com.protect.minor.MainActivity
android.intent.action.MAIN
com.protect.minor.bot.components.locker.LockerActivity
android.intent.action.MAIN
com.protect.minor.bot.sms.ComposeSmsActivity
android.intent.action.SEND
android.intent.action.SENDTO
Static task
static1
1 signatures
General
-
Target
9490778dd7a5afd4bf14bd6d9dee3607a00567e1372f9b966137cbcf58caf01e
-
Size
7.3MB
-
MD5
00f8ce61a92691c2be7b4823b5cfd0de
-
SHA1
c9c1022b744edabab8a1ce654ffc84b10ca4a832
-
SHA256
9490778dd7a5afd4bf14bd6d9dee3607a00567e1372f9b966137cbcf58caf01e
-
SHA512
c8264b75a61293fd14cc21162f9697c9dbe0269e8966a8ad5c9c142caac2b4ef9f4e1d49b28ceb8b2a040acc32fa007d651284b8c10d0f62f45fc44ad4f6ca58
-
SSDEEP
98304:7n4DIojOvRLPi+BUuXj+53DG7IDpuAnnOyFBMHYgnd4ymIsn/h8t8TKWRvchJAZ4:7xousuXwPpuMCY4dLvsnZBKgSXyTjcVl
Score
7/10
Malware Config
Signatures
-
Requests dangerous framework permissions 7 IoCs
Processes:
description ioc Allows an application to send SMS messages. android.permission.SEND_SMS Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call. android.permission.CALL_PHONE Allows an application to read the user's contacts data. android.permission.READ_CONTACTS Allows an application to receive SMS messages. android.permission.RECEIVE_SMS Allows an application to read SMS messages. android.permission.READ_SMS Allows an application to write to external storage. android.permission.WRITE_EXTERNAL_STORAGE Allows read access to the device's phone number(s). android.permission.READ_PHONE_NUMBERS
Files
-
9490778dd7a5afd4bf14bd6d9dee3607a00567e1372f9b966137cbcf58caf01e.apk android
com.until.corn
com.protect.minor.MainActivity
Activities
Permissions
android.permission.REQUEST_DELETE_PACKAGES
android.permission.SEND_SMS
android.permission.CAPTURE_VIDEO_OUTPUT
android.permission.WAKE_LOCK
android.permission.CALL_PHONE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACTION_MANAGE_OVERLAY_PERMISSION
android.permission.ACCESS_NETWORK_STATE
android.permission.DISABLE_KEYGUARD
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.INTERNET
android.permission.READ_CONTACTS
android.permission.REORDER_TASKS
android.permission.RECEIVE_SMS
android.permission.CHANGE_WIFI_STATE
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.GET_TASKS
android.permission.READ_SMS
android.permission.QUERY_ALL_PACKAGES
android.permission.QUICKBOOT_POWERON
android.permission.ACCESS_NETWORK_STATE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.ACCESS_NOTIFICATION_POLICY
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECEIVE_LAUNCH_BROADCASTS
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.ACCESS_NETWORK_STATE
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_SMS
android.permission.READ_PHONE_NUMBERS
android.permission.WAKE_LOCK
Receivers
com.protect.minor.bot.HelperAdmin$MyHomeReceiver
android.app.action.DEVICE_ADMIN_ENABLED
com.protect.minor.bot.receivers.MainReceiver
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.BATTERY_OKAY
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.SCREEN_OFF
android.intent.action.DREAMING_STOPPED
android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
cn.RestartedViaAlarm
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.BATTERY_LOW
android.intent.action.SCREEN_ON
android.intent.action.BATTERY_CHANGED
android.intent.action.REBOOT
android.intent.action.EXTERNAL_APPLICATIONS_AVAILABLE
com.protect.minor.core.PeriodicJobReceiver
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.BATTERY_OKAY
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.SCREEN_OFF
android.intent.action.DREAMING_STOPPED
android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
cn.RestartedViaAlarm
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.BATTERY_LOW
android.intent.action.SCREEN_ON
android.intent.action.BATTERY_CHANGED
android.intent.action.REBOOT
android.intent.action.EXTERNAL_APPLICATIONS_AVAILABLE
android.intent.action.QUICKBOOT_POWERON
com.htc.intent.action.QUICKBOOT_POWERON
android.intent.action.USER_PRESENT
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.provider.Telephony.SMS_RECEIVED
android.intent.action.SCREEN_ON
android.intent.action.EXTERNAL_APPLICATIONS_AVAILABLE
android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.DREAMING_STOPPED
com.protect.minor.bot.sms.SmsReceiver
android.provider.Telephony.SMS_DELIVER
com.protect.minor.bot.sms.MmsReceiver
android.provider.Telephony.WAP_PUSH_DELIVER
info.pluggabletransports.dispatch.service.DispatchReceiver
info.pluggabletransports.intent.action.START
Services
com.protect.minor.bot.components.injects.system.InjAccessibilityService
android.accessibilityservice.AccessibilityService
com.protect.minor.bot.sms.HeadlessSmsSendService
android.intent.action.RESPOND_VIA_MESSAGE
info.pluggabletransports.dispatch.service.DispatchVPN
android.net.VpnService
-
CoqPx.json
-
EmailAddress.xml
-
Gacha_Kompu_Background.json
-
GlobalSignOrganizationValidationCA-G2.der.cer
-
GlobalSignOrganizationValidationCA-SHA256-2018.der.crt
-
GlobalSignOrganizationValidationCA-SHA256-G2.der.cer
-
Manifest.json
-
Montserrat-Light.otf
-
SFX_Gacha_Spin_Step2_BallLand.m4a
-
SFX_Gacha_Spin_Step2_Tap1_Sparkle.m4a
-
SFX_Gacha_Spin_Step2_Tap2_Sparkle.m4a
-
Verizon Akamai SureServer CA G14-SHA2.cer
-
active_like.svg
-
active_unlike.svg
-
alert.m4a
-
andorid-chs_1.jpg
-
andorid-chs_3.jpg.jpg
-
andorid-en_1.jpg
-
andorid-en_3.jpg.jpg
-
andy.png
-
andy_shadow.obj
-
app.json
-
applicationmanager.p7b
-
arrow_back.svg
-
arrow_down.svg
-
arrow_right.svg
-
arrow_rigth_small.svg
-
audiomanager.p7b
-
bakchat_privacy.htm.html
-
bank_logo.xml
-
blue_heart.json
-
bmwone.p7b
-
bristol_oboarding.json
-
bubble_pop.m4a
-
buttons.m4a
-
calendar.p7b
-
catalog.svg
-
catalog_active.svg
-
checkbox_active.svg
-
chs-2v.jpg.jpg
-
classifier.v.16.1.2927.patch1.cambricon
-
classifier.v.16.1.2927.patch1.cambricon.inputs_outputs.aux
-
classifier.v.16.1.2927.patch1.cambricon_twins.ps1
-
classifier.v.16.1.2927.patch1.pb
-
classifier.v.16.1.2927.patch1.pb.cfg
-
classifier.v.16.1.2927.patch1.pb_new.pb
-
close.svg
-
dcl.cer
-
disabled.m4a
-
discount.svg
-
discount_active.svg
-
dt_template_ad_one_big_img.xml
-
dt_template_ad_one_small_img.xml
-
en-2v.jpg.jpg
-
enter_room.m4a
-
fail.m4a
-
field_arrow_down.svg
-
grs_sdk_server_config.json
-
grs_sp.bks
-
have_time_to_buy.png
-
hianalytics_njjn
-
hide_alert.svg
-
inactive_like.svg
-
inactive_unlike.svg
-
info.svg
-
ios_arrow_back.svg
-
launch_icon_ios.png
-
liked_post.m4a
-
locked.svg
-
logo.png
-
martian_template.png
-
menu.svg
-
message_bubble.m4a
-
message_sent.m4a
-
mig_wifi_service_terms_chs.html.html
-
mig_wifi_service_terms_en.html.html
-
mini_profile.m4a
-
move_furni.m4a
-
navigation.svg
-
network_warning.htm.html
-
nonwalkable.m4a
-
notifications_in-game.m4a
-
oauth_network_error.html.html
-
onboarding_2.json
-
phone.svg
-
pink_heart.json
-
place_furni.m4a
-
preprod.properties
-
prod.properties
-
product_image_cap.png
-
profile.svg
-
profile_active.svg
-
qqsync_intro.htm.html
-
qqsync_privacy.htm.html
-
reaction-heart.json
-
reaction-thumbs.json
-
reaction-wave.json
-
reaction_clap.m4a
-
reaction_heart.m4a
-
reaction_thumbs_up.m4a
-
reaction_wave.m4a
-
reaction_wink.m4a
-
refresh_down.m4a
-
refresh_icon.svg
-
refresh_up.m4a
-
running.m4a
-
search.svg
-
sfx_monsters_gacha_click_var1.m4a
-
sfx_monsters_gacha_click_var2.m4a
-
sfx_monsters_gacha_click_var3.m4a
-
sfx_monsters_gacha_common_loop.m4a
-
sfx_portal_earn_coins.aac
-
sfx_portal_earn_pops.aac
-
sfx_portal_slide.aac
-
sfx_portal_spend_coins.aac
-
sfx_portal_spend_pops.aac
-
sitting.m4a
-
sphere.mtl
-
sphere.obj
-
stores.svg
-
stores_active.svg
-
tabs.m4a
-
telegram.svg
-
test.properties
-
timer_icon.svg
-
toast_in-game.m4a
-
trigrid.png
-
trigrid_blue.png
-
trigrid_red.png
-
ui_description_ID4PP.xml
-
ui_description_ID5.xml
-
ui_description_ID6.xml
-
updatesdkcas.bks
-
viber.svg
-
walkable.m4a
-
wall.obj
-
wall_blue.png
-
wall_gray.png
-
wall_line.png
-
wallline.obj
-
wear_mask.svg
-
whatsapp.svg
-
wx_wifi_faq.html
-
wx_wifi_service_terms_chs.html
-
wx_wifi_service_terms_en.html
Android Permissions
9490778dd7a5afd4bf14bd6d9dee3607a00567e1372f9b966137cbcf58caf01e
Permissions
android.permission.REQUEST_DELETE_PACKAGES
android.permission.SEND_SMS
android.permission.CAPTURE_VIDEO_OUTPUT
android.permission.WAKE_LOCK
android.permission.CALL_PHONE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACTION_MANAGE_OVERLAY_PERMISSION
android.permission.ACCESS_NETWORK_STATE
android.permission.DISABLE_KEYGUARD
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.INTERNET
android.permission.READ_CONTACTS
android.permission.REORDER_TASKS
android.permission.RECEIVE_SMS
android.permission.CHANGE_WIFI_STATE
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.GET_TASKS
android.permission.READ_SMS
android.permission.QUERY_ALL_PACKAGES
android.permission.QUICKBOOT_POWERON
android.permission.ACCESS_NETWORK_STATE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.ACCESS_NOTIFICATION_POLICY
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECEIVE_LAUNCH_BROADCASTS
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.ACCESS_NETWORK_STATE
android.permission.FOREGROUND_SERVICE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_SMS
android.permission.READ_PHONE_NUMBERS
android.permission.WAKE_LOCK