Yummly-7[.]7[.]apk

Resubmissions

04-09-2023 06:32

230904-ha5eesef88 7

Sharing

Copy URL

Twitter E-mail

Reason

unexpected chunk type

General

Target

Yummly-7.7.apk
Size

180.0MB
MD5

17b2ee0ed74f414b390669bfa9e4f9d4
SHA1

6d22f535860f6da4a79573f45fe13898c44bcacf
SHA256

8d3a5ba6f91a7287b25de9c1eb3b157a1ba219faeaba1aa9fb90e2f7e4420121
SHA512

80bf7095a9a0de6da23b952174da023f8f0c7c5110cddd4e84d6594a747d5b293858eda9889c5c7a5c176bb1e1660580a7230bc652275cbdc50ea178db8975ad
SSDEEP

3145728:EGpU6O9PltkfMz65lizYVkykHbSvGoeVMoEjfPGFoTmRcpwXptxXFMnqr:EGpUB9PltkR5lizWkH+G3MoqHGeT1paV

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 14 IoCs

description	ioc
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write the user's calendar data.	android.permission.WRITE_CALENDAR
Allows an application to read the user's calendar data.	android.permission.READ_CALENDAR
Allows an application to record audio.	android.permission.RECORD_AUDIO
Required to be able to discover and pair nearby Bluetooth devices.	android.permission.BLUETOOTH_SCAN
Required to be able to connect to paired Bluetooth devices.	android.permission.BLUETOOTH_CONNECT
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read image files from external storage.	android.permission.READ_MEDIA_IMAGES
Allows an application to read video files from external storage.	android.permission.READ_MEDIA_VIDEO
Allows an application to read audio files from external storage.	android.permission.READ_MEDIA_AUDIO
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION

Files

Yummly-7.7.apk
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.yummly.android

com.yummly.android.feature.splash.SplashActivity

Activities

com.yummly.android.feature.splash.SplashActivity

android.intent.action.MAIN

com.yummly.android.feature.bottomnav.BottomNavActivity

android.intent.action.SEARCH
com.google.android.gms.actions.SEARCH_ACTION

com.yummly.android.feature.collection.activity.CollectionRecipeActivity

android.intent.action.SEARCH
com.google.android.gms.actions.SEARCH_ACTION

com.yummly.android.deeplinking.DeepLinksActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.yummly.android.feature.addyum.activity.AddAYumURBDialog

android.intent.action.SEND

com.facebook.CustomTabActivity

android.intent.action.VIEW

Permissions

android.permission.CAMERA
android.permission.INTERNET
android.permission.BLUETOOTH
android.permission.VIBRATE
android.permission.ACCESS_WIFI_STATE
com.android.vending.BILLING
android.permission.WAKE_LOCK
android.permission.WRITE_CALENDAR
android.permission.READ_CALENDAR
android.permission.REORDER_TASKS
android.permission.RECORD_AUDIO
android.permission.SCHEDULE_EXACT_ALARM
android.permission.BLUETOOTH_SCAN
android.permission.BLUETOOTH_CONNECT
android.permission.POST_NOTIFICATIONS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_MEDIA_IMAGES
android.permission.READ_MEDIA_VIDEO
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_MEDIA_AUDIO
com.google.android.c2dm.permission.RECEIVE
android.permission.FOREGROUND_SERVICE
com.google.android.gms.permission.AD_ID
android.permission.RECEIVE_BOOT_COMPLETED
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.yummly.android.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION
android.permission.ACCESS_FINE_LOCATION
android.permission.BLUETOOTH_ADMIN
android.permission.ACCESS_COARSE_LOCATION

Receivers

com.yummly.android.util.BootCompletedProviderChangedReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.MY_PACKAGE_REPLACED

com.yummly.android.util.LocaleChangedReceiver

android.intent.action.LOCALE_CHANGED

zendesk.support.DeepLinkingBroadcastReceiver

zendesk.support

com.iterable.iterableapi.IterablePushActionReceiver

com.iterable.push.ACTION_PUSH_ACTION

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

androidx.work.impl.diagnostics.DiagnosticsReceiver

androidx.work.diagnostics.REQUEST_DIAGNOSTICS

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

com.facebook.AuthenticationTokenManager$CurrentAuthenticationTokenChangedBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_AUTHENTICATION_TOKEN_CHANGED

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE
androidx.profileinstaller.action.SAVE_PROFILE
androidx.profileinstaller.action.BENCHMARK_OPERATION

com.yummly.android.dynamicthermometer.AppCreatedReceiver

android.intent.action.BOOT_COMPLETED
com.yummly.android.INIT_DYNAMIC_THERMOMETER_SDK_BROADCAST
com.yummly.android.INIT_DYNAMIC_THERMOMETER_DEPENDENCIES_BROADCAST

Services

com.yummly.android.service.YummlyFcmListenerService

com.google.firebase.MESSAGING_EVENT
com.google.firebase.INSTANCE_ID_EVENT

com.iterable.iterableapi.IterableFirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.android.gms.metadata.ModuleDependencies

com.google.android.gms.metadata.MODULE_DEPENDENCIES
Beef_Prime_Rib_Bone_In_60_temp.csv
Chicken_Breast_halves_boneless_skinless_10_temp.csv
Chicken_Breast_halves_boneless_skinless_12_temp.csv
Chicken_Whole_3_temp.csv
MEATIT_PROBE_X3_v0.8.5.zip
.zip
MEATIT_PROBE_X3_0.8.5.bin
MEATIT_PROBE_X3_0.8.5.dat
manifest.json
MEATIT_PROBE_X3_v0.8.6.zip
.zip
MEATIT_PROBE_X3_0.8.6.bin
MEATIT_PROBE_X3_0.8.6.dat
manifest.json
MEATIT_PROBE_X3_v0.8.7.zip
.zip
MEATIT_PROBE_X3_0.8.7.bin
MEATIT_PROBE_X3_0.8.7.dat
manifest.json
MEATIT_REPEATER_X3_v0.7.3.zip
.zip
MEATIT_REPEATER_X3_0.7.3.bin
MEATIT_REPEATER_X3_0.7.3.dat
manifest.json
MEATIT_REPEATER_X3_v0.7.4.zip
.zip
MEATIT_REPEATER_X3_0.7.4.bin
MEATIT_REPEATER_X3_0.7.4.dat
manifest.json
MEATIT_REPEATER_X3_v0.7.5.zip
.zip
MEATIT_REPEATER_X3_0.7.5.bin
MEATIT_REPEATER_X3_0.7.5.dat
manifest.json
Pork_Boneless_Top_Loin_Roast_69_temp.csv
Raleway-Light.ttf
Turkey_Whole_90_temp.csv
Turkey_Whole_turkey_87_temp.csv
ambient_input_test.csv
ambient_model_v2.tflite
assets.lst
audio.wav
baseline.prof
baseline.profm
beef_brisket.png
.png
beef_category.png
.png
beef_medium.png
.png
beef_medium_rare.png
.png
beef_medium_well.png
.png
beef_other.png
.png
beef_rare.png
.png
beef_roast.png
.png
beef_steak.png
.png
beef_well_done.png
.png
beef_well_done_tender.png
beef_whole_tenderloin.png
.png
chicken_breast.png
.png
chicken_category.png
.png
chicken_cooking.png
.png
chicken_thigh.png
.png
chicken_whole_chicken.png
.png
chicken_whole_leg.png
.png
cod_category.png
.png
cod_fillet.png
cod_medium.png
.png
cod_medium_rare.png
.png
cod_medium_well.png
.png
cod_well_done.png
.png
cook_session_v1_interrupted.zip
.zip
V1/.DS_Store
V1/data.json
V1/img_0.png
.png
V1/img_1.png
.png
V1/img_2.png
.png
__MACOSX/V1/._.DS_Store
__MACOSX/V1/._img_2.png
cook_session_v2_interrupted.zip
.zip
__MACOSX/._dockReset.json
dockReset.json
cooking_tips.json
cut_beef_brisket.png
cut_beef_other.png
cut_beef_roast.png
cut_beef_steak.png
.png
cut_beef_whole_tenderloin.png
cut_chicken_breast.png
cut_chicken_thigh.png
cut_chicken_whole_chicken.png
cut_chicken_whole_leg.png
cut_cod_fillet.png
cut_duck_breast.png
cut_duck_whole_duck.png
cut_duck_whole_leg.png
cut_elk_roast.png
cut_elk_steak.png
cut_elk_tenderloin.png
cut_halibut_fillet.png
cut_lamb_bone_in_leg.png
cut_lamb_boneless_leg.png
cut_lamb_other.png
cut_lamb_rib_rack.png
cut_pork_chop.png
cut_pork_cooked_ham.png
cut_pork_fresh_ham.png
cut_pork_other.png
cut_pork_pork_shoulder.png
cut_pork_roast.png
cut_pork_roast.webp
cut_pork_tenderloin.png
cut_salmon_fillet.png
cut_swordfish_steak.png
cut_tuna_steak.png
cut_turkey_breast.png
cut_turkey_drumstick.png
cut_turkey_thigh.png
cut_turkey_whole_leg.png
cut_turkey_whole_turkey_14+_lbs.png
cut_turkey_whole_turkey_5_14_lbs.png
cut_venison_roast.png
cut_venison_steak.png
cut_venison_tenderloin.png
default_metadata.json
duck_breast.png
.png
duck_category.png
.png
duck_medium.png
.png
duck_medium_rare.png
.png
duck_medium_well.png
.png
duck_well.png
.png
duck_whole_duck.png
.png
duck_whole_leg.png
.png
elk_category.png
.png
elk_medium.png
.png
elk_medium_rare.png
.png
elk_medium_well.png
.png
elk_rare.png
.png
elk_roast.png
elk_steak.png
elk_tenderloin.png
elk_well_done.png
.png
en-phone.dmp
en-phone.dmp.md5
feat.params
feat.params.md5
fish_category.png
.png
generic_upsell_variant.json
google_annual_subscription_plan_variant.json
halibut_category.png
.png
halibut_fillet.png
halibut_medium.png
halibut_medium_rare.png
.png
halibut_medium_well.png
.png
halibut_well_done.png
help_center_article_style.css
lamb_bone_in_leg.png
.png
lamb_boneless_leg.png
.png
lamb_category.png
.png
lamb_medium.png
.png
lamb_medium_rare.png
.png
lamb_medium_well.png
.png
lamb_other.png
.png
lamb_rare.png
.png
lamb_rib_rack.png
.png
lamb_well_done.png
.png
manual_category.png
.png
manual_cooking.png
.png
mdef
mdef.md5
means
means.md5
meat_category.png
.png
menu.gram
menu.gram.md5
noisedict
noisedict.md5
onboarding_upsell_variant.json
oven_recommended_modes.json
pcp_probe_ota_firmware_v1.41.zip
.zip
pcp_probe_ota_firmware_v1.42.zip
.zip
pcp_probe_ota_firmware_v1.44.zip
.zip
pcp_probe_ota_firmware_v1.46.zip
.zip
pcp_probe_ota_firmware_v1.47.zip
.zip
pcp_probe_ota_firmware_v1.48.zip
.zip
pcp_probe_ota_firmware_v1.49.zip
.zip
pcp_probe_ota_firmware_v1.52.zip
.zip
pcp_probe_ota_firmware_v1.53.zip
.zip
pcp_repeater_ota_firmware_v1.41.zip
.zip
pcp_repeater_ota_firmware_v1.42.zip
.zip
pcp_repeater_ota_firmware_v1.44.zip
.zip
pcp_repeater_ota_firmware_v1.46.zip
.zip
pcp_repeater_ota_firmware_v1.47.zip
.zip
pcp_repeater_ota_firmware_v1.48.zip
.zip
pcp_repeater_ota_firmware_v1.49.zip
.zip
pcp_repeater_ota_firmware_v1.52.zip
.zip
pcp_repeater_ota_firmware_v1.53.zip
.zip
pork_category.png
.png
pork_chop.png
.png
pork_cooked_ham.png
.png
pork_cooking.png
.png
pork_fresh_ham.png
.png
pork_medium.png
.png
pork_medium_well.png
.png
pork_other.png
.png
pork_pork_shoulder.png
.png
pork_roast.png
.png
pork_rosy.png
.png
pork_tenderloin.png
.png
pork_well_done.png
.png
pork_well_done_tender.png
poultry_category.png
.png
range_extender_share_sheet_preview.webp
salmon_category.png
.png
salmon_fillet.png
.png
salmon_medium_to_well.png
.png
salmon_pearly.png
.png
salmon_semi_cooked.png
.png
salmon_well_done.png
.png
sendump
sendump.md5
swordfish_category.png
.png
swordfish_medium.png
swordfish_medium_rare.png
.png
swordfish_medium_well.png
.png
swordfish_steak.png
swordfish_well_done.png
.png
thermometer_categories.json
thermometer_cook_method.json
thermometer_v1_categories.json
transition_matrices
transition_matrices.md5
tuna_category.png
.png
tuna_medium.png
.png
tuna_medium_rare.png
.png
tuna_medium_well.png
.png
tuna_rare.png
.png
tuna_steak.png
tuna_well_done.png
.png
turkey_breast.png
.png
turkey_category.png
.png
turkey_cooking.png
.png
turkey_drumstick.png
.png
turkey_thigh.png
.png
turkey_well_done.png
.png
turkey_whole_leg.png
.png
turkey_whole_turkey_14+_lbs.png
.png
turkey_whole_turkey_5_14_lbs.png
.png
variances
variances.md5
venison_category.png
.png
venison_medium.png
venison_medium_rare.png
.png
venison_medium_well.png
.png
venison_rare.png
.png
venison_roast.png
venison_steak.png
venison_tenderloin.png
venison_well_done.png
.png
whole_turkey_14+_lbs_grill_cooking_tips.png
.png
whole_turkey_14+_lbs_grill_pan_skillet_cooking_tips.png
.png
whole_turkey_14+_lbs_oven_cooking_tips.png
.png
whole_turkey_14+_lbs_smoker_cooking_tips.png
.png
whole_turkey_5_14_lbs_grill_cooking_tips.png
.png
whole_turkey_5_14_lbs_grill_pan_skillet_cooking_tips.png
.png
whole_turkey_5_14_lbs_oven_cooking_tips.png
.png
whole_turkey_5_14_lbs_smoker_cooking_tips.png
.png
wild_game_category.png
.png
words.dic
words.dic.md5
yummlyvoice-jcdskt-a46ed88b2283.json

Android Permissions

Yummly-7.7.apk

Permissions

android.permission.CAMERA

android.permission.INTERNET

android.permission.BLUETOOTH

android.permission.VIBRATE

android.permission.ACCESS_WIFI_STATE

com.android.vending.BILLING

android.permission.WAKE_LOCK

android.permission.WRITE_CALENDAR

android.permission.READ_CALENDAR

android.permission.REORDER_TASKS

android.permission.RECORD_AUDIO

android.permission.SCHEDULE_EXACT_ALARM

android.permission.BLUETOOTH_SCAN

android.permission.BLUETOOTH_CONNECT

android.permission.POST_NOTIFICATIONS

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_MEDIA_IMAGES

android.permission.READ_MEDIA_VIDEO

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_MEDIA_AUDIO

com.google.android.c2dm.permission.RECEIVE

android.permission.FOREGROUND_SERVICE

com.google.android.gms.permission.AD_ID

android.permission.RECEIVE_BOOT_COMPLETED

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.yummly.android.DYNAMIC_RECEIVER_NOT_EXPORTED_PERMISSION

android.permission.ACCESS_FINE_LOCATION

android.permission.BLUETOOTH_ADMIN

android.permission.ACCESS_COARSE_LOCATION

Resubmissions

Sharing

Errors

General

Malware Config

Signatures

Files

com.yummly.android

com.yummly.android.feature.splash.SplashActivity

Activities

com.yummly.android.feature.splash.SplashActivity

com.yummly.android.feature.bottomnav.BottomNavActivity

com.yummly.android.feature.collection.activity.CollectionRecipeActivity

com.yummly.android.deeplinking.DeepLinksActivity

com.yummly.android.feature.addyum.activity.AddAYumURBDialog

com.facebook.CustomTabActivity

Permissions

Receivers

com.yummly.android.util.BootCompletedProviderChangedReceiver

com.yummly.android.util.LocaleChangedReceiver

zendesk.support.DeepLinkingBroadcastReceiver

com.iterable.iterableapi.IterablePushActionReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.diagnostics.DiagnosticsReceiver

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.AuthenticationTokenManager$CurrentAuthenticationTokenChangedBroadcastReceiver

androidx.profileinstaller.ProfileInstallReceiver

com.yummly.android.dynamicthermometer.AppCreatedReceiver

Services

com.yummly.android.service.YummlyFcmListenerService

com.iterable.iterableapi.IterableFirebaseMessagingService

com.google.firebase.messaging.FirebaseMessagingService

com.google.android.gms.metadata.ModuleDependencies

Android Permissions

Yummly-7.7.apk