200920e83256a47e22a0fab1de4048fbc3a164d5ce3ade7e9f64a19dd0c29f62

General

Target

200920e83256a47e22a0fab1de4048fbc3a164d5ce3ade7e9f64a19dd0c29f62
Size

2.8MB
MD5

cdeea79978ea539f7115d2bdf48b490d
SHA1

504bbdac11ed81327a23536e5c374cccf894e511
SHA256

200920e83256a47e22a0fab1de4048fbc3a164d5ce3ade7e9f64a19dd0c29f62
SHA512

71723a2b64258096441666aa8f6c133c77a634cc21f6df3795f62126a2920afd1f5ba2658e2bb275a0823af0d360659f8767b21e38d31f09c0cd99c7cf0abfe7
SSDEEP

49152:ArpEORyWGegdd4THe+/GhEa05CsOKhTfgqvMTKat480HHF7thsI9lK5dw0PxSkAu:ArhRyW724TZOhEagh5FYsvC480nF7DvI

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

Processes:

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

200920e83256a47e22a0fab1de4048fbc3a164d5ce3ade7e9f64a19dd0c29f62
.apk android arch:arm

org.kx.popstarxwhl.xxl2014

com.PopStar.org.PopStar

Activities

com.PopStar.org.PopStar

android.intent.action.MAIN

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.BROADCAST_SMS
android.permission.BROADCAST_STICKY
android.permission.GET_TASKS
android.permission.INTERNET
android.permission.MODIFY_PHONE_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_PHONE_STATE
android.permission.READ_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_MMS
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.WRITE_SMS
android.permission.GET_PACKAGE_SIZE
android.permission.RESTART_PACKAGES
android.permission.READ_LOGS
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_MTK_MMHW
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.WRITE_SECURE_SETTINGS

Receivers

com.pjsskj.pay.service.BootupBroadcastReceiver

android.intent.action.BOOT_COMPLETED

com.pjsskj.pay.tel.SmsBroadcastReceiver

android.provider.Telephony.SMS_RECEIVED

com.pjsskj.pay.service.NetworkStateBroadcastReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.provider.Telephony.SMS_RECEIVED
android.intent.action.MEDIA_SCANNER_FINISHED

com.pjsskj.pay.service.PluginInstalledReceiver

android.intent.action.PACKAGE_ADDED

com.pjsskj.pay.service.TimerBroadcastReceiver

com.pjsskj.sdk.APP_ACTION_1
com.pjsskj.sdk.APP_ACTION_2

Services

200920e83256a47e22a0fab1de4048fbc3a164d5ce3ade7e9f64a19dd0c29f62

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.BROADCAST_SMS

android.permission.BROADCAST_STICKY

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.MODIFY_PHONE_STATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.READ_PHONE_STATE

android.permission.READ_SMS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.RECEIVE_MMS

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.WRITE_SMS

android.permission.GET_PACKAGE_SIZE

android.permission.RESTART_PACKAGES

android.permission.READ_LOGS

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_MTK_MMHW

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.WRITE_SECURE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

org.kx.popstarxwhl.xxl2014

com.PopStar.org.PopStar

Activities

com.PopStar.org.PopStar

Permissions

Receivers

com.pjsskj.pay.service.BootupBroadcastReceiver

com.pjsskj.pay.tel.SmsBroadcastReceiver

com.pjsskj.pay.service.NetworkStateBroadcastReceiver

com.pjsskj.pay.service.PluginInstalledReceiver

com.pjsskj.pay.service.TimerBroadcastReceiver

Services

Android Permissions

200920e83256a47e22a0fab1de4048fbc3a164d5ce3ade7e9f64a19dd0c29f62