8a79169a595e1f192507bb48adf5820046ee915f0d5a613e72bf935a5be9d549

General

Target

8a79169a595e1f192507bb48adf5820046ee915f0d5a613e72bf935a5be9d549
Size

792KB
MD5

f972a5c9b73eefa31c6458913e6f372e
SHA1

ce0d9f93d332275988bfdd10822539d525f55a58
SHA256

8a79169a595e1f192507bb48adf5820046ee915f0d5a613e72bf935a5be9d549
SHA512

d050de8c399ea00a3e3ca28130b61096af32e985a79a1bca765965d56694a9d2f0d8114a1c62fb33c02a92eea0f4420f7d13c9621791272d1c59a5ed0188af03
SSDEEP

12288:tFlYMVzfgF7BGL28xjuCkCvbvYQx36B1jURJUtVGlzzycbeo+F1xt:blvVkF7BM2cuCN7J6B2no0lzyoeL

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to write (but not read) the user's call log data.	android.permission.WRITE_CALL_LOG
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

8a79169a595e1f192507bb48adf5820046ee915f0d5a613e72bf935a5be9d549
.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

com.a

com.qwe.MainActivit

Activities

com.qwe.MainActivit

android.intent.action.MAIN

com.qwe.Middl

android.intent.action.MAIN

Permissions

android.permission.VIBRATE
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_SMS
android.permission.SEND_SMS
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.CALL_PHONE
android.permission.READ_CALL_LOG
android.permission.WRITE_CALL_LOG
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.UPDATE_APP_OPS_STATS
android.permission.GET_TASKS
android.permission.VIBRATE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.ACCESS_WIFI_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WAKE_LOCK

Receivers

com.a.MyAdminReceiver

android.app.action.DEVICE_ADMIN_ENABLED

com.a.BootRe

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.USER_PRESENT

com.a.A

android.intent.action.BOOT_COMPLETED
android.intent.action.PHONE_STATE
android.intent.action.NEW_OUTGOING_CALL
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.TIMEZONE_CHANGED
android.intent.action.TIME_SET
android.intent.action.TIME_TICK
android.intent.action.UID_REMOVED
android.intent.action.UMS_CONNECTED
android.intent.action.UMS_DISCONNECTED
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_CHANGED
android.intent.action.PACKAGE_DATA_CLEARED
android.intent.action.PACKAGE_FIRST_LAUNCH
android.intent.action.PACKAGE_FULLY_REMOVED
android.intent.action.PACKAGE_INSTALL
android.intent.action.PACKAGE_NEEDS_VERIFICATION
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_RESTARTED
android.intent.action.MY_PACKAGE_REPLACED
android.intent.action.MEDIA_UNMOUNTED
android.intent.action.MEDIA_UNMOUNTABLE
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REMOVED
android.intent.action.MANAGE_PACKAGE_STORAGE
android.intent.action.MEDIA_BAD_REMOVAL
android.intent.action.MEDIA_BUTTON
android.intent.action.MEDIA_CHECKING
android.intent.action.MEDIA_EJECT
android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_NOFS
android.intent.action.MEDIA_REMOVED
android.intent.action.MEDIA_SCANNER_FINISHED
android.intent.action.MEDIA_SCANNER_SCAN_FILE
android.intent.action.MEDIA_SCANNER_STARTED
android.intent.action.MEDIA_SHARED
android.intent.action.LOCALE_CHANGED
android.intent.action.INPUT_METHOD_CHANGED
android.intent.action.HEADSET_PLUG
android.intent.action.GTALK_DISCONNECTED
android.intent.action.GTALK_CONNECTED
android.intent.action.EXTERNAL_APPLICATIONS_UNAVAILABLE
android.intent.action.EXTERNAL_APPLICATIONS_AVAILABLE
android.intent.action.DOCK_EVENT
android.intent.action.DEVICE_STORAGE_OK
android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DATE_CHANGED
android.intent.action.CLOSE_SYSTEM_DIALOGS
android.intent.action.CAMERA_BUTTON
android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW
android.intent.action.BATTERY_CHANGED
android.intent.action.AIRPLANE_MODE
android.intent.action.PROVIDER_CHANGED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.USER_PRESENT
android.intent.action.WALLPAPER_CHANGED
android.net.wifi.WIFI_STATE_CHANGED
com.noshufou.android.su.REQUEST
android.net.conn.CONNECTIVITY_CHANGE
android.provider.Telephony.SMS_RECEIVED

Services

com.qwe.service.AutBankIn

android.intent.action.BOOT_COMPLETED

com.qwe.service.SMSS

android.intent.action.BOOT_COMPLETED

com.qwe.service.InterCa

android.intent.action.BOOT_COMPLETED

com.qwe.service.InsH

android.intent.action.BOOT_COMPLETED

com.qwe.service.UploadService

android.intent.action.BOOT_COMPLETED

com.qwe.service.HeartBea

android.intent.action.BOOT_COMPLETED

Android Permissions

8a79169a595e1f192507bb48adf5820046ee915f0d5a613e72bf935a5be9d549

Permissions

android.permission.VIBRATE

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.RECEIVE_SMS

android.permission.SEND_SMS

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.WRITE_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.CALL_PHONE

android.permission.READ_CALL_LOG

android.permission.WRITE_CALL_LOG

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.UPDATE_APP_OPS_STATS

android.permission.GET_TASKS

android.permission.VIBRATE

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.ACCESS_WIFI_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WAKE_LOCK

Sharing

General

Malware Config

Signatures

Files

com.a

com.qwe.MainActivit

Activities

com.qwe.MainActivit

com.qwe.Middl

Permissions

Receivers

com.a.MyAdminReceiver

com.a.BootRe

com.a.A

Services

com.qwe.service.AutBankIn

com.qwe.service.SMSS

com.qwe.service.InterCa

com.qwe.service.InsH

com.qwe.service.UploadService

com.qwe.service.HeartBea

Android Permissions

8a79169a595e1f192507bb48adf5820046ee915f0d5a613e72bf935a5be9d549