PowerDirector Premium v12[.]0[.]1 - AndroForever[.]com[.]apk

General

Target

PowerDirector Premium v12.0.1 - AndroForever.com.apk
Size

151.3MB
MD5

c14c208e28ae7bd8754a9abc2cdf07ec
SHA1

77bde163c531da38d97d001e1e2029d7b78be0ac
SHA256

e99661ca70d6a2bc84d4b3468952bba51221e1bf4381d457725a57c4a8060959
SHA512

1bd755a9aff455c34d8152161c3dc42ce5673fb5c18ac5ead2fa0505a7659a912607eca86486ee0e10f4bb637fd2c4fb7c4b4f34ffe0cc2689b6d9b04db19dab
SSDEEP

3145728:/d/Ch2kXYVEP5rI6JGFMpkQ86bUlR5VuLfqZf/f74ferZwiP1IH9m8P1E3TVAwWy:UMgY51ZX6ARnofqZf/f74ferZzdYi3T3

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS

Files

PowerDirector Premium v12.0.1 - AndroForever.com.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.cyberlink.powerdirector.DRA140225_01

com.cyberlink.powerdirector.splash.SplashActivity

Activities

com.cyberlink.powerdirector.splash.SplashActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.cyberlink.powerdirector.notification.activity.NoticeActivity

android.intent.action.VIEW

com.facebook.CustomTabActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
android.permission.RECORD_AUDIO
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.FOREGROUND_SERVICE

Receivers

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

com.facebook.AuthenticationTokenManager$CurrentAuthenticationTokenChangedBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_AUTHENTICATION_TOKEN_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.work.diagnostics.REQUEST_DIAGNOSTICS

Services

Android Permissions

PowerDirector Premium v12.0.1 - AndroForever.com.apk

Permissions

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

android.permission.RECORD_AUDIO

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.FOREGROUND_SERVICE

Sharing

General

Malware Config

Signatures

Files

com.cyberlink.powerdirector.DRA140225_01

com.cyberlink.powerdirector.splash.SplashActivity

Activities

com.cyberlink.powerdirector.splash.SplashActivity

com.cyberlink.powerdirector.notification.activity.NoticeActivity

com.facebook.CustomTabActivity

Permissions

Receivers

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.AuthenticationTokenManager$CurrentAuthenticationTokenChangedBroadcastReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.diagnostics.DiagnosticsReceiver

Services

Android Permissions

PowerDirector Premium v12.0.1 - AndroForever.com.apk