da14372d16a99fa6c4870182c41b3b0149be78f146bc5fd3384b3bc2186bdd59

General

Target

da14372d16a99fa6c4870182c41b3b0149be78f146bc5fd3384b3bc2186bdd59
Size

15.2MB
MD5

bb0d68eb4cd7d8bba8e434f9e52dd3c5
SHA1

77f523d20f242c9008258e01785e57a919dd9b7a
SHA256

da14372d16a99fa6c4870182c41b3b0149be78f146bc5fd3384b3bc2186bdd59
SHA512

10211df4f042a0b2e94f1e9ce831ce47d70a21769276796f11b0162de5913e590271b056e7db90206a8498c5042d398af8d4222a4650c10d1dee92b374ee2ca8
SSDEEP

393216:Z8qTfLRfwzXdf2RD+YqKwzZ6wYEOr9IUKK6OjlS0V/AWz841:Z8qbLR6Q9pwzs9EOqlK6gwE7A41

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 16 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read the user's calendar data.	android.permission.READ_CALENDAR
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows read access to the device's phone number(s).	android.permission.READ_PHONE_NUMBERS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to write (but not read) the user's call log data.	android.permission.WRITE_CALL_LOG

Files

da14372d16a99fa6c4870182c41b3b0149be78f146bc5fd3384b3bc2186bdd59
.apk android arch:arm

com.vtrvw.xkfus

com.android.ui.SplashActivity

Activities

com.google.android.apps.nexuslauncher.NexusLauncherActivity

android.intent.action.MAIN

com.google.android.apps.nexuslauncher.SettingsActivity

android.intent.action.APPLICATION_PREFERENCES

com.google.android.apps.nexuslauncher.search.AppLaunchActivity

com.google.android.apps.nexuslauncher.search.APP_LAUNCH

com.android.ui.GoAppActivity

android.intent.action.VIEW

com.android.ui.SplashActivity

android.intent.action.MAIN

com.gdactive.main.activity.ActiveMainActivity

android.hardware.usb.action.USB_DEVICE_ATTACHED

Permissions

com.vtrvw.xkfus.permission.READ_SETTINGS
com.vtrvw.xkfus.permission.WRITE_SETTINGS
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.android.launcher2.permission.WRITE_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher3.permission.WRITE_SETTINGS
com.lge.launcher.permission.READ_SETTINGS
com.lge.launcher.permission.WRITE_SETTINGS
com.lge.launcher2.permission.READ_SETTINGS
com.lge.launcher2.permission.WRITE_SETTINGS
com.lge.launcher3.permission.READ_SETTINGS
com.lge.launcher3.permission.WRITE_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.WRITE_SETTINGS
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
com.huawei.launcher2.permission.WRITE_SETTINGS
com.huawei.launcher2.permission.READ_SETTINGS
com.huawei.launcher2.permission.WRITE_SETTINGS
com.huawei.launcher3.permission.READ_SETTINGS
com.huawei.launcher3.permission.WRITE_SETTINGS
com.sec.android.app.twlauncher.settings.READ_SETTINGS
com.sec.android.app.twlauncher.settings.WRITE_SETTINGS
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
com.bbk.launcher2.permission.READ_SETTINGS
com.bbk.launcher2.permission.WRITE_SETTINGS
com.meizu.flyme.launcher.permission.READ_SETTINGS
com.meizu.flyme.launcher.permission.WRITE_SETTINGS
org.adw.launcher.permission.READ_SETTINGS
org.adw.launcher.permission.WRITE_SETTINGS
com.qihoo360.launcher.permission.READ_SETTINGS
com.qihoo360.launcher.permission.WRITE_SETTINGS
net.qihoo.launcher.permission.READ_SETTINGS
net.qihoo.launcher.permission.WRITE_SETTINGS
org.adwfreak.launcher.permission.READ_SETTINGS
org.adwfreak.launcher.permission.WRITE_SETTINGS
org.adw.launcher_donut.permission.READ_SETTINGS
org.adw.launcher_donut.permission.WRITE_SETTINGS
com.huawei.launcher3.permission.READ_SETTINGS
com.huawei.launcher3.permission.WRITE_SETTINGS
com.fede.launcher.permission.READ_SETTINGS
com.fede.launcher.permission.WRITE_SETTINGS
com.sec.android.app.twlauncher.settings.READ_SETTINGS
com.sec.android.app.twlauncher.settings.WRITE_SETTINGS
com.anddoes.launcher.permission.READ_SETTINGS
com.anddoes.launcher.permission.WRITE_SETTINGS
com.tencent.qqlauncher.permission.READ_SETTINGS
com.tencent.qqlauncher.permission.WRITE_SETTINGS
com.android.mylauncher.permission.READ_SETTINGS
com.android.mylauncher.permission.WRITE_SETTINGS
com.ebproductions.android.launcher.permission.READ_SETTINGS
com.ebproductions.android.launcher.permission.WRITE_SETTINGS
telecom.mdesk.permission.READ_SETTINGS
telecom.mdesk.permission.WRITE_SETTINGS
dianxin.permission.ACCESS_LAUNCHER_DATA
com.miui.mihome2.permission.READ_SETTINGS
com.miui.mihome2.permission.WRITE_SETTINGS
android.permission.EXPAND_STATUS_BAR
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.FOREGROUND_SERVICE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.VIBRATE
android.permission.CAMERA
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.INJECT_EVENTS
android.permission.WRITE_SETTINGS
android.permission.WRITE_SECURE_SETTINGS
android.permission.BIND_ACCESSIBILITY_SERVICE
android.permission.CHANGE_COMPONENT_ENABLED_STATE
android.permission.GET_TASKS
android.permission.REAL_GET_TASKS
android.permission.READ_LOGS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.SET_ACTIVITY_WATCHER
android.permission.RECEIVE_USER_PRESENT
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.INSTALL_PACKAGES
android.permission.DELETE_PACKAGES
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.BLUETOOTH_PRIVILEGED
android.permission.CHANGE_WIFI_STATE
android.permission.RECORD_AUDIO
android.permission.CLEAR_APP_CACHE
android.permission.WAKE_LOCK
android.permission.DISABLE_KEYGUARD
android.permission.MODIFY_PHONE_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CLEAR_APP_USER_DATA
android.permission.BATTERY_STATS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_SMS
android.permission.INSTALL_SHORTCUT
android.permission.READ_CALENDAR
android.permission.READ_CALL_LOG
android.permission.READ_CONTACTS
android.permission.READ_PHONE_NUMBERS
android.permission.READ_HISTORY_BOOKMARKS
android.permission.WRITE_APN_SETTINGS
android.permission.WRITE_CONTACTS
android.permission.WRITE_CALL_LOG
android.permission.WRITE_VOICEMAIL
android.permission.SET_WALLPAPER
android.permission.PACKAGE_USAGE_STATS
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.FLASHLIGHT
com.vivo.permission.manage.permission.ACCESS
oppo.permission.OPPO_COMPONENT_SAFE
com.huawei.permission.external_app_settings.USE_COMPONENT

Receivers

com.google.android.apps.nexuslauncher.qsb.OPAStatusReceiver

com.google.android.systemui.OPA_ENABLED

com.google.android.apps.nexuslauncher.smartspace.SmartspaceBroadcastReceiver

com.google.android.apps.nexuslauncher.UPDATE_SMARTSPACE

com.vtrvw.xkfus.NewAppWidget

android.appwidget.action.APPWIDGET_UPDATE

com.gibb.reveiver.BootReceiver

android.intent.action.BOOT_COMPLETED
BOOT_COMPLETED1
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.BATTERY_CHANGED
android.hardware.usb.action.USB_STATE

com.gibb.abtest.testcase.service.live.receive.NotificationClickReceiver

CLICK_NOTIFICATION

com.gibb.cloud.admin.AdminReceiver

android.app.action.DEVICE_ADMIN_ENABLED
android.app.action.ACTION_PASSWORD_CHANGED
android.app.action.ACTION_PASSWORD_FAILED
android.app.action.ACTION_PASSWORD_SUCCEEDED

com.evernote.android.job.v14.PlatformAlarmReceiver

com.evernote.android.job.v14.RUN_JOB
net.vrallev.android.job.v14.RUN_JOB

com.evernote.android.job.JobBootReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
com.htc.intent.action.QUICKBOOT_POWERON
android.intent.action.MY_PACKAGE_REPLACED

Services

com.gibb.abtest.testcase.service.MainService

TESTCASE.SERVER.STARTED.ACTION
TESTCASE.SERVER.STOP.ACTION
TESTCASE.EXEC.START.ACTION
TESTCASE.EXEC.STOP.ACTION

com.plugin.tePlugin.AssistService

ASSIST.EXEC.START.ACTION
ASSIST.EXEC.STOP.ACTION

com.gibb.abtest.testcase.service.MonitorNotificationService

android.service.notification.NotificationListenerService

com.gibb.WebService

android.accessibilityservice.AccessibilityService

com.gibb.abtest.testcase.service.InputService

android.view.InputMethod

com.gibb.abtest.testcase.service.MyWallpaperService

android.service.wallpaper.WallpaperService

com.evernote.android.job.gcm.PlatformGcmService

com.google.android.gms.gcm.ACTION_TASK_READY

Android Permissions

da14372d16a99fa6c4870182c41b3b0149be78f146bc5fd3384b3bc2186bdd59

Permissions

com.vtrvw.xkfus.permission.READ_SETTINGS

com.vtrvw.xkfus.permission.WRITE_SETTINGS

com.android.launcher.permission.READ_SETTINGS

com.android.launcher.permission.WRITE_SETTINGS

com.android.launcher2.permission.READ_SETTINGS

com.android.launcher2.permission.WRITE_SETTINGS

com.android.launcher3.permission.READ_SETTINGS

com.android.launcher3.permission.WRITE_SETTINGS

com.lge.launcher.permission.READ_SETTINGS

com.lge.launcher.permission.WRITE_SETTINGS

com.lge.launcher2.permission.READ_SETTINGS

com.lge.launcher2.permission.WRITE_SETTINGS

com.lge.launcher3.permission.READ_SETTINGS

com.lge.launcher3.permission.WRITE_SETTINGS

com.htc.launcher.permission.READ_SETTINGS

com.htc.launcher.permission.WRITE_SETTINGS

com.huawei.android.launcher.permission.READ_SETTINGS

com.huawei.android.launcher.permission.WRITE_SETTINGS

com.huawei.launcher2.permission.WRITE_SETTINGS

com.huawei.launcher2.permission.READ_SETTINGS

com.huawei.launcher2.permission.WRITE_SETTINGS

com.huawei.launcher3.permission.READ_SETTINGS

com.huawei.launcher3.permission.WRITE_SETTINGS

com.sec.android.app.twlauncher.settings.READ_SETTINGS

com.sec.android.app.twlauncher.settings.WRITE_SETTINGS

com.oppo.launcher.permission.READ_SETTINGS

com.oppo.launcher.permission.WRITE_SETTINGS

com.bbk.launcher2.permission.READ_SETTINGS

com.bbk.launcher2.permission.WRITE_SETTINGS

com.meizu.flyme.launcher.permission.READ_SETTINGS

com.meizu.flyme.launcher.permission.WRITE_SETTINGS

org.adw.launcher.permission.READ_SETTINGS

org.adw.launcher.permission.WRITE_SETTINGS

com.qihoo360.launcher.permission.READ_SETTINGS

com.qihoo360.launcher.permission.WRITE_SETTINGS

net.qihoo.launcher.permission.READ_SETTINGS

net.qihoo.launcher.permission.WRITE_SETTINGS

org.adwfreak.launcher.permission.READ_SETTINGS

org.adwfreak.launcher.permission.WRITE_SETTINGS

org.adw.launcher_donut.permission.READ_SETTINGS

org.adw.launcher_donut.permission.WRITE_SETTINGS

com.huawei.launcher3.permission.READ_SETTINGS

com.huawei.launcher3.permission.WRITE_SETTINGS

com.fede.launcher.permission.READ_SETTINGS

com.fede.launcher.permission.WRITE_SETTINGS

com.sec.android.app.twlauncher.settings.READ_SETTINGS

com.sec.android.app.twlauncher.settings.WRITE_SETTINGS

com.anddoes.launcher.permission.READ_SETTINGS

com.anddoes.launcher.permission.WRITE_SETTINGS

com.tencent.qqlauncher.permission.READ_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.vtrvw.xkfus

com.android.ui.SplashActivity

Activities

com.google.android.apps.nexuslauncher.NexusLauncherActivity

com.google.android.apps.nexuslauncher.SettingsActivity

com.google.android.apps.nexuslauncher.search.AppLaunchActivity

com.android.ui.GoAppActivity

com.android.ui.SplashActivity

com.gdactive.main.activity.ActiveMainActivity

Permissions

Receivers

com.google.android.apps.nexuslauncher.qsb.OPAStatusReceiver

com.google.android.apps.nexuslauncher.smartspace.SmartspaceBroadcastReceiver

com.vtrvw.xkfus.NewAppWidget

com.gibb.reveiver.BootReceiver

com.gibb.abtest.testcase.service.live.receive.NotificationClickReceiver

com.gibb.cloud.admin.AdminReceiver

com.evernote.android.job.v14.PlatformAlarmReceiver

com.evernote.android.job.JobBootReceiver

Services

com.gibb.abtest.testcase.service.MainService

com.plugin.tePlugin.AssistService

com.gibb.abtest.testcase.service.MonitorNotificationService

com.gibb.WebService

com.gibb.abtest.testcase.service.InputService

com.gibb.abtest.testcase.service.MyWallpaperService

com.evernote.android.job.gcm.PlatformGcmService

Android Permissions

da14372d16a99fa6c4870182c41b3b0149be78f146bc5fd3384b3bc2186bdd59