5f5c5f80b96558a973bf2dd48df2e684de9d2cbf3d3885493fd284e3a27911d8[.]apk[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

5f5c5f80b96558a973bf2dd48df2e684de9d2cbf3d3885493fd284e3a27911d8.apk.zip
Size

89.0MB
MD5

e7b870a071da927d63a5cefde625c609
SHA1

67fe6041d5cf7c51d5a1e97ea4f54f2504008539
SHA256

e3c164eb2e42e3ca3aea6a31ee4d04cb833baafb67f7d1361e1b82e920fd9564
SHA512

70deaa9dbcf771de03ecbd08971e27465dff7ef56ebc7211220298e6086364b6961c13a7359b784c0451314532dc766d6dd3496b73168ed7f3c74ded42d8cd0d
SSDEEP

1572864:hpcSpzglYsvG+pAscidN5o95xCDM1nKP/JULU2qfQnz1Ueg4rZzoUXL8BPpe:tzgiw5pZrdNOG//92eQnz1jfjgBM

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 9 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

5f5c5f80b96558a973bf2dd48df2e684de9d2cbf3d3885493fd284e3a27911d8.apk.zip
.zip

Password: infected
5f5c5f80b96558a973bf2dd48df2e684de9d2cbf3d3885493fd284e3a27911d8.apk
.apk android arch:arm

com.tencent.ibg.joox

com.tencent.wemusic.ui.main.LauncherUI

Activities

com.tencent.ibg.joox.wxapi.WXEntryActivity

android.intent.action.VIEW

com.tencent.wemusic.ui.main.LauncherUI

android.intent.action.MAIN
fcmAction

com.tencent.wemusic.welcom.WelcomePageActivity

android.intent.action.VIEW

com.tencent.wemusic.business.share.DispacherActivityForThird

android.intent.action.VIEW
android.intent.action.VIEW

com.tencent.wemusic.business.globalsearch.ListSearchableActivity

android.intent.action.SEARCH

com.tencent.wemusic.dexinject.InjectActivity

com.tencent.tesla.smartmultidex

com.tencent.ibg.joox.sdk.stub.JXAuthActivity

android.intent.action.VIEW

Permissions

android.permission.DISABLE_KEYGUARD
android.permission.WAKE_LOCK
android.permission.USE_FINGERPRINT
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.ACCESS_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.GET_TASKS
com.android.vending.BILLING
android.permission.VIBRATE
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.CHANGE_WIFI_STATE
com.google.android.gms.permission.ACTIVITY_RECOGNITION
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.VIBRATE
android.permission.WRITE_EXTERNAL_STORAGE
com.google.android.gms.permission.ACTIVITY_RECOGNITION
android.permission.GET_TASKS
android.permission.CAMERA
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_MEDIA_STORAG
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
com.tencent.ibg.joox.theme.permission
android.permission.CHANGE_NETWORK_STATE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.c2dm.permission.RECEIVE
com.tencent.ibg.joox.permission.C2D_MESSAGE

Receivers

com.tencent.ibg.joox.broadcast.MediaBtnReceiver

android.intent.action.MEDIA_BUTTON
android.media.AUDIO_BECOMING_NOISY

com.tencent.ibg.voov.livecore.qtx.channel.LiveCoreHelloReceiver

ACTION_QTX_HELLO

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

Services

com.tencent.wemusic.live.business.P2pLiveService

com.tencent.wemusic.live.business.IP2pLiveService

com.tencent.wemusic.data.network.framework.ConnectionService

com.tencent.wemusic.data.network.framework.IConnectionService

com.tencent.wemusic.business.fcm.MyFirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.tencent.wemusic.business.fcm.MyFirebaseInstanceIDService

com.google.firebase.INSTANCE_ID_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT
1.7mb-0916-add-ptu.pb.rapidnetmodel_nchw
1.7mb-0916-add-ptu.pb_bin.rapidnetproto_nchw_mod
ARParticleFragmentShader.dat
ARParticleVertexShader.dat
ActFragmentShader.dat
ActVertexShader.dat
BlendFragmentShader.dat
BlendVertexShader.dat
Default.xml
.xml
DoodleFragmentShader.dat
DoodleVertexShader.dat
DrawPoints.glsl
FaceCropFragmentShader.dat
FaceCropVertexShader.dat
FaceLineFragmentShader.dat
FaceLineVertexShader.dat
FaceOffFragmentShader.dat
FaceOffVertexShader.dat
FastRenderFragmentShader.dat
FastRenderVertexShader.dat
FastStickerFragmentShader.dat
FlipAndRotateFragmentShader.dat
FlipAndRotateVertexShader.dat
FlipFragmentShader.dat
FrameBaseFragmentShader.dat
FrameBaseVertexShader.dat
FrameVideoFragmentShader.dat
GaussionBlurFragmentShader.dat
GothamRounded-BookItalic.ttf
HeadCropFragmentShader.dat
HeadCropVertexShader.dat
HelveticaNeueLTPro-XBlkCn.otf
HelveticaNeueLTPro-XBlkCn.otf.meta
HorizontalSkewFragmentShader.dat
LeftRightVertexShader.dat
LipsCosFragment.dat
LookupFragmentShader.dat
LookupVertexShader.dat
MCCommonFragmentShaderImage.dat
MCCommonFragmentShaderImageExt.dat
MCCommonFragmentShaderVideo.dat
MCCommonFragmentShaderVideoExt.dat
MCCommonLRVertexShader.dat
MCCommonUDVertexShader.dat
MCCommonVertexShader.dat
MCCommonVertexShader_3d.dat
MapFragmentShader.dat
Multicolore.otf
NineTileFragmentShader.dat
OffsetAlphaBlendFragmentShader.dat
OrigFragmentShader.dat
ProtocolConfig_demo.xml
.xml
ProtocolConfig_dev.xml
.xml
ProtocolConfig_exp.xml
.xml
ProtocolConfig_ppe.xml
.xml
ProtocolConfig_pro.xml
.xml
ProtocolConfig_release_dev.xml
.xml
ProtocolConfig_release_test.xml
.xml
ProtocolConfig_test.xml
.xml
ProtocolInfo.xml
.xml
RPNSegmenter_m6.rapidnetmodel
RotateScaleFragmentShader.dat
RotateScaleVertexShader.dat
SimpleFragmentShader.dat
SimpleVertexShader.dat
SnakeFaceVertexShader.dat
TXUgcSDK.licence
ThreeDimVertexShader.dat
TransformFragmentShader.dat
TransformVertexShader.dat
TransformVertexShaderSimple.dat
TripleFadeTransformFragmentShader.dat
UpDownFragmentShader.dat
UpDownVertexShader.dat
WMAnimationFragmentShader.dat
WMAnimationVertexShader.dat
WeChatMusicDts.apk
.apk android arch:arm

com.tencent.ibg.joox.dts
YTFaceSDK.licence
addptu300k.rpdm
allgift_config.json
allgray.png
.png
android_config.json
android_head.frag
android_head_2video.frag
barrage_config.json
beautyfilterconfig.json
camera_config.json
camera_fast_capture.dat
ccnf_patches_1_my36n.txt
channel.ini
choose.png
.png
cmd2path.json
colored.frag
colored.vert
commonconfig.json
config.json
count_down_data.json
crazyface.tsv
crazyfacegray.png
data.json
deploy_498.rapidnetproto
deploy_m6.rapidnetproto
detect_model.bin
detect_model.param
domainwhiteconfig.json
dts.txt
fabbysdk.cl
faceheadcropgray.png
.png
faceheadcropgray.tsv
fennen.png
.png
filedownloader.properties
filter_config.json
font.frag
font.vert
freegift_config.json
gift_config.json
heart_0_0.png
.png
heart_0_1.png
.png
heart_0_2.png
.png
heart_0_3.png
.png
heart_0_4.png
.png
heart_1_0.png
.png
heart_1_1.png
.png
heart_1_10.png
.png
heart_1_11.png
.png
heart_1_12.png
.png
heart_1_13.png
.png
heart_1_14.png
.png
heart_1_15.png
.png
heart_1_16.png
.png
heart_1_17.png
.png
heart_1_18.png
.png
heart_1_2.png
.png
heart_1_3.png
.png
heart_1_4.png
.png
heart_1_5.png
.png
heart_1_6.png
.png
heart_1_7.png
.png
heart_1_8.png
.png
heart_1_9.png
.png
homepageconfig.json
honor_config.json
huaijiu.png
.png
ic_video_watermark.png
.png
icon.png
.png
img_0.png
.png
img_1.png
.png
img_2.png
.png
img_3.png
.png
img_4.png
.png
jita_0_0.png
.png
jita_0_1.png
.png
jita_0_2.png
.png
jita_0_3.png
.png
jita_0_4.png
.png
jita_1_0.png
.png
jita_1_1.png
.png
jita_1_10.png
.png
jita_1_11.png
.png
jita_1_12.png
.png
jita_1_13.png
.png
jita_1_14.png
.png
jita_1_15.png
.png
jita_1_16.png
.png
jita_1_17.png
.png
jita_1_18.png
.png
jita_1_19.png
.png
jita_1_2.png
.png
jita_1_20.png
.png
jita_1_21.png
.png
jita_1_22.png
.png
jita_1_23.png
.png
jita_1_24.png
.png
jita_1_25.png
.png
jita_1_26.png
.png
jita_1_27.png
.png
jita_1_28.png
.png
jita_1_29.png
.png
jita_1_3.png
.png
jita_1_30.png
.png
jita_1_31.png
.png
jita_1_4.png
.png
jita_1_5.png
.png
jita_1_6.png
.png .ps1
jita_1_7.png
.png
jita_1_8.png
.png
jita_1_9.png
.png
joox_bold.ttf
joox_regular.ttf
ksong.json
landiao.png
.png
langman.png
.png
lighting.frag
lighting.vert
like.json
local.crt
mepageconfig.json
meshBasis.bin
mickle_0_0.png
.png
mickle_0_1.png
.png
mickle_0_2.png
.png
mickle_0_3.png
.png
mickle_0_4.png
.png
mickle_1_0.png
.png
mickle_1_1.png
.png
mickle_1_10.png
.png
mickle_1_11.png
.png
mickle_1_12.png
.png
mickle_1_13.png
.png
mickle_1_14.png
.png
mickle_1_15.png
.png
mickle_1_16.png
.png
mickle_1_17.png
.png
mickle_1_18.png
.png
mickle_1_19.png
.png
mickle_1_2.png
.png
mickle_1_20.png
.png
mickle_1_21.png
.png
mickle_1_22.png
.png
mickle_1_23.png
.png
mickle_1_24.png
.png
mickle_1_25.png
.png
mickle_1_26.png
.png
mickle_1_27.png
.png
mickle_1_28.png
.png
mickle_1_3.png
.png
mickle_1_4.png
.png
mickle_1_5.png
.png
mickle_1_6.png
.png
mickle_1_7.png
.png
mickle_1_8.png
.png
mickle_1_9.png
.png
midas_oversea_cp.cfg
model.handclassify.textClipping
model_m5_510.rapidnetmodel
multichatconfig.json
net_1.rpnmodel
net_1_bin.rpnproto
net_2.rpnmodel
net_2_bin.rpnproto
net_3.rpnmodel
net_3_bin.rpnproto
netdebugconfig.json
netmonitorconfig.json
noeyegray.png
.png
noeyegray.tsv
nomouthgray.png
.png
nomouthgray.tsv
officeaccountconfig.json
pdm.txt
pdm_82.txt
pdm_82_aligned_my36n.txt
phone_attrs_config.dat
phoneobsconfig.json
player_music_downing.json
protocol_dev.json
protocol_pro.json
protocol_test.json
qingliang.png
.png
qingxin.png
.png
resnet_1.7_0914.rpnmodel
resnet_1.7_0914_bin.rpnproto
rixi.png
.png
rock_0_0.png
.png
rock_0_1.png
.png
rock_0_2.png
.png
rock_0_3.png
.png
rock_0_4.png
.png
rock_1_0.png
.png
rock_1_1.png
.png
rock_1_10.png
.png
rock_1_11.png
.png
rock_1_12.png
.png
rock_1_13.png
.png
rock_1_14.png
.png
rock_1_15.png
.png
rock_1_16.png
.png
rock_1_17.png
.png
rock_1_18.png
.png
rock_1_19.png
.png
rock_1_2.png
.png
rock_1_20.png
.png
rock_1_21.png
.png
rock_1_22.png
.png
rock_1_23.png
.png
rock_1_24.png
.png
rock_1_25.png
.png
rock_1_26.png
.png
rock_1_27.png
.png
rock_1_28.png
.png
rock_1_29.png
.png
rock_1_3.png
.png
rock_1_30.png
.png
rock_1_31.png
.png
rock_1_32.png
.png
rock_1_33.png
.png
rock_1_4.png
.png
rock_1_5.png
.png
rock_1_6.png
.png
rock_1_7.png
.png
rock_1_8.png
.png
rock_1_9.png
.png
rotBasis.bin
shortvideoconfig.json
skinning-none.vert
skinning.vert
sprite.frag
sprite.vert
srnet.bin
srnet.param
stretch.9.png
.png
taskpopupconfig.json
terrain.frag
terrain.vert
textured.frag
textured.vert
textured_bak.frag
textured_bak.vert
ufat.bin
ufdmtcc.bin
web_widget_config.json
weimei.png
.png
whiteconfig.json

Sharing

General

Malware Config

Signatures

Files

Password: infected

com.tencent.ibg.joox

com.tencent.wemusic.ui.main.LauncherUI

Activities

com.tencent.ibg.joox.wxapi.WXEntryActivity

com.tencent.wemusic.ui.main.LauncherUI

com.tencent.wemusic.welcom.WelcomePageActivity

com.tencent.wemusic.business.share.DispacherActivityForThird

com.tencent.wemusic.business.globalsearch.ListSearchableActivity

com.tencent.wemusic.dexinject.InjectActivity

com.tencent.ibg.joox.sdk.stub.JXAuthActivity

Permissions

Receivers

com.tencent.ibg.joox.broadcast.MediaBtnReceiver

com.tencent.ibg.voov.livecore.qtx.channel.LiveCoreHelloReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

Services

com.tencent.wemusic.live.business.P2pLiveService

com.tencent.wemusic.data.network.framework.ConnectionService

com.tencent.wemusic.business.fcm.MyFirebaseMessagingService

com.tencent.wemusic.business.fcm.MyFirebaseInstanceIDService

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.iid.FirebaseInstanceIdService

com.tencent.ibg.joox.dts