277e4e17c56306ab477fa1f53e092858412fa5d33ec754fdbf7864ec6b20ed03[.]apk[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

277e4e17c56306ab477fa1f53e092858412fa5d33ec754fdbf7864ec6b20ed03.apk.zip
Size

27.9MB
MD5

f77b8e60b6ec794405ab9b4d22b4c5dc
SHA1

20cfd138f1f5f4e266ce0998e955456025d8e029
SHA256

e1b6c74abdb4660b014b37b72464e53dbe86ac25ca3a20f2466a057d5201b972
SHA512

277d8667edf01700169abb617c93ff59e1374767803cf651afc56d9e14ff86ba0c8445557f355cbd5d2ec741418021af9fb282db4bebb6109794705e874f0e8f
SSDEEP

393216:agLLw7JydaKrBBUn3by8sJli2GYYhqnvwdDrEPl3CiIpcEyx1J7tDhx2D35UWR0n:aVOhrgLynXvYQvwdMEKUDLq

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

277e4e17c56306ab477fa1f53e092858412fa5d33ec754fdbf7864ec6b20ed03.apk.zip
.zip

Password: infected
277e4e17c56306ab477fa1f53e092858412fa5d33ec754fdbf7864ec6b20ed03.apk
.apk android arch:mips64 arch:x86 arch:arm arch:mips arch:x64 arch:arm64

com.estrongs.android.pop

com.estrongs.android.pop.app.openscreenad.NewSplashActivity

Activities

com.estrongs.android.pop.view.FileExplorerActivity

android.intent.action.VIEW
com.estrongs.android.pop.action.ACTION_VIEW_FOLDER
org.openintents.action.VIEW_DIRECTORY
com.estrongs.android.SHOW_DISK_USAGE

com.estrongs.android.pop.app.OpenRecommActivityAlias

com.estrongs.android.pop.action.OPEN_CHOOSER

com.estrongs.android.pop.app.compress.CompressionActivity

android.intent.action.VIEW

com.estrongs.android.pop.app.ESFileSharingActivity

android.intent.action.VIEW
android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.estrongs.android.pop.app.SaveToESActivity

android.intent.action.VIEW
android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.estrongs.android.pop.app.LocalFileSharingActivity

android.intent.action.VIEW

com.estrongs.android.pop.app.PopVideoPlayer

android.intent.action.VIEW
android.intent.action.VIEW

com.estrongs.android.pop.app.AudioPlayerProxyActivity

android.intent.action.VIEW
android.intent.action.VIEW

com.estrongs.android.pop.app.editor.PopNoteEditor

android.intent.action.VIEW
android.intent.action.EDIT
android.intent.action.SEND
android.intent.action.SEARCH
com.googlecode.android_scripting.action.EDIT_SCRIPT

com.estrongs.android.pop.app.FileChooserActivity

com.estrongs.action.PICK_FILE
com.estrongs.action.PLUGIN_PICK_FILE
com.estrongs.action.PICK_FILE
com.estrongs.action.PLUGIN_PICK_FILE
com.estrongs.action.PICK_DIRECTORY
com.estrongs.action.PLUGIN_PICK_DIRECTORY
com.estrongs.action.PICK_DIRECTORY
com.estrongs.action.PLUGIN_PICK_DIRECTORY
android.intent.action.CREATE_SHORTCUT

com.estrongs.android.pop.app.ESContentChooserActivity

android.intent.action.GET_CONTENT

com.estrongs.android.pop.app.ESRingtoneChooserActivity

android.intent.action.RINGTONE_PICKER

com.estrongs.android.pop.app.ESWallPaperChooserActivity

android.intent.action.SET_WALLPAPER

com.estrongs.android.pop.app.BrowserDownloaderActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.estrongs.android.pop.app.PopRemoteImageBrowser

android.intent.action.VIEW

com.estrongs.android.pop.app.AdbControllerActivity

com.estrongs.android.pop.app.AdbControllerActivity

com.estrongs.android.pop.app.UsbMonitorActivity

android.hardware.usb.action.USB_DEVICE_ATTACHED
android.hardware.usb.action.USB_DEVICE_DETACHED

com.estrongs.android.pop.app.TransitActivity

com.estrongs.android.SHOW_DISK_USAGE
com.estrongs.android.SHOW_APP_MGR
com.estrongs.android.SHOW_SDCARD
com.estrongs.android.SHOW_MUSIC_PLAYER

com.estrongs.android.pop.app.filetransfer.FileTransferSendActivity

android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.estrongs.android.pop.app.openscreenad.NewSplashActivity

android.intent.action.MAIN

com.estrongs.android.pop.app.FileSaveToActivity

com.estrongs.action.SAVE_TO_FILE

com.estrongs.android.pop.app.videoeditor.VideoEditProxyActivity

android.intent.action.VIEW

com.estrongs.android.pop.app.premium.newui.ChinaMemberActivity

com.estrongs.action.EDITOR_GO_VIP_PAGE

com.estrongs.android.pop.app.transferstation.FileTransferStationActivity

android.intent.action.VIEW

Permissions

android.permission.KILL_BACKGROUND_PROCESSES
android.permission.WRITE_SETTINGS
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.INTERNET
android.permission.SET_WALLPAPER
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_MEDIA_STORAGE
android.permission.WAKE_LOCK
android.permission.ACCESS_SUPERUSER
android.permission.VIBRATE
.PERMISSION
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
com.google.android.c2dm.permission.RECEIVE
com.estrongs.android.pop.permission.C2D_MESSAGE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.GET_PACKAGE_SIZE
android.permission.CLEAR_APP_CACHE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_PHONE_STATE
android.permission.CAMERA
android.permission.MANAGE_DOCUMENTS
android.permission.GET_ACCOUNTS
android.permission.READ_EXTERNAL_STORAGE
com.estrongs.android.pop.permission.KW_SDK_BROADCAST
android.permission.QUERY_ALL_PACKAGES
com.asus.msa.SupplementaryDID.ACCESS
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.huawei.appmarket.service.commondata.permission.GET_COMMON_DATA

Receivers

com.estrongs.android.pop.app.AudioPlayerService$MediaButtonReceiver

android.intent.action.MEDIA_BUTTON

com.estrongs.android.pop.app.CampaignReceiver

com.android.vending.INSTALL_REFERRER

com.estrongs.android.pop.EnableOEMConfig

android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_UNMOUNTED
android.intent.action.MEDIA_BAD_REMOVAL

com.estrongs.android.pop.app.InstallMonitorReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.estrongs.android.pop.app.StartServiceReceiver

android.intent.action.USER_PRESENT
android.intent.action.ACTION_POWER_CONNECTED
com.estrongs.action.PERFNOTIFY
android.intent.action.MEDIA_MOUNTED

com.estrongs.android.pop.app.analysis.AnalysisNotificationDeletedReceiver

com.estrongs.analysis.action.NOTIFICATION_REMOVED

com.estrongs.android.pop.app.ReportAliveReceiver

android.intent.action.ACTION_POWER_CONNECTED

com.android.apps.pros.LocalCReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.duapps.ad.stats.CallbackReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.win.opensdk.downloader.WinDReceiver

android.intent.action.PACKAGE_ADDED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

Services

com.estrongs.android.pop.bt.OBEXFtpServerService

android.intent.action.START_OBEX_FTP_SERVER

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.ss.android.socialbase.downloader.remote
39285EFA.dex
556933e8e2064b3c8cc3ee511c4841e6.json
RainbowBridge.js
.js
ace.js
.js
adjunk.txt
animation.css
app_config.js
.js
app_permissions_cn.txt
app_permissions_en.txt
app_permissions_zh-Hant.txt
app_whitelist.txt
au_becs_bsb.json
bdxadsdk.jar
.apk android
bridge.js
.js
c_cpp.js
csharp.js
css.js
device_icon.png
.png
dom.js
.js
ds-amex.pem
ds-discover.cer
ds-mastercard.crt
ds-test-ec.txt
ds-test-rsa.txt
ds-visa.crt
editor.html
.html .js
editor.js
.js
es5-shim.js
.js
es_privacy_content.html
.html
es_privacy_content_en.html
.html
es_privacy_content_zh.html
.html
event.js
.js
event_emitter.js
.js
event_emitter_test.js
.js
ext-beautify.js
.js
ext-elastic_tabstops_lite.js
.js
ext-emmet.js
.js
ext-error_marker.js
.js
ext-keybinding_menu.js
.js
ext-language_tools.js
.js
ext-linking.js
.js
ext-modelist.js
.js
ext-old_ie.js
.js
ext-searchbox.js
.js
ext-settings_menu.js
.js
ext-spellcheck.js
.js
ext-split.js
.js
ext-static_highlight.js
.js
ext-statusbar.js
.js
ext-textarea.js
.js
ext-themelist.js
.js
ext-whitespace.js
.js
fixoldbrowsers.js
.js .vbs
folder_app.zip
.zip
fontello-codes.css
fontello-embedded.css
fontello-ie7-codes.css
fontello-ie7.css
fontello.css
fontello.eot
fontello.svg
.xml
fontello.ttf
fontello.woff
fontello.woff2
gdtadv2.jar
.apk android arch:arm64 arch:arm
golang.js
groovy.js
grs_sdk_server_config.json
grs_sp.bks
haxe.js
hianalytics_njjn
html.js
html_elixir.js
html_ruby.js
ini.js
java.js
.js
javascript.js
.js
json.js
jsp.js
.js .vbs
keybinding-emacs.js
.js
keybinding-vim.js
.js
keys.js
.js
kotlin.js
ksad_common_encrypt_image.png
.png
lang.js
.js
makefile.js
markdown.js
media_store_monitor_paths.txt
mode-applescript.js
.js
mode-c_cpp.js
.js
mode-csharp.js
.js
mode-css.js
.js
mode-golang.js
.js
mode-groovy.js
.js
mode-haxe.js
.js
mode-html.js
.js
mode-html_elixir.js
.js
mode-html_ruby.js
.js
mode-ini.js
.js
mode-java.js
.js
mode-javascript.js
.js
mode-json.js
.js
mode-jsp.js
.js
mode-kotlin.js
.js
mode-makefile.js
.js
mode-markdown.js
.js
mode-mysql.js
.js
mode-objectivec.js
.js
mode-pascal.js
.js
mode-perl.js
.js
mode-php.js
.js
mode-python.js
.js
mode-ruby.js
.js
mode-shellscript.js
.js
mode-smali.js
.js
mode-sql.js
.js
mode-svg.js
.js
mode-swift.js
.js
mode-text.js
mode-vbscript.js
.js
mode-xml.js
.js
mysql.js
na.czl
nd
.elf linux x86
net.js
.js
objectivec.js
oop.js
.js
pascal.js
perl.js
php.js
.js .ps1
python.js
regexp.js
.js
ruby.js
scrollbar_handle_accelerated.png
.png
search_engines_property.json
search_float_property.json
search_hotwords_property.json
shellscript.js
smali.js
sql.js
supplierconfig.json
svg.js
swift.js
template.docx
.docx office2007
template.pptx
.pptx office2007
template.xlsx
.xlsx office2007
text.js
text_select_handle_left.png
.png
text_select_handle_middle.png
.png
text_select_handle_right.png
.png
theme-chrome.js
.js
theme-github.js
.js
theme-tomorrow_night.js
.js
theme-xcode.js
.js
tt_mime_type.pro
updatesdkcas.bks
useragent.js
.js
vbscript.js
worker-json.js
.js
xml.js
zt_7e46b28a-8c93-4940-8238-4c60e64e3c81.png
.png
zt_8d73d1d1-99c2-4601-a23d-57050368f644.png
.png
zt_92827f75-21cd-4faa-9aa5-74191b262edd.png
.png

Sharing

General

Malware Config

Signatures

Files

Password: infected

com.estrongs.android.pop

com.estrongs.android.pop.app.openscreenad.NewSplashActivity

Activities

com.estrongs.android.pop.view.FileExplorerActivity

com.estrongs.android.pop.app.OpenRecommActivityAlias

com.estrongs.android.pop.app.compress.CompressionActivity

com.estrongs.android.pop.app.ESFileSharingActivity

com.estrongs.android.pop.app.SaveToESActivity

com.estrongs.android.pop.app.LocalFileSharingActivity

com.estrongs.android.pop.app.PopVideoPlayer

com.estrongs.android.pop.app.AudioPlayerProxyActivity

com.estrongs.android.pop.app.editor.PopNoteEditor

com.estrongs.android.pop.app.FileChooserActivity

com.estrongs.android.pop.app.ESContentChooserActivity

com.estrongs.android.pop.app.ESRingtoneChooserActivity

com.estrongs.android.pop.app.ESWallPaperChooserActivity

com.estrongs.android.pop.app.BrowserDownloaderActivity

com.estrongs.android.pop.app.PopRemoteImageBrowser

com.estrongs.android.pop.app.AdbControllerActivity

com.estrongs.android.pop.app.UsbMonitorActivity

com.estrongs.android.pop.app.TransitActivity

com.estrongs.android.pop.app.filetransfer.FileTransferSendActivity

com.estrongs.android.pop.app.openscreenad.NewSplashActivity

com.estrongs.android.pop.app.FileSaveToActivity

com.estrongs.android.pop.app.videoeditor.VideoEditProxyActivity

com.estrongs.android.pop.app.premium.newui.ChinaMemberActivity

com.estrongs.android.pop.app.transferstation.FileTransferStationActivity

Permissions

Receivers

com.estrongs.android.pop.app.AudioPlayerService$MediaButtonReceiver

com.estrongs.android.pop.app.CampaignReceiver

com.estrongs.android.pop.EnableOEMConfig

com.estrongs.android.pop.app.InstallMonitorReceiver

com.estrongs.android.pop.app.StartServiceReceiver

com.estrongs.android.pop.app.analysis.AnalysisNotificationDeletedReceiver

com.estrongs.android.pop.app.ReportAliveReceiver

com.android.apps.pros.LocalCReceiver

com.duapps.ad.stats.CallbackReceiver

com.win.opensdk.downloader.WinDReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

Services

com.estrongs.android.pop.bt.OBEXFtpServerService

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService