d122a55abb8e3d1400d92e4833318c51518b28d9e778901b3360eb9bac702473

General

Target

d122a55abb8e3d1400d92e4833318c51518b28d9e778901b3360eb9bac702473
Size

385KB
MD5

5f731c4e17f8dc980e69fc4ba112dd25
SHA1

57cf9bf78382ca42799eaab8b9d7a57931614680
SHA256

d122a55abb8e3d1400d92e4833318c51518b28d9e778901b3360eb9bac702473
SHA512

378d99fa08e3767a7f73235b5107bc302098079203717ad7080df55c009bbd40c6b85d4138662855b31a9939a577b346aa7bde62b6374d0de435adafc4bfdd8b
SSDEEP

12288:i3jDvrxQTYGc9AVkZL/xDuPZslDkyED5KVGS:iTbrxpAILeZWDkF5KVZ

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS

Files

d122a55abb8e3d1400d92e4833318c51518b28d9e778901b3360eb9bac702473
.apk android arch:arm

com.slvu.zgpb.ohdh

com.android.baidu.view.LoginActivity

Activities

com.android.baidu.view.LoginActivity

android.intent.action.MAIN

Permissions

android.permission.GET_TASKS
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.RECEIVE_MMS
android.permission.READ_PHONE_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.RESTART_PACKAGES
android.permission.BROADCAST_STICKY
android.permission.GET_ACCOUNTS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.RECEIVE_BOOT_COMPLETED

Receivers

com.android.baidu.receiver.MymmRecevier

android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.WAP_PUSH_RECEIVED

com.android.baidu.receiver.SendLogReceiver

com.android.baidu.sendlog

com.android.baidu.receiver.ConnectionChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT

aa.ff.FService

android.provider.Telephony.WAP_PUSH_RECEIVED
android.provider.Telephony.WAP_PUSH_RECEIVED
android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_RECEIVED_2
android.provider.Telephony.SMS_REJECTED

c.l.z.ReReceiver

android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE

com.wtcp.n.Rre

android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE

Services

c.l.z.CkService

android.intent.sdk.check

Android Permissions

d122a55abb8e3d1400d92e4833318c51518b28d9e778901b3360eb9bac702473

Permissions

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_MMS

android.permission.READ_PHONE_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.RESTART_PACKAGES

android.permission.BROADCAST_STICKY

android.permission.GET_ACCOUNTS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.RECEIVE_BOOT_COMPLETED

Sharing

General

Malware Config

Signatures

Files

com.slvu.zgpb.ohdh

com.android.baidu.view.LoginActivity

Activities

com.android.baidu.view.LoginActivity

Permissions

Receivers

com.android.baidu.receiver.MymmRecevier

com.android.baidu.receiver.SendLogReceiver

com.android.baidu.receiver.ConnectionChangeReceiver

aa.ff.FService

c.l.z.ReReceiver

com.wtcp.n.Rre

Services

c.l.z.CkService

Android Permissions

d122a55abb8e3d1400d92e4833318c51518b28d9e778901b3360eb9bac702473