Overview

overview

7

Static

static

7

base.apk

android-9-x86

7

39285EFA.dex

windows7-x64

3

39285EFA.dex

windows10-2004-x64

3

HBuilder.png

windows7-x64

3

HBuilder.png

windows10-2004-x64

3

androidPrivacy.json

windows7-x64

3

androidPrivacy.json

windows10-2004-x64

3

bg.png

windows7-x64

3

bg.png

windows10-2004-x64

3

dcloud_beep.ogg

windows7-x64

1

dcloud_beep.ogg

windows10-2004-x64

7

dcloud_control.xml

windows7-x64

1

dcloud_control.xml

windows10-2004-x64

1

dcloud_error.html

windows7-x64

1

dcloud_error.html

windows10-2004-x64

1

dcloud_iconfont.ttf

windows7-x64

3

dcloud_iconfont.ttf

windows10-2004-x64

7

dcloud_pro...w1.png

windows7-x64

3

dcloud_pro...w1.png

windows10-2004-x64

3

dcloud_properties.xml

windows7-x64

1

dcloud_properties.xml

windows10-2004-x64

1

dcloud_url.json

windows7-x64

3

dcloud_url.json

windows10-2004-x64

3

index.html

windows7-x64

1

index.html

windows10-2004-x64

1

index1.html

windows7-x64

1

index1.html

windows10-2004-x64

1

manifest.json

windows7-x64

3

manifest.json

windows10-2004-x64

3

point.png

windows7-x64

3

point.png

windows10-2004-x64

3

supplierconfig.json

windows7-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    base.apk

  • Size

    7.1MB

  • MD5

    3fb15f9953df62ad5858f0365700eabc

  • SHA1

    2fc759a16c92e9fd133c98c903fe60275937748b

  • SHA256

    b3f9b1bdd3f091c0a0c5aa533d4f54f515b6b6ebfb8ba94b2a87688b36b2c146

  • SHA512

    dee978deefdfe5e1c8e6619011bdf27cd8f135d5e020abffc397c0b7435a9c6a9bf12abe179c50c3ea5b719b5e8c8da5e1a05377f19285a5b66ecf3bc596ecf0

  • SSDEEP

    196608:/4226a2264226+i9xset70Megual5hVx7OrirvD5Bfnp:gZ7di9tIstbF7OrUvDDR

Score
7/10

Malware Config

Signatures

  • Requests dangerous framework permissions 13 IoCs

Files

  • base.apk
    .apk android arch:arm

    bnhpmc.alamfv.colecemrq

    io.dcloud.PandoraEntry


  • 39285EFA.dex
  • HBuilder.png
    .png
  • androidPrivacy.json
  • bg.png
    .png
  • dcloud_beep.ogg
  • dcloud_control.xml
    .xml
  • dcloud_error.html
    .html .js
  • dcloud_iconfont.ttf
  • dcloud_prograss_snow1.png
    .png
  • dcloud_properties.xml
    .xml
  • dcloud_url.json
  • index.html
    .html .js
  • index1.html
    .html .js
  • manifest.json
  • point.png
    .png
  • supplierconfig.json

Android Permissions

base.apk

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.VIBRATE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.READ_SMS

android.permission.ACCESS_FINE_LOCATION

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.ACCESS_COARSE_LOCATION

android.permission.INSTALL_PACKAGES

android.permission.ACCESS_COARSE_LOCATION

android.permission.RECEIVE_SMS

android.permission.CHANGE_NETWORK_STATE

android.permission.FLASHLIGHT

android.permission.CALL_PHONE

android.permission.WAKE_LOCK

android.permission.WRITE_SMS

com.huawei.android.launcher.permission.CHANGE_BADGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.INTERNET

android.permission.READ_LOGS

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_SETTINGS

com.asus.msa.SupplementaryDID.ACCESS

android.permission.SEND_SMS

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECORD_AUDIO

com.vivo.notification.permission.BADGE_ICON

android.permission.READ_PHONE_STATE