vir[.]apk | Triage

General

Target

vir.apk
Size

43.8MB
MD5

1417cb728586c5faf5b8709475e14b91
SHA1

5bd6f690dd34e254fa705efef36a80f5dc7421fe
SHA256

c7ac614aeca1cd5498f832ead846d1ccd40cc894afeeb1751de5885a9d7ee96f
SHA512

50b4991b4a8a0c84e7305e9354e4e29883cbbdca0b172d3d218330a838330c53a6628e5a5092edf674422da486b9cc4175e0dd09c16a7ba92cb5228049a6e32b
SSDEEP

786432:/hmZZSDRVw2CL+ts9QmTS5YkpEXTAC6s5QyQaV4IDQkMTw0FfasWNhVbx3H9JP7P:MeRJIwE8s5QsDQJTw0Raxhdx3HLp5OI7

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

vir.apk
.apk android arch:arm

com.taishan.dshhl

com.yy.leopard.business.user.activity.SplashActivity

Activities

com.yy.leopard.business.user.activity.SplashActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.yy.leopard.business.space.OtherSpaceActivity

android.intent.action.VIEW

com.yy.leopard.business.pay.PayInterceptH5Activity

go_to_app_PayInterceptH5Activity

com.yy.leopard.business.webview.CommonWebViewActivity

go_to_app_CommonWebViewActivity

com.yy.leopard.app.SchemeActivity

android.intent.action.VIEW

com.yy.leopard.app.EventBusSchemeActivity

android.intent.action.VIEW

cn.sharesdk.tencent.qq.ReceiveActivity

android.intent.action.VIEW

com.yjmandroid.imagepicker.ui.grid.view.ImageDataActivity

android.intent.action.GET_CONTENT_CUSTOM

com.mob.id.MobIDActivity

com.mob.id.app_30000

com.mob.id.MobIDSYActivity

com.mob.id.app_lk

com.mob.guard.MobTranPullUpActivity

com.mob.open.app_20000

com.mob.guard.MobTranPullLockActivity

com.mob.open.app_lk

com.igexin.sdk.GActivity

com.getui.sdk.action

com.baidu.xenv.XenvActivity

com.baidu.action.Xenv.VIEW

Permissions

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.READ_LOGS
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.ACTI
android.permission.FOREGROUND_SERVICE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECORD_AUDIO
android.permission.CAMERA
android.permission.PACKAGE_VERIFICATION_AGENT
android.permission.SYSTEM_ALERT_WINDOW
android.permission.REORDER_TASKS
com.huawei.android.launcher.permission.CHANGE_BADGE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_EXTERNAL_STORAGE
android.permission.CHANGE_CONFIGURATION
com.taishan.dshhl.openadsdk.permission.TT_PANGOLIN
android.permission.GET_TASKS
android.permission.CHANGE_WIFI_STATE
android.permission.QUERY_ALL_PACKAGES
android.permission.SCHEDULE_EXACT_ALARM
getui.permission.GetuiService.com.taishan.dshhl
com.vivo.notification.permission.BADGE_ICON
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE
com.asus.msa.SupplementaryDID.ACCESS
freemme.permission.msa
com.taishan.dshhl.permission.xenv.RECEIVE
android.permission.CHANGE_NETWORK_STATE

Receivers

com.hyphenate.chat.EMMonitorReceiver

android.intent.action.PACKAGE_REMOVED
android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT

com.igexin.sdk.PushReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT

com.igexin.sdk.VivoPushMessageReceiver

com.vivo.pushclient.action.RECEIVE

Services

com.mob.MobACService

com.mob.service.action.MOB_AC_SERVICE

com.mob.id.MobIDService

com.mob.intent.MOB_ID_SERVICE

com.mob.guard.MobGuardPullUpService

com.mob.intent.MOB_GUARD_SERVICE

com.igexin.sdk.GService

com.getui.sdk.action

com.getui.gtc.GtcService

com.getui.gtc.sdk.service.action

com.igexin.sdk.OppoPushService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE

com.igexin.sdk.OppoAppPushService

com.heytap.mcs.action.RECEIVE_MCS_MESSAGE
com.heytap.msp.push.RECEIVE_MCS_MESSAGE

com.baidu.xenv.XenvService

com.baidu.action.Xenv.VIEW

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.ss.android.socialbase.downloader.remote

Android Permissions

vir.apk

Permissions

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.VIBRATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.READ_LOGS

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.ACTI

android.permission.FOREGROUND_SERVICE

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.RECORD_AUDIO

android.permission.CAMERA

android.permission.PACKAGE_VERIFICATION_AGENT

android.permission.SYSTEM_ALERT_WINDOW

android.permission.REORDER_TASKS

com.huawei.android.launcher.permission.CHANGE_BADGE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_EXTERNAL_STORAGE

android.permission.CHANGE_CONFIGURATION

com.taishan.dshhl.openadsdk.permission.TT_PANGOLIN

android.permission.GET_TASKS

android.permission.CHANGE_WIFI_STATE

android.permission.QUERY_ALL_PACKAGES

android.permission.SCHEDULE_EXACT_ALARM

getui.permission.GetuiService.com.taishan.dshhl

com.vivo.notification.permission.BADGE_ICON

com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE

com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE

com.asus.msa.SupplementaryDID.ACCESS

freemme.permission.msa

com.taishan.dshhl.permission.xenv.RECEIVE

android.permission.CHANGE_NETWORK_STATE

Resubmissions

Sharing

General

Malware Config

Signatures

Files

com.taishan.dshhl

com.yy.leopard.business.user.activity.SplashActivity

Activities

com.yy.leopard.business.user.activity.SplashActivity

com.yy.leopard.business.space.OtherSpaceActivity

com.yy.leopard.business.pay.PayInterceptH5Activity

com.yy.leopard.business.webview.CommonWebViewActivity

com.yy.leopard.app.SchemeActivity

com.yy.leopard.app.EventBusSchemeActivity

cn.sharesdk.tencent.qq.ReceiveActivity

com.yjmandroid.imagepicker.ui.grid.view.ImageDataActivity

com.mob.id.MobIDActivity

com.mob.id.MobIDSYActivity

com.mob.guard.MobTranPullUpActivity

com.mob.guard.MobTranPullLockActivity

com.igexin.sdk.GActivity

com.baidu.xenv.XenvActivity

Permissions

Receivers

com.hyphenate.chat.EMMonitorReceiver

com.igexin.sdk.PushReceiver

com.igexin.sdk.VivoPushMessageReceiver

Services

com.mob.MobACService

com.mob.id.MobIDService

com.mob.guard.MobGuardPullUpService

com.igexin.sdk.GService

com.getui.gtc.GtcService

com.igexin.sdk.OppoPushService

com.igexin.sdk.OppoAppPushService

com.baidu.xenv.XenvService

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

Android Permissions

vir.apk