c873439feb4421b3bfd4e480e82bc1762860dbcfe02201258adf5ed180cc92e6[.]apk[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

c873439feb4421b3bfd4e480e82bc1762860dbcfe02201258adf5ed180cc92e6.apk.zip
Size

45.8MB
MD5

d08af21986125efd0274fbc2f40b65ff
SHA1

9641851b1866b171134f8061cd258f8847603b4f
SHA256

2e1fbe0d78bc79a1bb6a6afdea8da54b2a546a4929bf1139b2b5c50a21245607
SHA512

15056c9207eb05f197064fb5d8d85609c637c604f44e5009f550afe4231e635467e01edd27d36ee7a6443feec4e8630f562dde1b298194aed8ae35f59aa719ec
SSDEEP

786432:oOfOaXsKyD+N7uqR/vU9vGH2cOtjzuZVQNTAX5egRCLgsW1xJ36kBqjBvf:oOGVKBo9ukjzWa6fCUbxM2cBX

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to record audio.	android.permission.RECORD_AUDIO
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS

Files

c873439feb4421b3bfd4e480e82bc1762860dbcfe02201258adf5ed180cc92e6.apk.zip
.zip

Password: infected
c873439feb4421b3bfd4e480e82bc1762860dbcfe02201258adf5ed180cc92e6.apk
.apk android arch:arm

com.steam.photoeditor

com.steam.photoeditor.camera.SMainActivity

Activities

com.steam.photoeditor.camera.SMainActivity

android.intent.action.MAIN
android.media.action.IMAGE_CAPTURE
android.media.action.IMAGE_CAPTURE_SECURE
android.media.action.STILL_IMAGE_CAMERA
android.media.action.STILL_IMAGE_CAMERA_SECURE
android.media.action.VIDEO_CAMERA
android.media.action.VIDEO_CAPTURE
com.steam.photoeditor.action.IMAGE_CAPTURE_AND_SHARE
com.steam.photoeditor.action.MOTION_CAPTURE
com.steam.photoeditor.action.MOTION_CAPTURE_AND_SHARE
com.steam.photoeditor.action.CAPTURE_TO_EDIT_AND_PUBLISH

com.steam.photoeditor.image.SPictureViewActivity

android.intent.action.VIEW
com.steam.photoeditor.action.MOTION_VIEW_AND_SHARE

com.steam.photoeditor.activity.SImageEditActivity

android.intent.action.EDIT
android.intent.action.SEND
com.steam.photoeditor.action.IAMGE_EDIT_AND_SHARE
com.steam.photoeditor.action.IAMGE_EDIT_AND_PUBLISH

com.steam.photoeditor.gallery.common.SGalleryActivity

android.intent.action.MAIN
android.intent.action.GET_CONTENT
android.intent.action.GET_CONTENT
android.intent.action.GET_CONTENT
android.intent.action.PICK
android.intent.action.PICK
android.intent.action.PICK
com.steam.photoeditor.action.IMAGE_PICK_TO_EDIT_AND_SHARE
com.steam.photoeditor.action.IMAGE_PICK_TO_EDIT_AND_SHARE
com.steam.photoeditor.action.IMAGE_PICK_TO_EDIT_AND_SHARE
com.steam.photoeditor.action.PICK_TO_EDIT
com.steam.photoeditor.action.PICK_TO_PIP_EDIT
com.steam.photoeditor.action.PICK_TO_EDIT_AND_PUBLISH

com.google.android.gms.appinvite.PreviewActivity

com.google.android.gms.appinvite.ACTION_PREVIEW

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.GET_TASKS
android.permission.VIBRATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.RECORD_AUDIO
android.permission.RECORD_VIDEO
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.WAKE_LOCK
android.permission.CAMERA
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_SETTINGS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.DISABLE_KEYGUARD
com.android.vending.BILLING
android.permission.READ_EXTERNAL_STORAGE
com.steam.photoeditor.permission.SERVICE
android.permission.GET_ACCOUNTS
android.permission.KILL_BACKGROUND_PROCESSES
com.steam.photoeditor.permission.C2D_MESSAGE
com.google.android.c2dm.permission.RECEIVE

Receivers

com.appsflyer.MultipleInstallBroadcastReceiver

com.android.vending.INSTALL_REFERRER

com.steam.photoeditor.analytic.SReferrerInfoReceiver

com.android.vending.INSTALL_REFERRER

com.steam.photoeditor.facebooksdk.SFBBroadcastReceiver

com.facebook.platform.AppCallResultBroadcast

com.steam.photoeditor.background.SOnAlarmReceiver

com.steam.photoeditor.TASK_LOOPER_ALARM_ACTION

com.steam.photoeditor.background.SOnStatistic19AlarmReceiver

com.steam.photoeditor.TASK_LOOPER_STATISTIC19_ALARM_ACTION

com.steam.photoeditor.widget.SMainWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE

com.steam.photoeditor.widget.SGalleryWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE

com.jiubang.commerce.receiver.BootBroadcastReceiver

android.intent.action.BOOT_COMPLETED

com.steam.photoeditor.widget.SImageWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE
com.steam.photoeditor.widget.chang.folder.action

com.intowow.sdk.ScheduleReceiver

com.intowow.sdk.prefetch

com.cs.bd.daemon.BootCompleteReceiver

android.intent.action.QUICKBOOT_POWERON
android.bluetooth.adapter.action.STATE_CHANGED
android.net.wifi.WIFI_STATE_CHANGED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
android.intent.action.WALLPAPER_CHANGED
android.intent.action.PACKAGE_RESTARTED
android.intent.action.PACKAGE_REPLACED
android.provider.Telephony.SECRET_CODE
android.intent.action.NEW_OUTGOING_CALL
android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_UNMOUNTED
com.jiubang.alock.ACTION_LOCKER_ACCOUNT_CHANGE
com.jiubang.alocker.theme.change
com.jiubang.alocker.monitor.vip
com.jiubang.alocker.refresh.vip

com.jiubang.commerce.receiver.AppBroadcastReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED

com.jb.zcamera.report.CrashReportReceiver

com.steam.photoeditor.report.CRASH_REPORT

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.gomo.firebasesdk.statistic.AlarmStatisticReceiver

com.firebase.STATISTIC

com.cs.bd.infoflow.sdk.core.noti.NotiBroadcastReceiver

com.cs.bd.infoflow.sdk.core.noti.NotiBroadcastReceiver

Services

com.steam.photoeditor.firebase.message.FcmMessagingService

com.google.firebase.MESSAGING_EVENT

com.steam.photoeditor.firebase.message.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT
224_1_1_optimized_3.pb
Country_Code.txt
Featured
Filter
OleoScriptBold.ttf
PIP
Roboto-BlackItalic.ttf
Roboto-Bold.ttf
Roboto-Medium.ttf
Segoe Condensed.ttf
Segoe.ttf
Sticker
Template
actionsQueue.js
.js
banner_ad.html
.html
blank.html
.html
blasteri.ttf
.js
builtin_resources.json
classici_frame.png
.png
classici_icon.jpg
classici_mask.png
.png
classicii_frame.png
.png
classicii_icon.jpg
classicii_mask.png
.png
com.steam.photoedtor.extra.arlook.daisy.zip
.apk android

com.steam.photoedtor.extra.arlook.daisy
converted_model_1.tflite
crashlytics-build.properties
csdaemon
.elf linux x86
data.json
default_handshake.json
frame_frame.png
.png
frame_icon.jpg
.jpg
frame_mask.png
.png
img_0.png
.png
img_1.png
.png
intelligentlocal
.apk android

com.jiubang.commerce.ad.intelligent
mm.js
.js
mmregioncode_en.txt
mraid.js
.js
native_test_json.json
smartball_frame.png
.png
smartball_icon.jpg
.jpg
smartball_mask.png
.png
square_frame.png
.png
square_icon.jpg
square_mask.png
.png
store_root_cache
subscribe_arrow_anim.json
subscribe_arrow_anim2.json
vpaid.js
.js

Sharing

General

Malware Config

Signatures

Files

Password: infected

com.steam.photoeditor

com.steam.photoeditor.camera.SMainActivity

Activities

com.steam.photoeditor.camera.SMainActivity

com.steam.photoeditor.image.SPictureViewActivity

com.steam.photoeditor.activity.SImageEditActivity

com.steam.photoeditor.gallery.common.SGalleryActivity

com.google.android.gms.appinvite.PreviewActivity

Permissions

Receivers

com.appsflyer.MultipleInstallBroadcastReceiver

com.steam.photoeditor.analytic.SReferrerInfoReceiver

com.steam.photoeditor.facebooksdk.SFBBroadcastReceiver

com.steam.photoeditor.background.SOnAlarmReceiver

com.steam.photoeditor.background.SOnStatistic19AlarmReceiver

com.steam.photoeditor.widget.SMainWidgetProvider

com.steam.photoeditor.widget.SGalleryWidgetProvider

com.jiubang.commerce.receiver.BootBroadcastReceiver

com.steam.photoeditor.widget.SImageWidgetProvider

com.intowow.sdk.ScheduleReceiver

com.cs.bd.daemon.BootCompleteReceiver

com.jiubang.commerce.receiver.AppBroadcastReceiver

com.jb.zcamera.report.CrashReportReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.gomo.firebasesdk.statistic.AlarmStatisticReceiver

com.cs.bd.infoflow.sdk.core.noti.NotiBroadcastReceiver

Services

com.steam.photoeditor.firebase.message.FcmMessagingService

com.steam.photoeditor.firebase.message.FirebaseInstanceIdService

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.iid.FirebaseInstanceIdService

com.steam.photoedtor.extra.arlook.daisy

com.jiubang.commerce.ad.intelligent