General

  • Target

    08944f87e7713061a27c11ef8a848837.apk

  • Size

    17.0MB

  • MD5

    08944f87e7713061a27c11ef8a848837

  • SHA1

    c7877788044b8ab0f3b9ed9d4c0ad1250226f3fe

  • SHA256

    462067d0513328002a24742db08bc7fa9758112c797e7fab9d916fa5a2f2e78a

  • SHA512

    0b4c8ccaf9b1484cd48afd1b7707ae3c3ef0942595aef44b0f9237620b89715d2dbb35e528e00a74f2251f4f53cd8d40e9d7dae92623b7a7bbb617cd23fdcfd8

  • SSDEEP

    393216:9KThqNcOBrAkJe1UykUeTcekOUvX+9TSyIaQBbC96cydDu7lUWt3:9KsmSSUypeT3kfMTSyI7o96cAupj

Score
7/10

Malware Config

Signatures

  • Requests dangerous framework permissions 2 IoCs

Files

  • 08944f87e7713061a27c11ef8a848837.apk
    .apk android arch:arm

    com.feiyou.head.mcrack

    com.xkcopyrightpage.MainActivity


  • .appkey
  • .appkeys
  • Hook_apk
    .apk .ps1 android arch:arm

    com.feiyou.head.mcrack

    tech.kedou.video.module.common.WelcomeActivity


  • .appkey
  • anime.json
  • cid
    .elf linux x86
  • film.json
  • gdtadv2.jar
    .apk android arch:arm arch:arm64
  • comp_list
  • dexMethod.dat
  • yaqsdkcookie
  • libjiagu.so
    .elf linux arm
  • libjiagu_x86.so
    .elf linux x86
  • tt_mime_type.pro
  • tv.json
  • variety.json
  • video.html
    .html
  • anime.json
  • cid
    .elf linux x86
  • classes.dex
    .dex
  • classes2.dex
    .dex
  • film.json
  • gdtadv2.jar
    .apk android arch:arm arch:arm64
  • comp_list
  • dexMethod.dat
  • yaqsdkcookie
  • libIOHook.so
    .elf linux arm
  • libjiagu.so
    .elf linux arm
  • libjiagu_x86.so
    .elf linux x86
  • libjiagusauthor.so
    .png
  • libjiagusenter_x86.so
    .png
  • libjiagusgroup_x64.so
    .png
  • libmocls.so
    .elf linux arm
  • libsandhook-art.so
    .elf linux arm
  • libwbsafeeditsbg_x86
    .png
  • libwbsafeeditscontact_x86_x64
    .png
  • libwbsafeeditsdoc
    .png
  • libwbsafeeditsgo_x86_x64
    .png
  • libwbsafeeditsinfo_x86_x64
  • libwbsafeeditsjoin_x86_x64
    .png
  • libwbsafeeditsnotice_x64
    .png
  • package$Info
  • tips.txt
  • tt_mime_type.pro
  • tv.json
  • variety.json
  • video.html
    .html

Android Permissions

08944f87e7713061a27c11ef8a848837.apk

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

com.android.launcher.permission.READ_SETTINGS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.CHANGE_WIFI_MULTICAST_STATE

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.GET_TASKS

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.ACCESS_DOWNLOAD_MANAGER