ac64c31ecaa58bf619ebc46c30e464e85a8d39e2027aba26ade6500be1a3cfe6

General

Target

ac64c31ecaa58bf619ebc46c30e464e85a8d39e2027aba26ade6500be1a3cfe6
Size

1.8MB
MD5

a987d32f2cb019083bb6e330b5ecf0f8
SHA1

7fbeee4580eb44d67568fe393630b84b0bc2d6cb
SHA256

ac64c31ecaa58bf619ebc46c30e464e85a8d39e2027aba26ade6500be1a3cfe6
SHA512

6a2ec4c01a36d504b884a7c034b0becf14949378a7f8e259e677ffe08556bbf30e2d31a2c1e053194ad4b6ebe9619599bdc7d9bf25b850fc912c755d8a130068
SSDEEP

49152:kN7b/njiVnb1qjXOsVhHNFxCGieORSt/0IvroQAdjz:kN//+R8SkHN7CbbyMIDoD9

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 12 IoCs

Processes:

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS

Files

ac64c31ecaa58bf619ebc46c30e464e85a8d39e2027aba26ade6500be1a3cfe6
.apk android

com.beauty.shipin

com.beauty.shipin.IndexActivity

Activities

com.beauty.shipin.IndexActivity

android.intent.action.MAIN

Permissions

android.permission.GET_TASKS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.INTERNET
android.permission.SYSTEM_ALERT_WINDOW
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.RECEIVE_MMS
android.permission.READ_PHONE_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.RESTART_PACKAGES
android.permission.BROADCAST_STICKY
android.permission.GET_ACCOUNTS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_SETTINGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_LOGS
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.SEND_SMS
android.permission.WRITE_SMS
android.permission.READ_SMS
android.permission.SEND_SMS
android.permission.RECEIVE_SMS

Receivers

com.beauty.shipin.order.receiver.MySMSReceiver

android.provider.Telephony.SMS_RECEIVED

com.beauty.shipin.order.receiver.MobileSMSReceiver

android.provider.Telephony.SMS_RECEIVED

com.admobi.plug.PluginReceiver

android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.android.baidu.receiver.MymmRecevier

android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.WAP_PUSH_RECEIVED

com.android.baidu.receiver.SendPayLogReceiver

com.android.baidu.sendlog

com.android.baidu.receiver.ConnectionChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT

Services

com.beauty.shipin.order.service.OrderService

com.beauty.shipin.OrderService

com.beauty.shipin.order.service.ListenNetStateService

com.beauty.shipin.ListenNetStateService

com.beauty.shipin.order.service.MessageService

com.beauty.shipin.MessageService

com.beauty.shipin.order.service.ZeroService

com.beauty.shipin.ZeroService

com.beauty.shipin.order.service.PayService

com.beauty.shipin.PayService

com.admobi.plug.PluginService

android.intent.noicon.checkrun

ac64c31ecaa58bf619ebc46c30e464e85a8d39e2027aba26ade6500be1a3cfe6

Permissions

android.permission.GET_TASKS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.INTERNET

android.permission.SYSTEM_ALERT_WINDOW

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_MMS

android.permission.READ_PHONE_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.RESTART_PACKAGES

android.permission.BROADCAST_STICKY

android.permission.GET_ACCOUNTS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_SETTINGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_LOGS

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.SEND_SMS

android.permission.WRITE_SMS

android.permission.READ_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

Sharing

General

Malware Config

Signatures

Files

com.beauty.shipin

com.beauty.shipin.IndexActivity

Activities

com.beauty.shipin.IndexActivity

Permissions

Receivers

com.beauty.shipin.order.receiver.MySMSReceiver

com.beauty.shipin.order.receiver.MobileSMSReceiver

com.admobi.plug.PluginReceiver

com.android.baidu.receiver.MymmRecevier

com.android.baidu.receiver.SendPayLogReceiver

com.android.baidu.receiver.ConnectionChangeReceiver

Services

com.beauty.shipin.order.service.OrderService

com.beauty.shipin.order.service.ListenNetStateService

com.beauty.shipin.order.service.MessageService

com.beauty.shipin.order.service.ZeroService

com.beauty.shipin.order.service.PayService

com.admobi.plug.PluginService

Android Permissions

ac64c31ecaa58bf619ebc46c30e464e85a8d39e2027aba26ade6500be1a3cfe6