yandex[.]music-2021[.]12[.]5-4444-arm7[.]apk

General

Target

yandex.music-2021.12.5-4444-arm7.apk
Size

15.5MB
MD5

2f26fa9da26cac7b10b7921aad030b9e
SHA1

f384ae725a632de7ed426ae0a600440df41ebac4
SHA256

e728b0820bc0f5085269d20a8dfa2556ab1db7d349134a6677fa84dbb5aa58c3
SHA512

a83c6de0c911c049a7d07df1fd4baeaae5af112a82f91a8c2abc364eda93a059cbdb15bf1f616cae80467869435c62a4d6b5db928b5a900f55cea2363c914f5c
SSDEEP

393216:3nUhroWYnE9BT4fkFm/vzqYU17OWGLTUYM:3croW4+BTwOYinGEV

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS

Files

yandex.music-2021.12.5-4444-arm7.apk
.apk android arch:arm

ru.yandex.music

ru.yandex.music.url.ui.UrlActivity

Activities

ru.yandex.music.url.ui.UrlActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
com.google.android.gms.actions.SEARCH_ACTION
android.media.action.MEDIA_PLAY_FROM_SEARCH

ru.yandex.music.player.DefaultLocalActivity

android.intent.action.VIEW

com.yandex.strannik.internal.ui.router.RouterActivity

com.yandex.intent.ADD_ACCOUNT
com.yandex.strannik.ACTION_SYSTEM_ADD_ACCOUNT

com.yandex.strannik.internal.ui.browser.SocialBrowserDataActivity

android.intent.action.VIEW

com.yandex.strannik.internal.ui.authsdk.AuthSdkActivity

com.yandex.auth.action.YA_SDK_LOGIN

com.yandex.strannik.internal.ui.SocialApplicationBindActivity

com.yandex.auth.action.BIND_SOCIAL_APPLICATION

com.yandex.strannik.internal.ui.SocialBindActivity

com.yandex.intent.BIND_SOCIAL_ACCOUNT

com.yandex.strannik.internal.social.VkNativeSocialAuthActivity

com.yandex.strannik.action.NATIVE_SOCIAL_VKONTAKTE_AUTH

com.yandex.strannik.internal.social.GoogleNativeSocialAuthActivity

com.yandex.strannik.action.NATIVE_SOCIAL_GOOGLE_AUTH
com.yandex.strannik.action.NATIVE_MAILISH_GOOGLE_AUTH

com.yandex.strannik.internal.ui.authwithtrack.SendAuthToTrackActivity

com.yandex.strannik.action.SEND_AUTH_TO_TRACK

com.yandex.strannik.internal.ui.YxAuthActivity

android.intent.action.VIEW

com.yandex.strannik.internal.social.FbNativeSocialAuthActivity

com.yandex.strannik.action.NATIVE_SOCIAL_FACEBOOK_AUTH

com.facebook.CustomTabActivity

android.intent.action.VIEW

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
com.android.vending.BILLING
android.permission.VIBRATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE
android.permission.BLUETOOTH
yandex.auto.permission.AUTH
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
com.yandex.permission.READ_CREDENTIALS_STR
com.yandex.permission.AM_COMMUNICATION_STR
android.permission.CHANGE_WIFI_MULTICAST_STATE
com.google.android.c2dm.permission.RECEIVE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

ru.yandex.music.utils.LoginAccountsChangedReceiver

com.yandex.strannik.client.ACCOUNT_REMOVED

ru.yandex.music.ui.widget.WidgetProvider

android.appwidget.action.APPWIDGET_UPDATE

ru.yandex.music.common.service.player.DebugMediaButtonReceiver

android.intent.action.MEDIA_BUTTON

ru.yandex.music.push.SilentPushReceiver

ru.yandex.music.action.ymp.SILENT_PUSH_RECEIVE

com.yandex.strannik.internal.core.announcing.AccountsChangedReceiver

android.accounts.LOGIN_ACCOUNTS_CHANGED
com.yandex.accounts.LOGIN_ACCOUNTS_CHANGED

com.yandex.strannik.internal.core.announcing.PackageRemovedReceiver

android.intent.action.PACKAGE_FULLY_REMOVED

com.yandex.strannik.internal.smsretriever.SmsRetrieverReceiver

com.google.android.gms.auth.api.phone.SMS_RETRIEVED

com.yandex.strannik.internal.sso.announcing.SsoAnnouncingReceiver

com.yandex.strannik.ACTION_SSO_ANNOUNCEMENT

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

Services

ru.yandex.music.common.media.mediabrowser.MusicBrowserService

android.media.browse.MediaBrowserService
yandex.auto.media.action.YANDEXRADIO
yandex.auto.media.action.MUSIC
yandex.auto.media.action.MEDIA_PLAY_FROM_URI

ru.yandex.music.common.service.player.MediaSessionService

ru.yandex.music.action.PLAY
ru.yandex.music.action.PAUSE
ru.yandex.music.action.SKIP
ru.yandex.music.action.REWIND
ru.yandex.music.action.STOP
android.intent.action.MEDIA_BUTTON

com.yandex.strannik.internal.core.auth.AuthenticationService

android.accounts.AccountAuthenticator
com.yandex.accounts.AccountAuthenticator

com.yandex.strannik.internal.core.sync.SyncService

android.content.SyncAdapter

com.yandex.metrica.MetricaService

com.yandex.metrica.IMetricaService

com.yandex.metrica.ConfigurationService

com.yandex.metrica.configuration.ACTION_INIT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

Android Permissions

yandex.music-2021.12.5-4444-arm7.apk

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECORD_AUDIO

android.permission.MODIFY_AUDIO_SETTINGS

com.android.vending.BILLING

android.permission.VIBRATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

android.permission.BLUETOOTH

yandex.auto.permission.AUTH

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.AUTHENTICATE_ACCOUNTS

com.yandex.permission.READ_CREDENTIALS_STR

com.yandex.permission.AM_COMMUNICATION_STR

android.permission.CHANGE_WIFI_MULTICAST_STATE

com.google.android.c2dm.permission.RECEIVE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Sharing

General

Malware Config

Signatures

Files

ru.yandex.music

ru.yandex.music.url.ui.UrlActivity

Activities

ru.yandex.music.url.ui.UrlActivity

ru.yandex.music.player.DefaultLocalActivity

com.yandex.strannik.internal.ui.router.RouterActivity

com.yandex.strannik.internal.ui.browser.SocialBrowserDataActivity

com.yandex.strannik.internal.ui.authsdk.AuthSdkActivity

com.yandex.strannik.internal.ui.SocialApplicationBindActivity

com.yandex.strannik.internal.ui.SocialBindActivity

com.yandex.strannik.internal.social.VkNativeSocialAuthActivity

com.yandex.strannik.internal.social.GoogleNativeSocialAuthActivity

com.yandex.strannik.internal.ui.authwithtrack.SendAuthToTrackActivity

com.yandex.strannik.internal.ui.YxAuthActivity

com.yandex.strannik.internal.social.FbNativeSocialAuthActivity

com.facebook.CustomTabActivity

Permissions

Receivers

ru.yandex.music.utils.LoginAccountsChangedReceiver

ru.yandex.music.ui.widget.WidgetProvider

ru.yandex.music.common.service.player.DebugMediaButtonReceiver

ru.yandex.music.push.SilentPushReceiver

com.yandex.strannik.internal.core.announcing.AccountsChangedReceiver

com.yandex.strannik.internal.core.announcing.PackageRemovedReceiver

com.yandex.strannik.internal.smsretriever.SmsRetrieverReceiver

com.yandex.strannik.internal.sso.announcing.SsoAnnouncingReceiver

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

Services

ru.yandex.music.common.media.mediabrowser.MusicBrowserService

ru.yandex.music.common.service.player.MediaSessionService

com.yandex.strannik.internal.core.auth.AuthenticationService

com.yandex.strannik.internal.core.sync.SyncService

com.yandex.metrica.MetricaService

com.yandex.metrica.ConfigurationService

com.google.firebase.messaging.FirebaseMessagingService

Android Permissions

yandex.music-2021.12.5-4444-arm7.apk