUSH

com.huawei.hms.support.api.push.PushReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE

Services

com.heytap.mcssdk.PushService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE

com.heytap.mcssdk.AppPushService

com.heytap.mcs.action.RECEIVE_MCS_MESSAGE

com.wind.im.push.receiver.HuaweiHmsMessageService

com.huawei.push.action.MESSAGING_EVENT

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.huawei.hms.support.api.push.service.HmsMsgService

com.huawei.push.msg.NOTIFY_MSG
com.huawei.push.msg.PASSBY_MSG

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action
com.umeng.message.message.sendmessage.action

com.blankj.utilcode.util.MessengerUtils$ServerService

jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.messenger

Android Permissions

frp0z6fgav3fu9z7_android.apk

Permissions

android.permission.INTERNET

android.permission.VIBRATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECORD_AUDIO

android.permission.CAMERA

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.GET_TASKS

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.WAKE_LOCK

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.FOREGROUND_SERVICE

com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE

com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE

com.huawei.android.launcher.permission.CHANGE_BADGE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.permission.MIPUSH_RECEIVE

com.meizu.flyme.push.permission.RECEIVE

jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.push.permission.MESSAGE

com.meizu.c2dm.permission.RECEIVE

jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.permission.C2D_MESSAGE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.ACCESS_BACKGROUND_LOCATION

android.permission.READ_EXTERNAL_STORAGE

jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.permission.PROCESS_PUSH_MSG

jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye.permission.PUSH_PROVIDER

android.permission.REQUEST_INSTALL_PACKAGES

com.huawei.appmarket.service.commondata.permission.GET_COMMON_DATA

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.FLASHLIGHT

Resubmissions

Sharing

Errors

General

Malware Config

Signatures

Files

jisau.dolore.alkdoiuenvbhaytqla.dkmanjduye

com.wind.im.MainActivity

Activities

com.wind.im.MainActivity

com.imacapp.common.WindCommTransitActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.wind.im.push.receiver.VivoPushMessageReceiverImpl

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

com.wind.im.push.receiver.XiaomiPushMessageReceiver

com.wind.im.push.receiver.MeizuPushServerMsgReceiver

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

com.meizu.cloud.pushsdk.SystemReceiver

com.huawei.hms.support.api.push.PushMsgReceiver

com.huawei.hms.support.api.push.PushReceiver

Services

com.heytap.mcssdk.PushService

com.heytap.mcssdk.AppPushService

com.wind.im.push.receiver.HuaweiHmsMessageService

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.huawei.hms.support.api.push.service.HmsMsgService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.blankj.utilcode.util.MessengerUtils$ServerService

Android Permissions

frp0z6fgav3fu9z7_android.apk