Antivirus Android_1[.]1[.]62_Apkpure[.]apk | Triage

Resubmissions

11/01/2023, 04:45

230111-fdfjcsae25 7

10/01/2023, 21:45

230110-1mct2shg77 7

Sharing

Copy URL Twitter E-mail

General

Target

Antivirus Android_1.1.62_Apkpure.apk
Size

2.7MB
MD5

e43320002eb47ce45a5092c9fdb9c7d2
SHA1

faede3fe537f629eb592d4ec7793fff2e2ee37ab
SHA256

33085a2113b9c845015e0db697c28d4f861a75ebc38ae9a24c8a787dea1e0af6
SHA512

93b16a2a28b13046108056248fda029c10045dc4781dc0e453daeb9da31fb92e750cc27dff79ccc57e369416a15bfdc5321fe928a0bf59ff79db4cf5e53ec9f4
SSDEEP

49152:Pfw0R7hWX9gdGmksa9pEvUQZfnS9ZTG3sVxwSanxJMfDt2Au47xv:PfXAmksaAvUUS9ZysArnxJM7t/u47d

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

Antivirus Android_1.1.62_Apkpure.apk
.apk android

com.atvcleaner

com.atvcleaner.ui.activity.MainActivity

Activities

com.atvcleaner.ui.activity.MainActivity

android.intent.action.MAIN

Permissions

android.permission.FOREGROUND_SERVICE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.WAKE_LOCK
android.permission.REQUEST_DELETE_PACKAGES

Receivers

com.atvcleaner.receivers.RestartReceiver

com.atvcleaner.RESTART_ACTION

com.atvcleaner.receivers.PkgReceiver

android.intent.action.PACKAGE_INSTALL
android.intent.action.PACKAGE_ADDED

com.atvcleaner.receivers.RebootReceiver

android.intent.action.QUICKBOOT_POWERON
android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.SCREEN_ON

com.evernote.android.job.v14.PlatformAlarmReceiver

com.evernote.android.job.v14.RUN_JOB
net.vrallev.android.job.v14.RUN_JOB

com.evernote.android.job.JobBootReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
com.htc.intent.action.QUICKBOOT_POWERON
android.intent.action.MY_PACKAGE_REPLACED

Services

com.evernote.android.job.gcm.PlatformGcmService

com.google.android.gms.gcm.ACTION_TASK_READY

Android Permissions

Antivirus Android_1.1.62_Apkpure.apk

Permissions

android.permission.FOREGROUND_SERVICE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.WAKE_LOCK

android.permission.REQUEST_DELETE_PACKAGES