d82cc4d39299e399f1d022dc84bfb91a310929bcd99c3dc105309c64adb46449

General

Target

d82cc4d39299e399f1d022dc84bfb91a310929bcd99c3dc105309c64adb46449
Size

767KB
MD5

498a60b1ccccc7d7593ec4a4485dc317
SHA1

1df14ab68e482bb15640ba313eaee31d5d30cdd4
SHA256

d82cc4d39299e399f1d022dc84bfb91a310929bcd99c3dc105309c64adb46449
SHA512

c5e67dd636069758eeb38d73bb10eb043ab5ba19e866d474ff70d1aaddec1bf4df03ccfb532337c8ad69590fcd2c48989dc754974912b2cc8e5f298163e95b28
SSDEEP

12288:26sBfYF7BGL28xjusVSWYQLbb3AQ1jgKpTCInbSbEuMwkK2CEg/JLcXPTbT/aOY:0mF7BM2cusIWjAQdlIKxLAJY/PLq

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to write (but not read) the user's call log data.	android.permission.WRITE_CALL_LOG
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

d82cc4d39299e399f1d022dc84bfb91a310929bcd99c3dc105309c64adb46449
.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

com.a

com.qwe.MainActivit

Activities

com.qwe.MainActivit

android.intent.action.MAIN

com.qwe.Midd

android.intent.action.MAIN

Permissions

android.permission.VIBRATE
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.CALL_PHONE
android.permission.READ_CALL_LOG
android.permission.WRITE_CALL_LOG
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.UPDATE_APP_OPS_STATS
android.permission.GET_TASKS
android.permission.VIBRATE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.ACCESS_WIFI_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WAKE_LOCK

Receivers

com.a.MyAdminReceiver

android.app.action.DEVICE_ADMIN_ENABLED

com.a.BootRe

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.USER_PRESENT

com.a.A1

android.intent.action.BOOT_COMPLETED
android.intent.action.PHONE_STATE
android.intent.action.NEW_OUTGOING_CALL
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.TIMEZONE_CHANGED
android.intent.action.TIME_SET
android.intent.action.TIME_TICK
android.intent.action.UID_REMOVED
android.intent.action.UMS_CONNECTED
android.intent.action.UMS_DISCONNECTED
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_CHANGED
android.intent.action.PACKAGE_DATA_CLEARED
android.intent.action.PACKAGE_FIRST_LAUNCH
android.intent.action.PACKAGE_FULLY_REMOVED
android.intent.action.PACKAGE_INSTALL
android.intent.action.PACKAGE_NEEDS_VERIFICATION
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_RESTARTED
android.intent.action.MY_PACKAGE_REPLACED
android.intent.action.MEDIA_UNMOUNTED
android.intent.action.MEDIA_UNMOUNTABLE
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REMOVED
android.intent.action.MANAGE_PACKAGE_STORAGE
android.intent.action.MEDIA_BAD_REMOVAL
android.intent.action.MEDIA_BUTTON
android.intent.action.MEDIA_CHECKING
android.intent.action.MEDIA_EJECT
android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_NOFS
android.intent.action.MEDIA_REMOVED
android.intent.action.MEDIA_SCANNER_FINISHED
android.intent.action.MEDIA_SCANNER_SCAN_FILE
android.intent.action.MEDIA_SCANNER_STARTED
android.intent.action.MEDIA_SHARED
android.intent.action.LOCALE_CHANGED
android.intent.action.INPUT_METHOD_CHANGED
android.intent.action.HEADSET_PLUG
android.intent.action.GTALK_DISCONNECTED
android.intent.action.GTALK_CONNECTED
android.intent.action.EXTERNAL_APPLICATIONS_UNAVAILABLE
android.intent.action.EXTERNAL_APPLICATIONS_AVAILABLE
android.intent.action.DOCK_EVENT
android.intent.action.DEVICE_STORAGE_OK
android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DATE_CHANGED
android.intent.action.CLOSE_SYSTEM_DIALOGS
android.intent.action.CAMERA_BUTTON
android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW
android.intent.action.BATTERY_CHANGED
android.intent.action.AIRPLANE_MODE
android.intent.action.PROVIDER_CHANGED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.USER_PRESENT
android.intent.action.WALLPAPER_CHANGED
android.net.wifi.WIFI_STATE_CHANGED
com.noshufou.android.su.REQUEST
android.net.conn.CONNECTIVITY_CHANGE
android.provider.Telephony.SMS_RECEIVED

Services

com.qwe.service.AutBankIn

android.intent.action.BOOT_COMPLETED

com.qwe.service.SMSS

android.intent.action.BOOT_COMPLETED

com.qwe.service.InterCa

android.intent.action.BOOT_COMPLETED

com.qwe.service.InsH

android.intent.action.BOOT_COMPLETED

com.qwe.service.UploadService

android.intent.action.BOOT_COMPLETED

com.qwe.service.HeartBea

android.intent.action.BOOT_COMPLETED

Android Permissions

d82cc4d39299e399f1d022dc84bfb91a310929bcd99c3dc105309c64adb46449

Permissions

android.permission.VIBRATE

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.WRITE_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.CALL_PHONE

android.permission.READ_CALL_LOG

android.permission.WRITE_CALL_LOG

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.UPDATE_APP_OPS_STATS

android.permission.GET_TASKS

android.permission.VIBRATE

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.ACCESS_WIFI_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WAKE_LOCK

Sharing

General

Malware Config

Signatures

Files

com.a

com.qwe.MainActivit

Activities

com.qwe.MainActivit

com.qwe.Midd

Permissions

Receivers

com.a.MyAdminReceiver

com.a.BootRe

com.a.A1

Services

com.qwe.service.AutBankIn

com.qwe.service.SMSS

com.qwe.service.InterCa

com.qwe.service.InsH

com.qwe.service.UploadService

com.qwe.service.HeartBea

Android Permissions

d82cc4d39299e399f1d022dc84bfb91a310929bcd99c3dc105309c64adb46449