ea509e08a3541266d024055e751102a62899680cc8f833195537ebf6ef652f5c[.]apk[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

ea509e08a3541266d024055e751102a62899680cc8f833195537ebf6ef652f5c.apk.zip
Size

169.1MB
MD5

8b1e67cbd06c1beacc376bbedcd61ba1
SHA1

28b9fa4c821d41f92e278716ffd58268f4bd0cc9
SHA256

81a90c725be82b1adba7b6a3a1da229284a67a48e699d964e52cc46fac777357
SHA512

1f1f3f6de5d4c317b4c7bc17c765556f70934396bde71f19204c2ef1cb593c70e0060f1aa848b663b1f53b976bf0de0561e2d3feaf2ad7ea047b33204c5181c6
SSDEEP

3145728:vP7Li7vaB2LfNm4T8/0h2MsS1IjNPkmValAFi0s1fmuO5+Oh3V/2WdTgD1+4l:33CvZ1rT3hJ1Iu1iF5s99ODV/27D1t

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 12 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to recognize physical activity.	android.permission.ACTIVITY_RECOGNITION
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an app to access location in the background.	android.permission.ACCESS_BACKGROUND_LOCATION

Files

ea509e08a3541266d024055e751102a62899680cc8f833195537ebf6ef652f5c.apk.zip
.zip

Password: infected
ea509e08a3541266d024055e751102a62899680cc8f833195537ebf6ef652f5c.apk
.apk android arch:arm

com.tencent.mm

com.tencent.mm.ui.LauncherUI

Activities

com.tencent.mm.ui.LauncherUI

android.intent.action.MAIN
com.tencent.mm.action.BIZSHORTCUT

com.tencent.mm.ui.tools.MultiStageCitySelectUI

com.tencent.mm.action.GET_ADRESS

com.tencent.mm.ui.tools.HardCoderSettingUI

com.tencent.mm.action.HARDCODER_SETTING

com.tencent.mm.ui.tools.ShareImgUI

android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.tencent.mm.ui.tools.AddFavoriteUI

android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.tencent.mm.ui.tools.ShareToTimeLineUI

android.intent.action.SEND

com.tencent.mm.ui.tools.ShareScreenImgUI

android.intent.action.VIEW

com.tencent.mm.ui.tools.ShareScreenToTimeLineUI

android.intent.action.VIEW

com.tencent.mm.plugin.base.stub.WXShortcutEntryActivity

com.tencent.mm.action.WX_SHORTCUT

com.tencent.mm.plugin.base.stub.WXCustomSchemeEntryActivity

android.intent.action.VIEW

com.tencent.mm.plugin.nfc_open.ui.NfcWebViewUI

android.nfc.action.TECH_DISCOVERED

com.tencent.mm.plugin.gwallet.GWalletUI

com.tencent.mm.gwallet.ACTION_PAY_REQUEST
com.tencent.mm.gwallet.ACTION_QUERY_REQUEST

Permissions

android.permission.CHANGE_WIFI_MULTICAST_STATE
com.tencent.mm.plugin.permission.READ
com.tencent.mm.plugin.permission.WRITE
com.tencent.mm.permission.MM_MESSAGE
com.huawei.authentication.HW_ACCESS_AUTH_SERVICE
com.google.android.providers.gsf.permission.READ_GSERVICES
android.permission.CHANGE_NETWORK_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CAMERA
android.permission.GET_TASKS
android.permission.INTERNET
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECORD_AUDIO
android.permission.READ_CONTACTS
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_CONTACTS
android.permission.WRITE_SETTINGS
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
com.tencent.mm.location.permission.SEND_VIEW
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.BROADCAST_STICKY
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CHANGE_WIFI_STATE
android.permission.GET_PACKAGE_SIZE
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.NFC
com.miui.easygo.permission.READ_PERMISSION
com.huawei.android.launcher.permission.CHANGE_BADGE
android.permission.WRITE_APP_BADGE
android.permission.REQUEST_IGNORE_BATTERY_OPTIMIZATIONS
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
com.tencent.mm.ext.permission.READ
com.tencent.mm.ext.permission.WRITE
android.permission.ACTIVITY_RECOGNITION
com.tencent.mm.wear.message
miui.permission.READ_STEPS
android.permission.ACCESS_WIFI_STATE
com.android.vending.BILLING
com.bbk.launcher2.permission.READ_SETTINGS
android.permission.FOREGROUND_SERVICE
android.permission.USE_FULL_SCREEN_INTENT
com.open.gallery.smart.Read
com.open.gallery.smart.Write
com.open.gallery.smart.Provider
com.tencent.mm.WAID_PROVIDER_WRITE
android.permission.GET_ACCOUNTS
android.permission.MANAGE_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.READ_SYNC_SETTINGS
android.permission.WRITE_SYNC_SETTINGS
android.permission.READ_PROFILE
com.android.vending.CHECK_LICENSE
android.permission.USE_FINGERPRINT
android.permission.REQUEST_INSTALL_PACKAGES
com.tencent.mm.matrix.strategynotify
android.permission.ACCESS_NOTIFICATION_POLICY
com.tencent.mm.manual.dump
com.tencent.mm.backtrace.warmed_up
com.google.android.c2dm.permission.RECEIVE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.tencent.mm.permission.C2D_MESSAGE
com.tencent.mm.vfs.broadcast
com.soter.permission.ACCESS_SOTER_KEYSTORE
android.permission.USE_FACERECOGNITION
android.permission.FLASHLIGHT
com.huawei.easygo.permission.READ_PERMISSION
android.permission.ACCESS_BACKGROUND_LOCATION

Receivers

com.tencent.mm.booter.ClickFlowReceiver

com.tencent.mm.Intent.ACTION_CLICK_FLOW_REPORT

com.tencent.mm.booter.BluetoothStateReceiver

android.bluetooth.adapter.action.STATE_CHANGED

com.tencent.mm.booter.MountReceiver

android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_EJECT
android.intent.action.MEDIA_UNMOUNTED
android.intent.action.MEDIA_SHARED
android.intent.action.MEDIA_SCANNER_STARTED
android.intent.action.MEDIA_SCANNER_FINISHED
android.intent.action.MEDIA_REMOVED
android.intent.action.MEDIA_BAD_REMOVAL

com.tencent.mm.booter.BluetoothReceiver

android.media.SCO_AUDIO_STATE_CHANGED
android.media.ACTION_SCO_AUDIO_STATE_UPDATED

com.tencent.mm.plugin.backup.bakoldlogic.bakoldmodel.BakOldUSBReceiver

MMBakchatServiceStart
MMBakchatServiceStop

com.tencent.mm.plugin.base.stub.WXEntryActivity$EntryReceiver

com.tencent.mm.plugin.openapi.Intent.ACTION_HANDLE_APP_REGISTER
com.tencent.mm.plugin.openapi.Intent.ACTION_HANDLE_APP_UNREGISTER

com.tencent.mm.plugin.base.model.ShortcutBroadCastReceiver

android.intent.action.CREATE_SHORTCUT

com.tencent.mm.plugin.auto.service.MMAutoMessageHeardReceiver

com.tencent.mm.permission.MM_AUTO_HEARD_MESSAGE

com.tencent.mm.plugin.auto.service.MMAutoMessageReplyReceiver

com.tencent.mm.permission.MM_AUTO_REPLY_MESSAGE

com.tencent.mm.cache.ArtistCacheManager

com.tencent.mm.plugin.photoedit.action.clear

com.tencent.mm.plugin.performance.elf.ElfCallUpReceiver

com.tencent.mm.plugin.performance.elf.ElfCallUpReceiver

com.tencent.mm.plugin.downloader.model.FileDownloadReceiver

android.intent.action.DOWNLOAD_COMPLETE

com.tencent.mm.plugin.downloader.ui.FileDownloadNotificationClickReceiver

com.tencent.mm.Intent.ACTION_CLICK_FILEDOWNLOAD_NOTIFICATION

com.tencent.mm.booter.MMReceivers$BootReceiver

android.intent.action.BOOT_COMPLETED

com.tencent.mm.booter.MMReceivers$ConnectionReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

Services

com.tencent.mm.plugin.wear.model.service.WearDataLayerService

com.google.android.gms.wearable.BIND_LISTENER

com.tencent.mm.plugin.account.model.AccountAuthenticatorService

android.accounts.AccountAuthenticator

com.tencent.mm.plugin.account.model.ContactsSyncService

android.content.SyncAdapter

com.tencent.mm.plugin.hld.WxHldService

android.view.InputMethod

com.tencent.mm.plugin.fcm.WCFirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.tencent.mm.plugin.fcm.FCMInstanceIDListenerService

com.google.firebase.INSTANCE_ID_EVENT

com.tencent.mm.plugin.appbrand.jsapi.nfc.hce.HCEService

android.nfc.cardemulation.action.HOST_APDU_SERVICE

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT
0.wxam
1
1.wxam
10.wxam
100.wxam
101.wxam
102.wxam
103.wxam
104.wxam
11.wxam
12.wxam
13.wxam
14.wxam
15.wxam
15007_api_list.txt
16.wxam
17.wxam
18.wxam
19.wxam
2.wxam
20.wxam
2020051503.pag
2020052005.pag
21.wxam
22.wxam
23.wxam
24.wxam
25.wxam
26.wxam
27.wxam
28.wxam
29.wxam
2_02.png
2_04.png
2_05.png
2_06.png
2_07.png
2_09.png
2_10.png
2_11.png
2_12.png
2_14.png
2_15.png
2_16.png
2_17.png
3.wxam
30.wxam
31.wxam
32.wxam
33.wxam
34.wxam
35.wxam
36.wxam
37.wxam
38.wxam
39.wxam
4.wxam
40.wxam
41.wxam
42.wxam
43.wxam
44.wxam
45.wxam
46.wxam
47.wxam
48.wxam
49.wxam
5.wxam
50.wxam
51.wxam
52.wxam
53.wxam
54.wxam
55.wxam
56.wxam
57.wxam
58.wxam
59.wxam
6.wxam
60.wxam
61.wxam
62.wxam
63.wxam
64.wxam
65.wxam
66.wxam
666.png
67.wxam
68.wxam
69.wxam
7.wxam
70.wxam
71.wxam
72.wxam
73.wxam
74.wxam
75.wxam
76.wxam
77.wxam
78.wxam
79.wxam
8.wxam
80.wxam
81.wxam
82.wxam
83.wxam
84.wxam
85.wxam
86.wxam
87.wxam
88.wxam
89.wxam
9.wxam
90.wxam
91.wxam
92.wxam
93.wxam
94.wxam
95.wxam
96.wxam
97.wxam
98.wxam
99.wxam
AZURE.png
.png
Addoil.png
AssetManifest.json
BLUE.png
.png
Boring.png
Broken.png
CYAN.png
.png
Cold.png
Composite.wav
CupertinoIcons.ttf
Duh.png
EmailAddress.xml
FaceAlignmentV3.5.0.25_arm.pbin
FaceAttrGenderV2.0.0.25.xnet
FaceDetectV3.0.0.25_arm.pbin
Firecracker.png
Fireworks.png
Flushed.png
FontManifest.json
GREEN.png
.png
GestureClassifyV3.2.0.25_arm.pbin
Gift.png
HandDetectV2.2.0.25.xnet
HandKeypointV2.0.0.25.xnet
HandTrackV1.0.0.25.xnet
Happy.png
Hurt.png
KeepFighting.png
Let Down.png
LetMeSee.png
Lol.png
LuggageBridge.js
.js
Lut.png
.png
MAGENTAV.png
.png
MaterialIcons-Regular.otf
MidasPay.zip
.zip
MidasCore_1.7.4_174000_ff8b989533f6f3b7c99345ce2b912c4b.jar
.apk android

com.tencent.midas.midascore
MidasPay_1.7.4_174000_ffc73a5761af8a4420a498dbcb93ff86.jar
.apk android arch:arm64 arch:arm arch:x86

com.tencent.midas.pay
MidasSign.ini
NOTICES
NativeGlobal-Dummy.js
.js
NativeGlobal-WAGame.js
.js
NativeGlobal-WAService.js
.js
NoProb.png
ORANGE.png
.png
Params_FaceSticker.json
Party.png
RED.png
.png
ROSE.png
.png
SF-Pro-Display-BoldItalic.otf
SegmentationPortraitV1.9.1.25.xnet
Shocked!.png
Sick.png
Sigh.png
Slap.png
Social.png
Sweat.png
Terror.png
TextStatus.zip
.zip
VIOLET.png
.png
WAGame.js
.js
WAGameSubContext.js
.js
WAGameVConsole.html
.html .js
WAGfxEmsc.js
.js
WAGfxEmsc.wasm
WAPageFrame.html
.html
WAPerf.js
.js
WARemoteDebug.js
.js
WASclBackend.wasm
WAServiceMainContext.js
.js
WASourceMap.js
.js
WASplashadWorker.js
.js
WASubContext.js
.js
WAVConsole.js
.js
WAVersion.json
WAWKWorker.html
.html .js
WAWebview.js
.js
WAWidget.js
.js
WAWorker.js
.js
WNNote.zip
.zip
Watermelon.png
WeChatNum.ttf
WeChatSansSS-Bold.ttf
WeChatSansSS-Light.ttf
WeChatSansSS-Medium.ttf
WeChatSansSS-Regular.ttf
WeChatSansStd-Bold.ttf
WeChatSansStd-Light.ttf
WeChatSansStd-Medium.ttf
WeChatSansStd-Regular.ttf
WechatRosy.png
.png
Worship.png
Wow!.png
YELLOW.png
.png
Yellowdog.png
YtSDKSettings.json
YtSDKUIConfig.json
acting_cute.txt
actionbar_icon_dark_back.svg
.xml
actionbar_icon_dark_clear.svg
.xml
actionbar_icon_dark_search.svg
.xml
actionbar_send_icon.svg
.xml
actionbar_setting_icon.svg
.xml
address
af.mmstr
.ps1
after_upload_voice.mp3
align.rpdm
align.stb
align_bin.rpdc
all_screen.png
.png
all_screen.svg
.xml
am.mmstr
.ps1
amazed.txt
andorid-chs_1.jpg
andorid-chs_3.jpg
.jpg
android.js
.js
anger.txt
animal.txt
app.2d89045a.js
.js
app.html
.html
app_brand_pull_recent_vew_down_sound.mp3
app_get_version.html
.html .js
app_info_arrays.xml
.xml
appbrand_jpg_icon.png
.png
appbrand_jpg_icon_2.png
.png
apply_all.svg
.xml
ar.json
ar.mmstr
b7c9a7fd-851e-7761-07df-8ab7c0b02787.sec
baixi.astc
bakchat_privacy.htm
.html
bank_logo.xml
basic_common_lib.js
.js
bg.mmstr
.ps1
bg_gradient_fragment_shader.glsl
bg_gradient_vertex_shader.glsl
big_lottery_anim.pag
bizAd.wspkg
.js
biz_finder_play_icon.svg
.xml
block.png
.png
bootstrap_j2v8_worker.js
.js
botany.txt
bottomsheet_icon_moment.svg
.xml
bottomsheet_icon_transmit.svg
.xml
box_template.zip
.zip
ca.mmstr
.ps1
canvas_valid_type.xml
cashrecivedrevised.mp3
center_det.bin
center_det.param
channel.ini
chinese.txt
chs-2v.jpg
.jpg
chunk-vendors.1c8aef42.js
.js
color_arrow_texture.png
.png
color_emoji
color_point_texture.png
.png
color_texture_flat_style.png
.png
comp_list
compass.png
.png
compass_dark.png
.png
config.conf
config.json
context.js
.js
cs.mmstr
.ps1
da.mmstr
.ps1
de.json
de.mmstr
default.ar
default.de
default.de_DE
default.en
default.es
default.fr
default.he
default.hi
default.id
default.in
default.it
default.iw
default.ja
default.ko
default.lo
default.ms
default.my
default.pl
default.pt
default.ru
default.th
default.tr
default.vi
default.zh_CN
default.zh_HK
default.zh_TW
default_chat.xml
.xml
default_hd_avatar.png
.png
default_nor_avatar.png
.png
default_poi_categories.dat
detect_model.bin
detect_model.param
df681ec1c0860bfbe76f58ec73b89fb8
diehua.svg
.xml
doTranslate.js
.js
double_ring_loading_io.gif
.gif
easygo.json
el.mmstr
.ps1
emoji-anim.xml
.xml
emoji_arrow.svg
.xml
emoji_config.conf
emoji_download_cancel_normal.svg
.xml
emoji_download_finish.svg
.xml
emoji_template.zip
.zip
emojiconf
emojipanel-config-jifu.xml
.xml
emojipanel-config.xml
.xml
emoticonstore_capture_icon.svg
.xml
emotion.txt
en.json
en_US.json
english.txt
es.json
es.mmstr
escalator.dat
escalator_night.dat
exercise.txt
eye.rpdm
eye_bin.rpdc
fanchaleng.astc
fangda.svg
.xml
fans_preView.png
.png
fennen.png
.png
fi.mmstr
.ps1
finder_full_like_guide.pag
finder_full_slide_guide.pag
finder_live_anchor_music_guide.pag
finder_live_card_logo.pag
finder_live_follow_anim.pag
finder_live_gift_continue_click_short.pag
finder_live_gift_single_click_short.pag
finder_live_link_mic_wave.pag
finder_live_logo_amin_red.pag
finder_live_logo_amin_white.pag
finder_live_lucky_money_complete.pag
finder_live_lucky_money_repeated_1.pag
finder_live_lucky_money_repeated_2.pag
finder_live_lucky_money_section_1.pag
finder_live_lucky_money_section_2.pag
finder_live_music_play.pag
finder_live_pk_result_draw.pag
finder_live_pk_result_draw_en.pag
finder_live_pk_result_win.pag
finder_live_pk_result_win_en.pag
finder_live_pk_start.pag
finder_live_shopping_promoting.pag
finder_nearby_live_square_card_audio_wave.pag
fireWork_dark.gif
.gif
fireWork_light.gif
.gif
flag.txt
flutter-view.runtime.developer.js
.js
flutter-view.runtime.js
.js
font_1.otf
font_2.otf
food.txt
fr.json
fr.mmstr
frag_framebuffer_plane.glsl
friendactivity_mycover_bg.jpg
fts_feature.zip
.zip
fts_py.txt
fts_t2s.txt
fts_template.zip
.zip
fullscreen.png
.png
game.js
.js
game_jscore_system_info.js
.js
game_performance.js
.js
game_region_data.txt
game_region_default.txt
gamecenter_jscore.js
.js
gangfeng.astc
goods.txt
googleLogo.data
.png
half_screen.png
.png
happy.txt
hld_guide_animation.gif
.gif
hr.mmstr
.ps1
hu.mmstr
.ps1
huaijiu.astc
huaijiu.png
.png
icon.cfg
icons_filled_back.svg
.xml
icons_filled_black_music.svg
.xml
icons_filled_caption.svg
.xml
icons_filled_check.svg
.xml
icons_filled_check2.svg
.xml
icons_filled_close.png
.png
icons_filled_close4x.png
.png
icons_filled_crop.svg
.xml
icons_filled_cut.svg
.xml
icons_filled_cutie.svg
.xml
icons_filled_delete.svg
.xml
icons_filled_delete_record.svg
.xml
icons_filled_effect.svg
.xml
icons_filled_filters.svg
.xml
icons_filled_mike.png
.png
icons_filled_mike.svg
.xml
icons_filled_music.svg
.xml
icons_filled_music_dance.svg
.xml
icons_filled_previous2.svg
.xml
icons_filled_search_music.svg
.xml
icons_filled_sound.svg
.xml
icons_filled_sticker.svg
.xml
icons_filled_talk.svg
.xml
icons_filled_text.svg
.xml
icons_filled_time.svg
.xml
icons_filled_transform.svg
.xml
icons_filled_white_mike.svg
.xml
icons_outline_change_speed.svg
.xml
icons_outlined_arrow.svg
.xml
icons_outlined_close.svg
.xml
icons_outlined_delete.svg
.xml
icons_outlined_help.svg
.xml
icons_outlined_like.svg
.xml
icons_outlined_pencil.svg
.xml
icons_outlined_previous2.svg
.xml
icons_outlined_text.svg
.xml
icons_outlined_time.svg
.xml
id.json
in.mmstr
index.wspkg
.js
indoor_style.dat
indoor_style_night.dat
infowindow_bg.9.png
.png
innerLuckyBag.wxam
ipcall_country_code.txt
it.json
it.mmstr
ja.json
ja.mmstr
jiaojuan.astc
js_binding_skia.js
.js
jsbridge.js
.js
key_sound_default.mp3
key_sound_delete.mp3
key_sound_done.mp3
ko.json
ko.mmstr
landiao.png
.png
langman.png
.png
lazy_load.js
.js
lbs_rsa_public_key.pem
lib.js
.js
like_preView.png
.png
limbs.txt
lo.json
lo.mmstr
location_disable.png
.png
location_enable.png
.png
location_state_dark_normal.png
.png
location_state_dark_selected.png
.png
location_state_normal.png
.png
location_state_selected.png
.png
lt.mmstr
.ps1
luggage_mm_adapter.js
.js
lv.mmstr
.ps1
magic_emoji_common_lib.js
.js
magicbrush.js
.js
manifest.xml
.xml
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
mapcfg_airarea.png
.png
[email protected]
.png
[email protected]
.png
mapcfg_grass.png
.png
[email protected]
.png
mapcfg_park.png
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
mapcfg_road_dark.png
.png
[email protected]
.png
mapcfg_road_light.png
.png
mapcfg_runway.png
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
mapcfg_water.png
.png
[email protected]
.png
mapcfg_window.png
.png
[email protected]
.png
mapconfig.dat
marker.png
.png
marker_default.png
.png
marker_infowindow.9.png
.png
mask.png
.png
material_forward_template.zip
.zip
meishi.astc
merged_features.xml
.xml
meta.json
.js
mig_wifi_service_terms_chs.html
.html
mig_wifi_service_terms_en.html
.html
mimetype.txt
mmregioncode_en.txt
mmregioncode_zh_CN.txt
mmregioncode_zh_HK.txt
mmregioncode_zh_TW.txt
model_sticker.xbin
more.png
.png
most_lucky.m4a
ms.json
ms.mmstr
music1.m4a
music2.m4a
music3.m4a
music4.m4a
music5.m4a
music6.m4a
music7.m4a
music8.m4a
my.json
my.mmstr
nature.txt
navi_marker_location.png
.png
nb.mmstr
.ps1
net1_18.rpnmodel
net1_18_bin.rpnproto
net2_36.rpnmodel
net2_36_bin.rpnproto
net_fc.bin
net_fc.param
network_warning.htm
.html
newemoji-config.xml
.xml
newyear.otf
nl.mmstr
.ps1
no_select4x.png
.png
node_jsapi.js
.js
oauth_network_error.html
.html
object_polyfill.js
.js
ocr_template.zip
.zip
open-iconic.woff
openim_resource.txt
other.txt
overlap.pag
packet_received.m4a
pair.txt
pardus_template.zip
.zip
pause.png
.png
pause_video_icon.svg
.xml
person.txt
place.txt
play.png
.png
play_completed.mp3
[email protected]
.png
[email protected]
.png
[email protected]
.png
[email protected]
.png
power.json
preCheckNeedTrans.js
.js
prefetcher.wspkg
.js
preload_game_adapter.js
.js
preview_half_screen.svg
.xml
profile.ini
pt.json
pt.mmstr
puppet_wrapper.js
.js
purecolor_chat.xml
.xml
qingliang.png
.png
qingxin.png
.png
qiuri.astc
qmail_webview.css
qrcode_completed.mp3
qrcode_completed_2.wav
readmail.js
.js
recent.txt
rel_wechat_2055-12-06.lic1.2
reserved_chat.xml
.xml
resourceVersion.dat
rixi.png
.png
ro.mmstr
.ps1
rotBasis.bin
route_arrow_texture.png
.png
rqtx.dat
rsa_public_key_forwx.pem
ru.json
ru.mmstr
sad.txt
scan_goods_template.zip
.zip
scene_shaderf.glsl
scene_shaderv.glsl
sec.video.qq.com.crt
select_card.m4a
select_yes.png
.png
select_yes4x.png
.png
sent_message.mp3
shake_match.mp3
shake_nomatch.mp3
shake_sound_male.mp3
shakehideimg_man.jpg
shakelucky_ad_logo_clicked.mp3
shanbai.svg
.xml
shangyi.svg
.xml
shanhei.svg
.xml
share.png
.png
shared_buffer.js
.js
sight_send_song.wav
signatures.json
sk.mmstr
.ps1
skdz.wav
sl.mmstr
.ps1
small_lottery_amin.pag
smiley_17b.png
smiley_39b.png
smiley_83b.png
speechless.txt
spinner_white_48_outer_holo.svg
.xml
sport_config.json
srnet.bin
srnet.param
sticker1.png
.png
store.runtime.developer.js
.js
store.runtime.js
.js
strong_notification.mp3
suoxiao.svg
.xml
symbol.txt
talkroom_begin.mp3
talkroom_othersbegin.mp3
talkroom_press.mp3
talkroom_sasasa.mp3
talkroom_up.mp3
text1_preView.png
.png
text_bg_selected.svg
.xml
text_bg_unselected.svg
.xml
texture_fragment_shader.glsl
texture_vertex_shader.glsl
th.json
th.mmstr
thumb.png
.png
time_limit.mp3
tms_desc
touch_card.m4a
tr.json
tr.mmstr
traffic.txt
tsc_template.zip
.zip
ufat.bin
ufdmtcc.bin
user_action.xml
v8_snapshot.bin
v8_snapshot64.bin
vconsole.js
.js
vconsole_performance.js
.js
version.info
vertex_framebuffer_plane.glsl
vi.json
vi.mmstr
wasae.dat
webcompt.wcpkg
.js
webtimeline.wspkg
.js
webview_404_refresh_icon.svg
.xml
webview_minimize.mp3
webview_pf.js
.js
wechat_face_effect.lic
weimei.png
.png
wenote_config.conf
weui.ttf
whistle.m4a
wrd_template.zip
.zip
wu.svg
.xml
wxNative.js
.js
wx_wifi_faq.html
wx_wifi_service_terms_chs.html
wx_wifi_service_terms_en.html
wxa_template.zip
.zip
wxjs.js
.js
wxsk.mp3
xiaoxin.png
.png
xiayi.svg
.xml
xwalk-command-line
youyi.svg
.xml
youzhuan.svg
.xml
zh_CN.json
zh_HK.json
zh_HK.mmstr
zh_TW.json
zh_TW.mmstr
ziran.astc
zuoyi.svg
.xml
zuozhuan.svg
.xml

Sharing

General

Malware Config

Signatures

Files

Password: infected

com.tencent.mm

com.tencent.mm.ui.LauncherUI

Activities

com.tencent.mm.ui.LauncherUI

com.tencent.mm.ui.tools.MultiStageCitySelectUI

com.tencent.mm.ui.tools.HardCoderSettingUI

com.tencent.mm.ui.tools.ShareImgUI

com.tencent.mm.ui.tools.AddFavoriteUI

com.tencent.mm.ui.tools.ShareToTimeLineUI

com.tencent.mm.ui.tools.ShareScreenImgUI

com.tencent.mm.ui.tools.ShareScreenToTimeLineUI

com.tencent.mm.plugin.base.stub.WXShortcutEntryActivity

com.tencent.mm.plugin.base.stub.WXCustomSchemeEntryActivity

com.tencent.mm.plugin.nfc_open.ui.NfcWebViewUI

com.tencent.mm.plugin.gwallet.GWalletUI

Permissions

Receivers

com.tencent.mm.booter.ClickFlowReceiver

com.tencent.mm.booter.BluetoothStateReceiver

com.tencent.mm.booter.MountReceiver

com.tencent.mm.booter.BluetoothReceiver

com.tencent.mm.plugin.backup.bakoldlogic.bakoldmodel.BakOldUSBReceiver

com.tencent.mm.plugin.base.stub.WXEntryActivity$EntryReceiver

com.tencent.mm.plugin.base.model.ShortcutBroadCastReceiver

com.tencent.mm.plugin.auto.service.MMAutoMessageHeardReceiver

com.tencent.mm.plugin.auto.service.MMAutoMessageReplyReceiver

com.tencent.mm.cache.ArtistCacheManager

com.tencent.mm.plugin.performance.elf.ElfCallUpReceiver

com.tencent.mm.plugin.downloader.model.FileDownloadReceiver

com.tencent.mm.plugin.downloader.ui.FileDownloadNotificationClickReceiver

com.tencent.mm.booter.MMReceivers$BootReceiver

com.tencent.mm.booter.MMReceivers$ConnectionReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

Services

com.tencent.mm.plugin.wear.model.service.WearDataLayerService

com.tencent.mm.plugin.account.model.AccountAuthenticatorService

com.tencent.mm.plugin.account.model.ContactsSyncService

com.tencent.mm.plugin.hld.WxHldService

com.tencent.mm.plugin.fcm.WCFirebaseMessagingService

com.tencent.mm.plugin.fcm.FCMInstanceIDListenerService

com.tencent.mm.plugin.appbrand.jsapi.nfc.hce.HCEService

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.iid.FirebaseInstanceIdService

com.tencent.midas.midascore

com.tencent.midas.pay