Overview

overview

7

Static

static

7

com_app_ha...66.apk

android-9-x86

1

libjiagu.so

debian-9-armhf

1

libjiagu_a64.so

ubuntu-18.04-amd64

libjiagu_a64.so

debian-9-armhf

libjiagu_a64.so

debian-9-mips

libjiagu_a64.so

debian-9-mipsel

libjiagu_x64.so

ubuntu-18.04-amd64

1

libjiagu_x86.so

ubuntu-18.04-amd64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    com_app_happyminer_aabf9d98a82913dd8933cab118cce866.apk

  • Size

    23.5MB

  • MD5

    aabf9d98a82913dd8933cab118cce866

  • SHA1

    a2315a060d193b578c059580d005b4bd5f21f2e8

  • SHA256

    885b24b4b170b86c5c963324a78f9525b758bdec0bd4c254d7c1083a43e0e3be

  • SHA512

    f63ccfb1802b7913049be09dc7e2e9acf9d027cd8988e7dfb510c62666c25b30e51a06ced5b3b13912cb97eb13a6ce0dabf2c7cbf0d33220419ec89c8ced9bd7

  • SSDEEP

    393216:ma4No5ttMngM5Vhl22cFVyoFYknwcR24of0vNujGD58+JzKjMMfTteUaPXUq:maoo5tmHVX22uMWnwzXgsjw6+JKjrtFo

Score
7/10

Malware Config

Signatures

  • Requests dangerous framework permissions 3 IoCs

Files

  • com_app_happyminer_aabf9d98a82913dd8933cab118cce866.apk
    .apk android arch:arm64 arch:arm

    com.app.happyminer

    com.core.app.SplashActivity


  • .jgapp
  • LabelMap.pb
  • Latn_ctc_cpu.binarypb
  • aksara_page_layout_analysis_rpn_gcn.binarypb
  • aksara_page_layout_analysis_ti_rpn_gcn.binarypb
  • baseline.prof
  • baseline.profm
  • bi_an_move.xml
    .xml
  • bian_main.xml
    .xml
  • bit_logo.png
    .png
  • button_not_pressed.xml
    .xml
  • button_pressed.xml
    .xml
  • buttonselector.xml
    .xml
  • cherryBlosProtected.dat
  • colors.xml
    .xml
  • conv_model.fb
  • file_paths.xml
    .xml
  • ic_launcher_background.xml
    .xml
  • img_closure.png
    .png
  • libjiagu.so
    .elf linux arm
  • libjiagu_a64.so
    .elf linux aarch64
  • libjiagu_x64.so
    .elf linux x64
  • libjiagu_x86.so
    .elf linux x86
  • litepal.xml
    .xml
  • lstm_model.fb
  • model.tflite
  • network_security_config.xml
    .xml
  • region_proposal_text_detector_tflite_vertical_mbv2_v1.bincfg
  • rpn_text_detection_tflite_mobile_mbv2.binarypb
  • rpn_text_detector_mobile_space_to_depth_quantized_mbv2_v1.tflite
  • strings.xml
  • taser_script_identification_tflite_mobile.binarypb
  • taser_tflite_gocrlatin_mbv2_scriptid_aksara_layout_gcn_mobile_engine.binarypb
  • taser_tflite_gocrlatin_mbv2_scriptid_aksara_layout_gcn_mobile_engine_ti.binarypb
  • taser_tflite_gocrlatin_mbv2_scriptid_aksara_layout_gcn_mobile_recognizer.binarypb
  • taser_tflite_gocrlatin_mbv2_scriptid_aksara_layout_gcn_mobile_runner.binarypb
  • taser_tflite_gocrlatin_mbv2_scriptid_aksara_layout_gcn_mobile_runner_ti.binarypb
  • tflite_langid.tflite
  • tflite_script_detector_0.3.bincfg
  • tflite_script_detector_0.3.conv_model
  • tflite_script_detector_0.3.lstm_model
  • view_main.xml
    .xml
  • yf_tool_entry.xml
    .xml

Android Permissions

com_app_happyminer_aabf9d98a82913dd8933cab118cce866.apk

Permissions

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.FOREGROUND_SERVICE

android.permission.SYSTEM_ALERT_WINDOW

com.huawei.permission.external_app_settings.USE_COMPONENT

android.permission.REQUEST_DELETE_PACKAGES

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_CONTACTS

android.permission.QUERY_ALL_PACKAGES

android.permission.DELETE_PACKAGES

android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS

com.app.happyminer.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.ACCESS_NETWORK_STATE