TikTok18apk[.]com_1[.]3[.]5[.]apk

General

Target

TikTok18apk.com_1.3.5.apk
Size

26.0MB
MD5

fbbb21d18b0bb422df6c2f2ae8c05777
SHA1

f039b9a34fa4e53d6758434966c18a134d6c3bb5
SHA256

2a71cdf62ad5e3a00973cf6ff832c6974bb0387f0998ea8b15e9539b11daca77
SHA512

2591d9dbb8a739c514506b2213e91fe72894e2bc4514022a951d64bf11805e16238bcc2e2ef4ae194ebc95ef792439fdfd9f11f6883a7da9cbee36a6f7cb3780
SSDEEP

393216:3s2Qg97YgnXvYSK7L+RWDaEVZmcYcIHUYRph39BNllUKH03ZacrmVa7oOOtDOQBE:c2XdBASKXmWDXTYeed9Upacr37o6Q0/

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 9 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS

Files

TikTok18apk.com_1.3.5.apk
.apk android arch:arm

com.smd.douyin18.app

com.osea.app.WelcomeActivity

Activities

com.osea.app.WelcomeActivity

android.intent.action.MAIN
android.intent.action.CREATE_SHORTCUT
android.intent.action.VIEW

com.osea.app.MainActivity

com.smd.douyin18.app.download

com.osea.publish.topic.TopicSearchActivity

com.osea.moments.topic.GET

com.osea.publish.pub.ui.PublishMsgActivity

com.osea.publish.pub.ui.action.PUBLISH

com.osea.videoedit.ui.VideoEditorActivity

android.intent.action.VIEW

com.osea.videoedit.album.VSImportAlbumActivity

com.osea.videoedit.album.action.IMPORT

com.facebook.CustomTabActivity

android.intent.action.VIEW

Permissions

com.smd.douyin18.app.permission.JPUSH_MESSAGE
android.permission.INTERNET
android.permission.RECEIVE_USER_PRESENT
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.READ_CONTACTS
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.CAMERA
android.permission.READ_PHONE_STATE
android.permission.GET_TASKS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.VIBRATE
android.permission.RECORD_AUDIO
android.permission.GET_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.WRITE_SYNC_SETTINGS
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.INTERACT_ACROSS_USERS
android.permission.CALL_PHONE
android.permission.POST_NOTIFICATIONS
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

com.osea.app.push.PushDelBrocastReceiver

com.smd.douyin18.app.action.NOTIFICATION_DELETED

com.osea.commonbusiness.user.NetworkConnectChangedReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.WIFI_STATE_CHANGED
android.net.wifi.STATE_CHANGE

com.osea.commonbusiness.update.DownloadBroadcastReceiver

android.intent.action.DOWNLOAD_COMPLETE
android.intent.action.DOWNLOAD_NOTIFICATION_CLICKED

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

Services

com.osea.commonbusiness.plugin.foundation.OseaCenterService

com.osea.app.ipc.communication

com.osea.push.util.KeepAlive$OseaSyncService

android.content.SyncAdapter

com.osea.push.util.OseaAuthService

android.accounts.AccountAuthenticator

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

Android Permissions

TikTok18apk.com_1.3.5.apk

Permissions

com.smd.douyin18.app.permission.JPUSH_MESSAGE

android.permission.INTERNET

android.permission.RECEIVE_USER_PRESENT

android.permission.WAKE_LOCK

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.READ_CONTACTS

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.CAMERA

android.permission.READ_PHONE_STATE

android.permission.GET_TASKS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.VIBRATE

android.permission.RECORD_AUDIO

android.permission.GET_ACCOUNTS

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.WRITE_SYNC_SETTINGS

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.INTERACT_ACROSS_USERS

android.permission.CALL_PHONE

android.permission.POST_NOTIFICATIONS

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Sharing

General

Malware Config

Signatures

Files

com.smd.douyin18.app

com.osea.app.WelcomeActivity

Activities

com.osea.app.WelcomeActivity

com.osea.app.MainActivity

com.osea.publish.topic.TopicSearchActivity

com.osea.publish.pub.ui.PublishMsgActivity

com.osea.videoedit.ui.VideoEditorActivity

com.osea.videoedit.album.VSImportAlbumActivity

com.facebook.CustomTabActivity

Permissions

Receivers

com.osea.app.push.PushDelBrocastReceiver

com.osea.commonbusiness.user.NetworkConnectChangedReceiver

com.osea.commonbusiness.update.DownloadBroadcastReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

Services

com.osea.commonbusiness.plugin.foundation.OseaCenterService

com.osea.push.util.KeepAlive$OseaSyncService

com.osea.push.util.OseaAuthService

com.google.firebase.messaging.FirebaseMessagingService

Android Permissions

TikTok18apk.com_1.3.5.apk