readassistant[.]apk

Sharing

Copy URL Twitter E-mail

General

Target

readassistant.apk
Size

36.2MB
MD5

da7fa9084e40dcb5b7f08f66f2e06e88
SHA1

cfb6ddde95afc8b8c9de4eb84457e5ee7643501f
SHA256

cfb8dedbac5214ae26751cbd485315b585c570a7e95195696f70c1d20d796290
SHA512

27fc41c5d62670364fd46c43071a91c414fb42937b9eaf31c7d1329bff0c1603cc2dcd81f3a745f051fa3e545a42b215344a92eff301653247e63dc6ffcdc942
SSDEEP

786432:tIFCFYcgCzCwLVBjn3cIWbmgasGzTmfREghzgX0LygLMl/fUVF1UnBGp:uUYctCWVBb3RWbmgasGz6hcXwyQM9ekA

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

readassistant.apk
.apk android arch:arm

Password: spf200

com.iflytek.readassistant

com.iflytek.readassistant.biz.home.JumpActivity

Activities

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.iflytek.readassistant.biz.home.JumpActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.iflytek.readassistant.biz.actionprotocol.ui.ProtocolHandleActivity

android.intent.action.VIEW

com.iflytek.readassistant.biz.home.main.Home

com.iflytek.readassistant.ENTER_COPYREAD
com.iflytek.readassistant.ENTER_BROADCAST_ACTIVITY
com.iflytek.readassistant.ENTER_MORNING_NEWS_ACTION
com.iflytek.readassistant.ENTER_OFFLINE_SETTING
com.iflytek.readassistant.URL_SCHEME_ENTER_BROADCAST
com.iflytek.readassistant.PROTOCOL_INTENT
com.iflytek.readassistant.ENTER_TRAIN_VOICE_ACTION

com.iflytek.readassistant.biz.detailpage.ui.copy.CopyReadDialogActivity

android.intent.action.SEND

com.iflytek.readassistant.biz.pluginopen.DocOpenActivity

android.intent.action.VIEW
android.intent.action.VIEW

com.iflytek.readassistant.biz.pluginopen.DeepLinkActivity

android.intent.action.VIEW

com.sina.weibo.sdk.share.WbShareTransActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

Permissions

android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.READ_LOGS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.DISABLE_KEYGUARD
android.permission.RECORD_AUDIO
android.permission.ACCESS_FINE_LOCATION
app.custom.permission.GET_TTS_STATE
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.GET_TASKS
com.iflytek.readassistant.permission.MIPUSH_RECEIVE
android.permission.FOREGROUND_SERVICE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE
com.vivo.notification.permission.BADGE_ICON
android.permission.BLUETOOTH
android.permission.QUERY_ALL_PACKAGES
com.asus.msa.SupplementaryDID.ACCESS

Receivers

com.iflytek.readassistant.biz.home.WakeUpReceiver

android.intent.action.ACTION_SHUTDOWN
android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
android.intent.action.DATE_CHANGED
android.net.conn.CONNECTIVITY_CHANGE

com.iflytek.readassistant.biz.common.TtsReceiver

app.custom.permission.START_TTS

com.iflytek.readassistant.biz.common.ClipboardPlayReceiver

app.custom.action.SHOW_COPY_DIALOG

com.iflytek.readassistant.biz.broadcast.model.document.headset.MediaButtonReceiver

android.intent.action.MEDIA_BUTTON

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

com.iflytek.readassistant.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

org.android.agoo.xiaomi.MiPushBroadcastReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR
com.xiaomi.mipush.MESSAGE_ARRIVED

org.android.agoo.huawei.HuaWeiReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.intent.action.PUSH
com.huawei.intent.action.PUSH_STATE

org.android.agoo.huawei.HuaweiPushReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.android.push.intent.CLICK
com.huawei.intent.action.PUSH_STATE

org.android.agoo.vivo.PushMessageReceiverImpl

com.vivo.pushclient.action.RECEIVE

com.xiaomi.push.service.receivers.NetworkStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

Services

com.iflytek.readassistant.dependency.download.DownloadHandlerService

com.iflytek.ys.common.download.download.handler_service

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action
com.umeng.message.message.sendmessage.action

com.heytap.mcssdk.PushService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE

com.heytap.mcssdk.AppPushService

com.heytap.mcs.action.RECEIVE_MCS_MESSAGE
.appkey
39285EFA.dex
base_document_detail_page.html
.js
com.tencent.open.config.json
entities-base.properties
entities-full.properties
entities-xhtml.properties
ganqin_huankuai.mp3
ganqin_shuhuan.mp3
gdtadv2.jar
.apk android arch:arm64 arch:arm

Password: spf200
yaq.sec
yaq2.sec
yaq3_0.sec
.dex
yaqsdkcookie
geo_global_ca.cer
hmsrootcas.bks
libjiagu.so
.elf linux arm
libjiagu_x86.so
.elf linux x86
libwbsafeedit
.elf linux arm
libwbsafeedit_64
.elf linux aarch64
libwbsafeedit_x86
.elf linux x86
libwbsafeedit_x86_64
.elf linux x64
linqingxian.txt
menu.png
.png
min_jian_jue_mi_dang_an.txt
nightMode.skin
.apk android

Password: spf200

com.iflytek.readassistant.skin
plugin_info.ini
privacy_agreement.html
.html
register_agreement.html
.html
san_wei_shu_wu.txt
sdk_weibo_logo.png
.png
service_agreement.html
.html
setting.png
.png
supplierconfig.json
train_voice_agreement.html
.html
updatesdkcas.bks
weibosdk_common_button_alpha.9.png
.png
weibosdk_common_button_alpha_highlighted.9.png
.png
weibosdk_common_shadow_top.9.png
.png
weibosdk_empty_failed.png
.png
weibosdk_navigationbar_background.9.png
.png
weibosdk_notification_icon.png
.png
xiaoshuo_dushiqingan.mp3
xiaoshuo_gudaiyanqin.mp3
xiaoshuo_jinsong.mp3
xinwen_tiaoygd.mp3
xinwen_xiuxian.mp3

Android Permissions

readassistant.apk

Permissions

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

android.permission.READ_LOGS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WAKE_LOCK

android.permission.CAMERA

android.permission.DISABLE_KEYGUARD

android.permission.RECORD_AUDIO

android.permission.ACCESS_FINE_LOCATION

app.custom.permission.GET_TTS_STATE

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.GET_TASKS

com.iflytek.readassistant.permission.MIPUSH_RECEIVE

android.permission.FOREGROUND_SERVICE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE

com.heytap.mcs.permission.RECIEVE_MCS_MESSAGE

com.vivo.notification.permission.BADGE_ICON

android.permission.BLUETOOTH

android.permission.QUERY_ALL_PACKAGES

com.asus.msa.SupplementaryDID.ACCESS

Sharing

General

Malware Config

Signatures

Files

Password: spf200

com.iflytek.readassistant

com.iflytek.readassistant.biz.home.JumpActivity

Activities

com.tencent.tauth.AuthActivity

com.iflytek.readassistant.biz.home.JumpActivity

com.iflytek.readassistant.biz.actionprotocol.ui.ProtocolHandleActivity

com.iflytek.readassistant.biz.home.main.Home

com.iflytek.readassistant.biz.detailpage.ui.copy.CopyReadDialogActivity

com.iflytek.readassistant.biz.pluginopen.DocOpenActivity

com.iflytek.readassistant.biz.pluginopen.DeepLinkActivity

com.sina.weibo.sdk.share.WbShareTransActivity

Permissions

Receivers

com.iflytek.readassistant.biz.home.WakeUpReceiver

com.iflytek.readassistant.biz.common.TtsReceiver

com.iflytek.readassistant.biz.common.ClipboardPlayReceiver

com.iflytek.readassistant.biz.broadcast.model.document.headset.MediaButtonReceiver

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

org.android.agoo.xiaomi.MiPushBroadcastReceiver

org.android.agoo.huawei.HuaWeiReceiver

org.android.agoo.huawei.HuaweiPushReceiver

org.android.agoo.vivo.PushMessageReceiverImpl

com.xiaomi.push.service.receivers.NetworkStatusReceiver

com.xiaomi.push.service.receivers.PingReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

Services

com.iflytek.readassistant.dependency.download.DownloadHandlerService

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.heytap.mcssdk.PushService

com.heytap.mcssdk.AppPushService

Password: spf200

Password: spf200

com.iflytek.readassistant.skin

Android Permissions

readassistant.apk