Virus Cleaner, Antivirus Clean_1[.]1[.]37_Apkpure[.]apk

Resubmissions

16/08/2023, 14:02

230816-rch4msbc46 7

16/08/2023, 13:59

230816-radq5sda9s 7

14/08/2023, 11:26

230814-nj7tssdf5w 7

14/08/2023, 11:25

230814-njhvnsbf54 7

Sharing

Copy URL Twitter E-mail

General

Target

Virus Cleaner, Antivirus Clean_1.1.37_Apkpure.apk
Size

20.6MB
MD5

740d38c0098ab06d877d1d65f3b1ac29
SHA1

c8fe89335435734583d1a1496ca4953892b32e4a
SHA256

fbb4569e38230578b68b9a4b06e9e933b5e6ad4697e75248753cc319a35e7599
SHA512

484ec93e08273a9bddc663755928f2a7ac5e96043e7aefa16e61329d50690b3be128210246315a2bf1fc392fce5fd07e6e981cc2b672b9b920ac3357715eedb7
SSDEEP

393216:1egY7EtaZhPnEZVeZuxPZcNGgCSKP320LFpJtkewJ8r4f/cLejNSi1+eahZGI06c:1e7EtcqbPMjKPLleRN3RXPI4

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

Virus Cleaner, Antivirus Clean_1.1.37_Apkpure.apk
.apk android arch:arm arch:arm64

phone.antivirus.virus.cleaner.junk.clean.speed.booster.master

phone.cleaner.activity.ActivitySplash

Activities

phone.cleaner.activity.ActivitySplash

android.intent.action.MAIN
phone.antivirus.virus.cleaner.junk.clean.speed.booster.master.shortcut.entryshortcutaction

phone.cleaner.activity.MainActivity

android.intent.action.VIEW

phone.cleaner.activity.ActivityShortCut

phone.antivirus.virus.cleaner.junk.clean.speed.booster.master.shortcut.onetapshortcutaction

phone.cleaner.activity.ActivityGameFolderGTab

phone.cleaner.shortcut.gb

com.facebook.CustomTabActivity

android.intent.action.VIEW

Permissions

android.permission.FOREGROUND_SERVICE
android.permission.GET_TASKS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.PACKAGE_USAGE_STATS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.GET_PACKAGE_SIZE
android.permission.REQUEST_DELETE_PACKAGES
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WAKE_LOCK
phone.antivirus.virus.cleaner.junk.clean.speed.booster.master.permission.ANTI_VIRUS
android.permission.MANAGE_EXTERNAL_STORAGE
android.permission.QUERY_ALL_PACKAGES
com.google.android.c2dm.permission.RECEIVE
com.google.android.gms.permission.AD_ID
com.applovin.array.apphub.permission.BIND_APPHUB_SERVICE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Receivers

phone.cleaner.virus.WifiReceiver

android.NET.conn.CONNECTIVITY_CHANGE
android.Net.wifi.WIFI_STATE_CHANGED
android.net.wifi.STATE_CHANGE

phone.cleaner.apk.InstallUninstallReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REPLACED

phone.cleaner.util.LockScreenReceiver

android.intent.action.SCREEN_ON
android.intent.action.SCREEN_OFF
android.intent.action.USER_PRESENT

phone.cleaner.battery.PowerReceiver

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

wonder.city.baseutility.utility.netmanager.GpCampaignTrackingReceiver

com.android.vending.INSTALL_REFERRER

phone.cleaner.applock.ServiceRestarterBroadcastReceiver

phone.cleaner.applock.restartService

phone.cleaner.util.BootReceiver

android.intent.action.BOOT_COMPLETED

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.work.diagnostics.REQUEST_DIAGNOSTICS

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

com.facebook.AuthenticationTokenManager$CurrentAuthenticationTokenChangedBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_AUTHENTICATION_TOKEN_CHANGED

Services

phone.cleaner.notification.cleaner.NotificationListener

android.service.notification.NotificationListenerService
ad_load_anim.json
audience_network.dex
.dex
avlsdk
.zip
av/avl/android/avlpk_ads.avl
av/avl/android/avlpk_amc.avl
av/avl/android/avlpk_apn.avl
av/avl/android/avlpk_basic.avl
av/avl/android/avlpk_des.avl
av/avl/android/avlpk_dhc.avl
av/avl/android/avlpk_herui.avl
av/avl/android/avlpk_kw.avl
av/avl/android/avlpk_opc.avl
av/avl/android/avlpk_opc_scdf.avl
av/avl/android/avlpk_opd.avl
av/avl/android/avlpk_opg.avl
av/avl/android/avlpk_pornware.avl
av/avl/android/avlpk_sfmf.avl
av/avl/android/avlpk_sgnl.avl
av/avl/android/avlpk_sign.avl
av/avl/android/avlpk_white.avl
av/avl/conf/avllib.conf
av/avl/conf/liscense.conf
av/kw/common/en/behavior.des
av/kw/common/en/common.des
av/kw/common/en/recommend.des
av/kw/common/zh/behavior.des
av/kw/common/zh/common.des
av/kw/common/zh/recommend.des
sdk_conf/sdk.conf
sdk_conf/version.conf
tt_mime_type.pro
tt_na.czl
tt_nd
.elf linux x86

Android Permissions

Virus Cleaner, Antivirus Clean_1.1.37_Apkpure.apk

Permissions

android.permission.FOREGROUND_SERVICE

android.permission.GET_TASKS

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.PACKAGE_USAGE_STATS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.GET_PACKAGE_SIZE

android.permission.REQUEST_DELETE_PACKAGES

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WAKE_LOCK

phone.antivirus.virus.cleaner.junk.clean.speed.booster.master.permission.ANTI_VIRUS

android.permission.MANAGE_EXTERNAL_STORAGE

android.permission.QUERY_ALL_PACKAGES

com.google.android.c2dm.permission.RECEIVE

com.google.android.gms.permission.AD_ID

com.applovin.array.apphub.permission.BIND_APPHUB_SERVICE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

Resubmissions

Sharing

General

Malware Config

Signatures

Files

phone.antivirus.virus.cleaner.junk.clean.speed.booster.master

phone.cleaner.activity.ActivitySplash

Activities

phone.cleaner.activity.ActivitySplash

phone.cleaner.activity.MainActivity

phone.cleaner.activity.ActivityShortCut

phone.cleaner.activity.ActivityGameFolderGTab

com.facebook.CustomTabActivity

Permissions

Receivers

phone.cleaner.virus.WifiReceiver

phone.cleaner.apk.InstallUninstallReceiver

phone.cleaner.util.LockScreenReceiver

phone.cleaner.battery.PowerReceiver

wonder.city.baseutility.utility.netmanager.GpCampaignTrackingReceiver

phone.cleaner.applock.ServiceRestarterBroadcastReceiver

phone.cleaner.util.BootReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.diagnostics.DiagnosticsReceiver

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.AuthenticationTokenManager$CurrentAuthenticationTokenChangedBroadcastReceiver

Services

phone.cleaner.notification.cleaner.NotificationListener

Android Permissions

Virus Cleaner, Antivirus Clean_1.1.37_Apkpure.apk