base[.]apk | Triage

General

Target

base.apk
Size

8.6MB
MD5

b7b39e5659287190a44274fe07b6f6f0
SHA1

66d9a142b2b48005ad294cd8d775f27510568212
SHA256

6a9eb4deefabe191f5528bd0ea0d88d74df5690676cf225b0dce9a4e32adfc5e
SHA512

2cb08d017c493d1a7aa26946e6a309619290cca2bb8f5f53037df01d10d01fb7944dfb86eb3cffed8126c967e5908186caa9cfe75ec14b37385be78beec0f973
SSDEEP

196608:Mmyyx19CZi8444ju0fwPuctn32NP/YXNITh7aZP0LlDrGE:MmlrCZ7mdlcUX+NIgZYlXB

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS

Files

base.apk
.apk android

com.microblink.photomath

com.microblink.photomath.main.activity.LauncherActivity

Activities

com.microblink.photomath.main.activity.LauncherActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.SEND
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

Permissions

android.permission.CAMERA
android.permission.VIBRATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
android.permission.POST_NOTIFICATIONS
com.google.android.c2dm.permission.RECEIVE
com.android.vending.BILLING
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.microblink.photomath.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
android.permission.FOREGROUND_SERVICE

Receivers

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE

Services

com.microblink.photomath.manager.firebase.PhotomathMessagingService

com.google.firebase.MESSAGING_EVENT

com.clevertap.android.sdk.pushnotification.amp.CTBackgroundIntentService

com.clevertap.BG_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

Android Permissions

base.apk

Permissions

android.permission.CAMERA

android.permission.VIBRATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

android.permission.POST_NOTIFICATIONS

com.google.android.c2dm.permission.RECEIVE

com.android.vending.BILLING

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.microblink.photomath.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.FOREGROUND_SERVICE

Sharing

General

Malware Config

Signatures

Files

com.microblink.photomath

com.microblink.photomath.main.activity.LauncherActivity

Activities

com.microblink.photomath.main.activity.LauncherActivity

Permissions

Receivers

com.google.firebase.iid.FirebaseInstanceIdReceiver

androidx.profileinstaller.ProfileInstallReceiver

Services

com.microblink.photomath.manager.firebase.PhotomathMessagingService

com.clevertap.android.sdk.pushnotification.amp.CTBackgroundIntentService

com.google.firebase.messaging.FirebaseMessagingService

Android Permissions

base.apk