74470a84c070a865e93af85e02653de1d973a0c8290fd8e6d60762a90474aecb[.]apk[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

74470a84c070a865e93af85e02653de1d973a0c8290fd8e6d60762a90474aecb.apk.zip
Size

3.6MB
MD5

59b69436baf5cb9790148e555db8eb48
SHA1

6c74046ab5c28aec85135854aa1b4dcf2df70258
SHA256

6028204948844879c686051f2f1c5bedd2fce6ee75fa08a00af281816171922e
SHA512

8e080faae1eaba9e1f3aeead6bcc96489958e7389ead32e90100d37fed1230c5d2612b2368abb76e26a8155f23e1360fe6f778fbcca9c4a5a59b4b9be2153ade
SSDEEP

49152:Cs92ArPxrZ3vHAF06+mQv+Y9hBqUsda6VdPZvu6X0uOjS8dXPy7Z9HnxDb5BfjKg:N92AbDfHAep99fCZHXAj5RPYpBW1sj

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 1 IoCs

description	ioc
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS

Files

74470a84c070a865e93af85e02653de1d973a0c8290fd8e6d60762a90474aecb.apk.zip
.zip

Password: infected
74470a84c070a865e93af85e02653de1d973a0c8290fd8e6d60762a90474aecb.apk
.apk android

com.llamalab.automate

com.llamalab.automate.FlowListActivity

Activities

com.llamalab.automate.LocalBroadcastActivity

android.intent.action.ASSIST
android.speech.action.WEB_SEARCH
android.speech.action.VOICE_SEARCH_HANDS_FREE
com.google.android.gm.action.AUTO_SEND
android.intent.action.SEND
android.nfc.action.NDEF_DISCOVERED
android.nfc.action.TECH_DISCOVERED

com.llamalab.automate.StartServiceActivity

com.llamalab.automate.intent.action.START_FLOW
com.llamalab.automate.intent.action.STOP_FLOW

com.llamalab.automate.ConfigureAppWidgetActivity

android.appwidget.action.APPWIDGET_CONFIGURE

com.llamalab.automate.FlowShortcutActivity

android.intent.action.CREATE_SHORTCUT

com.llamalab.automate.FlowListActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.llamalab.automate.FlowDetailsActivity

android.intent.action.VIEW

com.llamalab.automate.FlowEditActivity

android.intent.action.INSERT
android.intent.action.EDIT

com.llamalab.automate.StatementEditActivity

android.intent.action.EDIT

com.llamalab.automate.FlowImportActivity

android.intent.action.VIEW
android.intent.action.VIEW

com.llamalab.automate.GetContentFlowActivity$Data

android.intent.action.GET_CONTENT

com.llamalab.automate.GetContentFlowActivity$Pdf

android.intent.action.GET_CONTENT

com.llamalab.automate.GetContentFlowActivity$Png

android.intent.action.GET_CONTENT

com.llamalab.automate.FlowStopAllActivity

android.intent.action.VIEW
com.llamalab.automate.intent.action.STOP_FLOW

com.llamalab.automate.PathPickActivity

android.intent.action.GET_CONTENT
android.intent.action.GET_CONTENT

com.llamalab.automate.ContentSharedActivity

android.intent.action.SEND

com.llamalab.automate.ProcessTextActivity

android.intent.action.PROCESS_TEXT

com.llamalab.automate.SendSDCardActivity

android.intent.action.SEND

com.llamalab.automate.community.CommunityProxyActivity

android.intent.action.VIEW
com.google.android.apps.plus.VIEW_DEEP_LINK

Permissions

com.llamalab.automate.permission.C2D_MESSAGE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.VIBRATE
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.GET_ACCOUNTS
com.android.vending.BILLING
com.google.android.providers.gsf.permission.READ_GSERVICES
cyanogenmod.permission.PUBLISH_CUSTOM_TILE
android.permission.PACKAGE_USAGE_STATS

Receivers

com.llamalab.automate.BootCompletedReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
com.htc.intent.action.QUICKBOOT_POWERON

com.llamalab.automate.StartServiceReceiver

com.llamalab.automate.intent.action.START_FLOW
com.llamalab.automate.intent.action.STOP_FLOW
android.intent.action.MY_PACKAGE_REPLACED
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_FULLY_REMOVED
android.intent.action.PACKAGE_REPLACED

com.llamalab.automate.LocalBroadcastReceiver

android.intent.action.MEDIA_BUTTON
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.llamalab.automate.AutomateAdminReceiver

android.app.action.DEVICE_ADMIN_ENABLED

com.llamalab.automate.BluetoothDeviceReceiver

android.bluetooth.device.action.ACL_CONNECTED
android.bluetooth.device.action.ACL_DISCONNECTED
android.bluetooth.device.action.NAME_CHANGED
android.bluetooth.adapter.action.STATE_CHANGED

com.google.android.gms.gcm.GcmReceiver

com.google.android.c2dm.intent.RECEIVE
com.google.android.c2dm.intent.REGISTRATION

com.llamalab.automate.AutomateAppWidgetService$Receiver

android.appwidget.action.APPWIDGET_DELETED
android.appwidget.action.APPWIDGET_DISABLED
android.appwidget.action.APPWIDGET_UPDATE
android.appwidget.action.APPWIDGET_UPDATE_OPTIONS

Services

com.llamalab.automate.AutomateAccessibilityService

android.accessibilityservice.AccessibilityService

com.llamalab.automate.AutomateNotificationListenerService

android.service.notification.NotificationListenerService

com.llamalab.automate.AutomateNotificationListenerServiceKitKat

android.service.notification.NotificationListenerService

com.llamalab.automate.AutomateTileService$Tile1

android.service.quicksettings.action.QS_TILE

com.llamalab.automate.AutomateTileService$Tile2

android.service.quicksettings.action.QS_TILE

com.llamalab.automate.AutomateTileService$Tile3

android.service.quicksettings.action.QS_TILE

com.llamalab.automate.AutomateService

com.llamalab.automate.intent.action.START_FLOW
com.llamalab.automate.intent.action.STOP_FLOW

com.llamalab.automate.AutomateGcmService

com.google.android.c2dm.intent.RECEIVE

com.llamalab.automate.AutomateInstanceIDService

com.google.android.gms.iid.InstanceID

com.llamalab.automate.GenericAccountAuthenticatorService

android.accounts.AccountAuthenticator
AndroidClockMono-Thin.ttf
AutomateIcons.ttf
KeypadPickerIcons.ttf
Roboto-Bold.ttf
abs.html
.html
account_generic_add.html
.html
account_pick.html
.html
account_sync_enabled.html
.html
account_sync_request.html
.html
account_sync_set_state.html
.html
acos.html
.html
activity_start.html
.html
activity_start_result.html
.html
airplane_mode_enabled.html
.html
airplane_mode_set_state.html
.html
alarm.html
.html
alarm_add.html
.html
ambient_light.html
.html
ambient_temperature.html
.html
android_version.html
.html
app_clear_cache.html
.html
app_foreground.html
.html
app_installed.html
.html
app_kill.html
.html
app_kill_background.html
.html
app_list.html
.html
app_notifications_enabled.html
.html
app_notifications_priority_get.html
.html
app_notifications_priority_set.html
.html
app_notifications_set_state.html
.html
app_notifications_visibility_get.html
.html
app_notifications_visibility_set.html
.html
app_op_mode.html
.html
app_op_mode_set.html
.html
app_pick.html
.html
app_usage.html
.html
appendix.html
.html
array_add.html
.html
array_remove.html
.html
array_set.html
.html
asin.html
.html
assist_request.html
.html
atan.html
.html
atan2.html
.html
atmospheric_pressure.html
.html
atomic_add.html
.html
atomic_cas.html
.html
atomic_clear_all.html
.html
atomic_load.html
.html
atomic_store.html
.html
attention_light.html
.html
audio_player_control.html
.html
audio_record_start.html
.html
audio_record_stop.html
.html
audio_stream_muted.html
.html
audio_stream_set_mute.html
.html
audio_volume.html
.html
audio_volume_set.html
.html
base64_decode.html
.html
base64_encode.html
.html
battery_level.html
.html
bearing.html
.html
bluetooth_device_connect.html
.html
bluetooth_device_connected.html
.html
bluetooth_device_disconnect.html
.html
bluetooth_device_pick.html
.html
bluetooth_device_scan.html
.html
bluetooth_enabled.html
.html
bluetooth_sco_set_state.html
.html
bluetooth_set_state.html
.html
bluetooth_tether_enabled.html
.html
bluetooth_tether_set_state.html
.html
broadcast_receive.html
.html
broadcast_send.html
.html
calendar_event_add.html
.html
calendar_event_get.html
.html
calendar_event_query.html
.html
calendar_pick.html
.html
call_answer.html
.html
call_end.html
.html
call_incoming.html
.html
call_number.html
.html
call_outgoing.html
.html
call_state.html
.html
camera_capture.html
.html
car_mode_enabled.html
.html
car_mode_set_state.html
.html
ceil.html
.html
cell_signal_level.html
.html
cell_site_near.html
.html
cell_site_pick.html
.html
celsius.html
.html
char.html
.html
cli_encode.html
.html
clipboard_get.html
.html
clipboard_set.html
.html
cloud_message_receive.html
.html
cloud_message_send.html
.html
cm_profile.html
.html
cm_profile_set.html
.html
color_pick.html
.html
color_recode.html
.html
com.llamalab.automate.ext.app.apk
.apk android

com.llamalab.automate.ext.app

Permissions

android.permission.GET_TASKS
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.SYSTEM_ALERT_WINDOW
net.dinglisch.android.tasker.PERMISSION_RUN_TASKS
android.permission.GET_PACKAGE_SIZE
com.llamalab.automate.ext.costly.apk
.apk android

com.llamalab.automate.ext.costly

Permissions

android.permission.CALL_PHONE
android.permission.SEND_SMS
com.android.phone.CHANGE_NETWORK_MODE
com.llamalab.automate.permission.SEND_MMS
com.llamalab.automate.ext.location.apk
.apk android

com.llamalab.automate.ext.location

Permissions

android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
com.google.android.gms.permission.ACTIVITY_RECOGNITION
android.permission.ACCESS_MOCK_LOCATION
com.llamalab.automate.ext.media.apk
.apk android

com.llamalab.automate.ext.media

Permissions

android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.RECORD_AUDIO
com.llamalab.automate.ext.network.apk
.apk android

com.llamalab.automate.ext.network

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.TRANSMIT_IR
android.permission.INTERNET
android.permission.NFC
com.google.android.c2dm.permission.RECEIVE
com.llamalab.automate.ext.personal.apk
.apk android

com.llamalab.automate.ext.personal

Permissions

com.android.alarm.permission.SET_ALARM
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
com.google.android.gm.permission.READ_CONTENT_PROVIDER
android.permission.READ_CALENDAR
android.permission.WRITE_CALENDAR
com.llamalab.automate.ext.settings.apk
.apk android

com.llamalab.automate.ext.settings

Permissions

android.permission.DISABLE_KEYGUARD
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.READ_SYNC_SETTINGS
android.permission.WRITE_SETTINGS
android.permission.WRITE_SYNC_SETTINGS
android.permission.SET_TIME_ZONE
android.permission.SET_WALLPAPER
android.permission.ACCESS_NOTIFICATION_POLICY
com.llamalab.automate.ext.storage.apk
.apk android

com.llamalab.automate.ext.storage

Permissions

android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
com.llamalab.automate.ext.superuser.apk
.apk android

com.llamalab.automate.ext.superuser

Permissions

android.permission.SET_PROCESS_LIMIT
android.permission.WRITE_SECURE_SETTINGS
android.permission.ACCESS_SUPERUSER
android.permission.CHANGE_CONFIGURATION
com.llamalab.automate.permission.ACCESS_SUPERUSER_SERVICE
com.llamalab.automate.permission.SUPERUSER_SHELL
com.llamalab.automate.ext.telephony.apk
.apk android

com.llamalab.automate.ext.telephony

Permissions

android.permission.READ_CALL_LOG
android.permission.READ_PHONE_STATE
android.permission.PROCESS_OUTGOING_CALLS
android.permission.WRITE_SMS
android.permission.RECEIVE_SMS
android.permission.READ_SMS
compose_email.html
.html
compose_mms.html
.html
compose_sms.html
.html
concat.html
.html
contact_pick.html
.html
contact_query.html
.html
contains.html
.html
content_changed.html
.html
content_copy.html
.html
content_delete.html
.html
content_insert.html
.html
content_pick.html
.html
content_query.html
.html
content_shared.html
.html
content_update.html
.html
content_view.html
.html
coord_format.html
.html
copy.html
.html
cos.html
.html
cpu_speed_get.html
.html
cpu_speed_set.html
.html
crc32.html
.html
ctz.html
.html
data_usage.html
.html
database_modify.html
.html
database_query.html
.html
date.html
.html
date_format.html
.html
date_parse.html
.html
date_parts.html
.html
date_pick.html
.html
declination.html
.html
delay.html
.html
device_acceleration.html
.html
device_docked.html
.html
device_idle_mode_active.html
.html
device_idle_mode_set_state.html
.html
device_keep_awake.html
.html
device_lock.html
.html
device_orientation.html
.html
device_reboot.html
.html
device_restart.html
.html
device_shutdown.html
.html
device_unlocked.html
.html
dial_number.html
.html
dialog_choice.html
.html
dialog_confirm.html
.html
dialog_input.html
.html
dialog_number.html
.html
dialog_web.html
.html
dictionary_put.html
.html
dictionary_remove.html
.html
disjoint.html
.html
distance.html
.html
distinct.html
.html
duration_format.html
.html
duration_pick.html
.html
email_send.html
.html
eula.html
.html
examples.html
.html
exp.html
.html
expression.html
.html
expression_decision.html
.html
extend.html
.html
fahrenheit.html
.html
failure_catch.html
.html
faq.html
.html
fiber_stop.html
.html
fiber_stopped.html
.html
file_copy.html
.html
file_delete.html
.html
file_exists.html
.html
file_list.html
.html
file_make_directory.html
.html
file_monitor.html
.html
file_move.html
.html
file_pick.html
.html
file_read.html
.html
file_write.html
.html
filter.html
.html
find_all.html
.html
fingerprint_gesture.html
.html
flashlight.html
.html
floor.html
.html
flow.html
.html
flow_beginning.html
.html
flow_beginning_pick.html
.html
flow_pick.html
.html
flow_start.html
.html
flow_stop.html
.html
fonts.css
for_each.html
.html
fork.html
.html
ftp_delete.html
.html
ftp_download.html
.html
ftp_list.html
.html
ftp_make_directory.html
.html
ftp_upload.html
.html
gdrive_delete.html
.html
gdrive_download.html
.html
gdrive_list.html
.html
gdrive_make_directory.html
.html
gdrive_share.html
.html
gdrive_upload.html
.html
geocoding.html
.html
geocoding_reverse.html
.html
glob.html
.html
global.css
gmail_send.html
.html
gmail_unread_count.html
.html
gnow_voice_command.html
.html
goto.html
.html
hex_decode.html
.html
hex_encode.html
.html
http_request.html
.html
ic_launcher.png
.png
icons.css
index.html
.html
index_of.html
.html
infrared_transmit.html
.html
input_method_pick.html
.html
input_method_set.html
.html
interact.html
.html
interruption_filter.html
.html
interruption_filter_set.html
.html
intersect.html
.html
join.html
.html
json_decode.html
.html
json_encode.html
.html
keyboard_visible.html
.html
keys.html
.html
label.html
.html
levenshtein.html
.html
licenses.html
.html
local_time.html
.html
location_at.html
.html
location_get.html
.html
location_mock.html
.html
location_pick.html
.html
location_provider_enabled.html
.html
location_provider_set_state.html
.html
location_show.html
.html
log.html
.html
log_append.html
.html
lower_case.html
.html
magnetic_field_strength.html
.html
matches.html
.html
max.html
.html
md5.html
.html
media_button.html
.html
media_playing.html
.html
media_store_add.html
.html
media_store_remove.html
.html
media_tags_read.html
.html
microphone_muted.html
.html
microphone_set_mute.html
.html
mime_type.html
.html
min.html
.html
mms_send.html
.html
mobile_data_enabled.html
.html
mobile_data_network_type.html
.html
mobile_data_set_state.html
.html
mobile_network_preferred.html
.html
mobile_network_preferred_set.html
.html
mobile_operator.html
.html
mobile_service_state.html
.html
motion_gesture.html
.html
network_connected.html
.html
network_throughput.html
.html
network_type.html
.html
nfc_enabled.html
.html
nfc_set_state.html
.html
nfc_tag_scanned.html
.html
nfc_tag_write.html
.html
night_mode_enabled.html
.html
night_mode_set_state.html
.html
notification_action.html
.html
notification_cancel.html
.html
notification_interact.html
.html
notification_policy_get.html
.html
notification_policy_set.html
.html
notification_posted.html
.html
notification_show.html
.html
notification_snooze.html
.html
number_format.html
.html
password_failed.html
.html
pedometer.html
.html
personal_activity.html
.html
phone_equal.html
.html
phone_format.html
.html
ping.html
.html
plugin_condition.html
.html
plugin_event.html
.html
plugin_setting.html
.html
pow.html
.html
power_save_mode_enabled.html
.html
power_save_mode_set_state.html
.html
power_source_plugged.html
.html
premium.html
.html
privacy.html
.html
process_text.html
.html
process_text_result.html
.html
proximity.html
.html
quick_settings_tile_show.html
.html
random.html
.html
replace_all.html
.html
resolve_activity.html
.html
resolve_receiver.html
.html
resolve_service.html
.html
restrict_background_data_enabled.html
.html
restrict_background_data_set_state.html
.html
reverse.html
.html
ringer_mode.html
.html
ringer_mode_set.html
.html
ringer_silence.html
.html
ringtone_get.html
.html
ringtone_pick.html
.html
ringtone_set.html
.html
roaming.html
.html
round.html
.html
safe_mode.html
.html
screen_brightness.html
.html
screen_brightness_set.html
.html
screen_lock_set_state.html
.html
screen_off_timeout.html
.html
screen_off_timeout_set.html
.html
screen_on.html
.html
screen_orientation.html
.html
screen_orientation_set.html
.html
screenshot.html
.html
security.html
.html
service_start.html
.html
sha1.html
.html
shell_command.html
.html
shell_command_superuser.html
.html
shortcut_start.html
.html
shuffle.html
.html
sift.html
.html
significant_device_motion.html
.html
sin.html
.html
slice.html
.html
sms_received.html
.html
sms_send.html
.html
sms_sent.html
.html
sort.html
.html
sound_level.html
.html
sound_play.html
.html
sound_stop.html
.html
speak_play.html
.html
speak_stop.html
.html
speak_to_file.html
.html
speakerphone_on.html
.html
speakerphone_set_state.html
.html
speech_recognition.html
.html
split.html
.html
sql_encode.html
.html
sqrt.html
.html
storage.html
.html
storage_media_mounted.html
.html
storage_space.html
.html
subroutine.html
.html
subscription_pick.html
.html
substr.html
.html
sum.html
.html
system_language_get.html
.html
system_language_set.html
.html
system_property_get.html
.html
system_setting_get.html
.html
system_setting_set.html
.html
take_picture.html
.html
tan.html
.html
time.html
.html
time_await.html
.html
time_merge.html
.html
time_pick.html
.html
time_window.html
.html
time_zone_get.html
.html
time_zone_set.html
.html
timer_add.html
.html
toast_posted.html
.html
toast_show.html
.html
todo.html
.html
tone_play.html
.html
trim.html
.html
trunc.html
.html
type.html
.html
unit_conversion.html
.html
upper_case.html
.html
url_decode.html
.html
url_encode.html
.html
usb_tether_enabled.html
.html
usb_tether_set_state.html
.html
ussd_request.html
.html
utc_time.html
.html
value.html
.html
values.html
.html
variable.html
.html
variable_assign.html
.html
variables_give.html
.html
variables_take.html
.html
version.html
.html
version_compare.html
.html
vibrate_start.html
.html
vibrate_stop.html
.html
video_record_start.html
.html
video_record_stop.html
.html
wake_on_lan_send.html
.html
wallpaper_image_set.html
.html
wallpaper_live_set.html
.html
weather.html
.html
wifi_ap_enabled.html
.html
wifi_ap_set_state.html
.html
wifi_connect.html
.html
wifi_connected.html
.html
wifi_enabled.html
.html
wifi_network_pick.html
.html
wifi_network_scan.html
.html
wifi_set_state.html
.html
wifi_signal_level.html
.html
wired_headset.html
.html
xml_decode.html
.html
xml_encode.html
.html
zip_compress.html
.html
zip_extract.html
.html

Sharing

General

Malware Config

Signatures

Files

Password: infected

com.llamalab.automate

com.llamalab.automate.FlowListActivity

Activities

com.llamalab.automate.LocalBroadcastActivity

com.llamalab.automate.StartServiceActivity

com.llamalab.automate.ConfigureAppWidgetActivity

com.llamalab.automate.FlowShortcutActivity

com.llamalab.automate.FlowListActivity

com.llamalab.automate.FlowDetailsActivity

com.llamalab.automate.FlowEditActivity

com.llamalab.automate.StatementEditActivity

com.llamalab.automate.FlowImportActivity

com.llamalab.automate.GetContentFlowActivity$Data

com.llamalab.automate.GetContentFlowActivity$Pdf

com.llamalab.automate.GetContentFlowActivity$Png

com.llamalab.automate.FlowStopAllActivity

com.llamalab.automate.PathPickActivity

com.llamalab.automate.ContentSharedActivity

com.llamalab.automate.ProcessTextActivity

com.llamalab.automate.SendSDCardActivity

com.llamalab.automate.community.CommunityProxyActivity

Permissions

Receivers

com.llamalab.automate.BootCompletedReceiver

com.llamalab.automate.StartServiceReceiver

com.llamalab.automate.LocalBroadcastReceiver

com.llamalab.automate.AutomateAdminReceiver

com.llamalab.automate.BluetoothDeviceReceiver

com.google.android.gms.gcm.GcmReceiver

com.llamalab.automate.AutomateAppWidgetService$Receiver

Services

com.llamalab.automate.AutomateAccessibilityService

com.llamalab.automate.AutomateNotificationListenerService

com.llamalab.automate.AutomateNotificationListenerServiceKitKat

com.llamalab.automate.AutomateTileService$Tile1

com.llamalab.automate.AutomateTileService$Tile2

com.llamalab.automate.AutomateTileService$Tile3

com.llamalab.automate.AutomateService

com.llamalab.automate.AutomateGcmService

com.llamalab.automate.AutomateInstanceIDService

com.llamalab.automate.GenericAccountAuthenticatorService

com.llamalab.automate.ext.app

Permissions

com.llamalab.automate.ext.costly

Permissions

com.llamalab.automate.ext.location

Permissions

com.llamalab.automate.ext.media

Permissions

com.llamalab.automate.ext.network

Permissions

com.llamalab.automate.ext.personal

Permissions

com.llamalab.automate.ext.settings

Permissions

com.llamalab.automate.ext.storage

Permissions

com.llamalab.automate.ext.superuser

Permissions

com.llamalab.automate.ext.telephony

Permissions