tiktok-18[.]app (1)[.]apk

General

Target

tiktok-18.app (1).apk
Size

27.1MB
MD5

408a23e5fe991be0faca775f141b0267
SHA1

53b74fce9918d4d0d70d945830c52973d1e0c898
SHA256

ac610cef0bc5305f5b798e060cc7ba798e0ee7a77f7694d2bac76d6693a3651c
SHA512

d6541fe592f1004ea5ab25d6325a6f1ef297b8288c9fc581b14a45330c0c17d980fa58dfa1b4022d39021d6d3d62d8b817bd048570b68c0951b05cde347d07db
SSDEEP

786432:iFIVIDX9dj9SLvLL6uHtU5OI/WZWbfZHVZMZYay:iFIVIb9wzmuH25OI/WZWbfZ1ZMZo

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE

Files

tiktok-18.app (1).apk
.apk android arch:arm

com.smd.iwantu.app

com.iwantu.app.WelcomeActivity

Activities

com.iwantu.app.WelcomeActivity

android.intent.action.MAIN
android.intent.action.CREATE_SHORTCUT
android.intent.action.VIEW

com.iwantu.app.MainActivity

com.smd.iwantu.app.download

com.osea.publish.topic.TopicSearchActivity

com.osea.moments.topic.GET

com.osea.publish.pub.ui.PublishMsgActivity

com.osea.publish.pub.ui.action.PUBLISH

com.osea.videoedit.ui.VideoEditorActivity

android.intent.action.VIEW

com.osea.videoedit.album.VSImportAlbumActivity

com.osea.videoedit.album.action.IMPORT

com.facebook.CustomTabActivity

android.intent.action.VIEW

Permissions

com.smd.iwantu.app.permission.JPUSH_MESSAGE
android.permission.INTERNET
android.permission.RECEIVE_USER_PRESENT
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.READ_CONTACTS
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.CAMERA
android.permission.READ_PHONE_STATE
android.permission.GET_TASKS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.VIBRATE
android.permission.RECORD_AUDIO
android.permission.GET_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.WRITE_SYNC_SETTINGS
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.INTERACT_ACROSS_USERS
android.permission.CALL_PHONE
com.google.android.gms.permission.AD_ID
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

com.iwantu.app.push.PushDelBrocastReceiver

com.smd.iwantu.app.action.NOTIFICATION_DELETED

com.osea.commonbusiness.user.NetworkConnectChangedReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.WIFI_STATE_CHANGED
android.net.wifi.STATE_CHANGE

com.osea.commonbusiness.update.DownloadBroadcastReceiver

android.intent.action.DOWNLOAD_COMPLETE
android.intent.action.DOWNLOAD_NOTIFICATION_CLICKED

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

Services

com.osea.commonbusiness.plugin.foundation.OseaCenterService

com.iwantu.app.ipc.communication

com.osea.push.util.KeepAlive$OseaSyncService

android.content.SyncAdapter

com.osea.push.util.OseaAuthService

android.accounts.AccountAuthenticator

Android Permissions

tiktok-18.app (1).apk

Permissions

com.smd.iwantu.app.permission.JPUSH_MESSAGE

android.permission.INTERNET

android.permission.RECEIVE_USER_PRESENT

android.permission.WAKE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.READ_CONTACTS

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.CAMERA

android.permission.READ_PHONE_STATE

android.permission.GET_TASKS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.VIBRATE

android.permission.RECORD_AUDIO

android.permission.GET_ACCOUNTS

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.WRITE_SYNC_SETTINGS

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.INTERACT_ACROSS_USERS

android.permission.CALL_PHONE

com.google.android.gms.permission.AD_ID

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Sharing

General

Malware Config

Signatures

Files

com.smd.iwantu.app

com.iwantu.app.WelcomeActivity

Activities

com.iwantu.app.WelcomeActivity

com.iwantu.app.MainActivity

com.osea.publish.topic.TopicSearchActivity

com.osea.publish.pub.ui.PublishMsgActivity

com.osea.videoedit.ui.VideoEditorActivity

com.osea.videoedit.album.VSImportAlbumActivity

com.facebook.CustomTabActivity

Permissions

Receivers

com.iwantu.app.push.PushDelBrocastReceiver

com.osea.commonbusiness.user.NetworkConnectChangedReceiver

com.osea.commonbusiness.update.DownloadBroadcastReceiver

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

Services

com.osea.commonbusiness.plugin.foundation.OseaCenterService

com.osea.push.util.KeepAlive$OseaSyncService

com.osea.push.util.OseaAuthService

Android Permissions

tiktok-18.app (1).apk