c718c3cb6fc32770b82d8b8242def6c179efa1ed1a9523ac87f260b830a17fca[.]apk[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

c718c3cb6fc32770b82d8b8242def6c179efa1ed1a9523ac87f260b830a17fca.apk.zip
Size

47.9MB
MD5

eeba7dc34540fde4c6c0cce850537a91
SHA1

d452857bebaf52b6047163e66c4a452b926f6c26
SHA256

6a40b2e38148894b41356b97501cad0c327505cf9eeedbb810e2e784fcef2943
SHA512

f902defc1a840bd517b4ae32a3bfd88f1b7fee614354da6cfd2b0795ca845191425a5244e062570c7c756655af8f1634861fb53e86410c36c09a05004654f89a
SSDEEP

786432:Yz1KeJnr3Qyjez4AIZQ86TqCu4eg8/mDTMJf4HJDgp1n7IMsRCvyu94fNbWM6q6:ne1r3/eMA3Itb/M2fKDgH7IMtvyuaNbw

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

c718c3cb6fc32770b82d8b8242def6c179efa1ed1a9523ac87f260b830a17fca.apk.zip
.zip

Password: infected
c718c3cb6fc32770b82d8b8242def6c179efa1ed1a9523ac87f260b830a17fca.apk
.apk android arch:arm64

com.weico.international

com.weico.international.activity.LogoActivity

Activities

com.weico.international.activity.LogoActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.weico.international.activity.SinaLoginMainActivity

android.intent.action.MAIN
com.weico.international.activity.LoginActivity

com.weico.international.activity.MainFragmentActivity

android.intent.action.MAIN
com.weico.international.activity.MainFragmentActivity

com.weico.international.activity.SettingsSchemeActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.weico.international.activity.compose.SeaComposeActivity

android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.weico.international.activity.v4.MipushTestActivity

android.intent.action.VIEW

com.kwad.sdk.api.proxy.app.BaseFragmentActivity$RequestInstallPermissionActivity

intent.action.requestInstallPermission

Permissions

android.permission.REQUEST_INSTALL_PACKAGES
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.WRITE_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.VIBRATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.WAKE_LOCK
android.permission.CHANGE_CONFIGURATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.RECORD_AUDIO
android.permission.RECEIVE_USER_PRESENT
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.FOREGROUND_SERVICE
android.permission.GET_TASKS
com.weico.international.openadsdk.permission.TT_PANGOLIN
android.permission.CHANGE_NETWORK_STATE
android.permission.QUERY_ALL_PACKAGES
android.permission.REORDER_TASKS
com.asus.msa.SupplementaryDID.ACCESS
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.hardware.sensor.accelerometer
com.weico.international.permission.MIPUSH_RECEIVE
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
com.weico.international.permission.SINA_PUSH
com.sina.push.sdk.broadcast.permission1007
com.weico.international.permission.PROCESS_PUSH_MSG
com.weico.international.permission.PUSH_PROVIDER
com.huawei.appmarket.service.commondata.permission.GET_COMMON_DATA
android.permission.FLASHLIGHT
android.permission.HARDWARE_TEST
android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Receivers

com.weico.international.service.CancelSendReceiver

com.weico.international.service.action.CANCEL

com.weico.international.widgetProvider.WeicoAppWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE

com.weico.international.widgetProvider.WeicoApp2WidgetProvider

android.appwidget.action.APPWIDGET_UPDATE

com.weico.international.widgetProvider.UnifiedPushMsgReceiver

com.sina.unified.push.broadcast.1007

com.weibo.caiyuntong.boot.api.TQTADReceiver

com.weibo.caiyuntong.ui.splash.ad.tqtad.TQTADService.ACTION.install
com.weibo.caiyuntong.action.cancel_download_notification

com.hpplay.sdk.source.process.LelinkReceiver

com.hpplay.source.service.close

com.xiaomi.push.service.receivers.PingReceiver

com.xiaomi.push.PING_TIMER

com.sina.weibo.unifypushsdk.mipush.MIUIMessageReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

com.sina.weibo.unifypushsdk.pushcore.SDKMsgReceiver

com.sina.push.msg.broadcast.1007

com.sina.push.receiver.ProxyReceiver

com.sina.push.msg.proxychanged

com.sina.weibo.unifypushsdk.vivopush.VivoMessageReceiver

com.vivo.pushclient.action.RECEIVE

com.huawei.hms.support.api.push.PushMsgReceiver

com.huawei.intent.action.PUSH_DELAY_NOTIFY
com.huawei.intent.action.PUSH

com.huawei.hms.support.api.push.PushReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE

androidx.profileinstaller.ProfileInstallReceiver

androidx.profileinstaller.action.INSTALL_PROFILE
androidx.profileinstaller.action.SKIP_FILE

Services

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.ss.android.socialbase.downloader.remote

com.hpplay.sdk.source.process.LelinkSdkService

com.hpplay.sdk.source.LelinkSdkService.ACTION

com.sina.weibo.unifypushsdk.huaweipush.HUAWEIMessageReceiver

com.huawei.push.action.MESSAGING_EVENT

com.heytap.msp.push.service.DataMessageCallbackService

com.heytap.mcs.action.RECEIVE_MCS_MESSAGE
com.heytap.msp.push.RECEIVE_MCS_MESSAGE

com.heytap.msp.push.service.CompatibleDataMessageCallbackService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE

com.sina.push.service.SinaPushNewService

sina.push.action.new.service.1007

com.sina.push.service.SinaPushService

sina.push.action.service.1007

com.huawei.hms.support.api.push.service.HmsMsgService

com.huawei.push.msg.NOTIFY_MSG
com.huawei.push.msg.PASSBY_MSG
ApkControlFlowConfusion_5.0_1885e66b0cb644a0b8c12595ab7ca457.txt
Roboto-Light.ttf
Roboto-Thin.ttf
adsmogo_ad_close_h.png
.png
ag_sdk_cbg_root.cer
auth_fail_icon.png
.png
back_icon.png
.png
baseline.prof
baseline.profm
black_back_icon.png
.png
cfg.json
cn.shuzilm.config.json
com.tencent.open.config.json
device_icon.png
.png
dongle_flag_icon.png
.png
fail.html
.html
grs_sdk_global_route_config_apptouchupdatesdk.json
grs_sdk_global_route_config_opendevicesdk.json
grs_sdk_global_route_config_opensdkService.json
grs_sdk_global_route_config_updatesdk.json
grs_sdk_server_config.json
grs_sp.bks
h5_qr_back.png
.png
hianalytics_njjn
hmsincas.bks
hmsrootcas.bks
imageView.html
.html .js
ksad_common_encrypt_image.png
.png
ksad_idc.json
last_device_icon.png
.png
libwbsafeedit
.elf linux arm
libwbsafeedit_64
.elf linux aarch64
libwbsafeedit_x86
.elf linux x86
libwbsafeedit_x86_64
.elf linux x64
model.nb
network_error_icon.png
.png
night.skin
.apk android

com.theme.night
not_found_icon.png
.png
notplugmapnaveinfoox111.dex
.dex
notplugmappoiinfoxo.db
notplugmaprouteextradata.db
problems.html
.html
q2b.dic
refresh_icon.png
.png
success.html
.html
tag.dic
test.html
.html .js
txt_emotions.txt
updatesdkcas.bks
upload.html
.html
wbjs.js
.js
web.zip
.zip
word.dic

Sharing

General

Malware Config

Signatures

Files

Password: infected

com.weico.international

com.weico.international.activity.LogoActivity

Activities

com.weico.international.activity.LogoActivity

com.weico.international.activity.SinaLoginMainActivity

com.weico.international.activity.MainFragmentActivity

com.weico.international.activity.SettingsSchemeActivity

com.weico.international.activity.compose.SeaComposeActivity

com.tencent.tauth.AuthActivity

com.weico.international.activity.v4.MipushTestActivity

com.kwad.sdk.api.proxy.app.BaseFragmentActivity$RequestInstallPermissionActivity

Permissions

Receivers

com.weico.international.service.CancelSendReceiver

com.weico.international.widgetProvider.WeicoAppWidgetProvider

com.weico.international.widgetProvider.WeicoApp2WidgetProvider

com.weico.international.widgetProvider.UnifiedPushMsgReceiver

com.weibo.caiyuntong.boot.api.TQTADReceiver

com.hpplay.sdk.source.process.LelinkReceiver

com.xiaomi.push.service.receivers.PingReceiver

com.sina.weibo.unifypushsdk.mipush.MIUIMessageReceiver

com.sina.weibo.unifypushsdk.pushcore.SDKMsgReceiver

com.sina.push.receiver.ProxyReceiver

com.sina.weibo.unifypushsdk.vivopush.VivoMessageReceiver

com.huawei.hms.support.api.push.PushMsgReceiver

com.huawei.hms.support.api.push.PushReceiver

androidx.profileinstaller.ProfileInstallReceiver

Services

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.hpplay.sdk.source.process.LelinkSdkService

com.sina.weibo.unifypushsdk.huaweipush.HUAWEIMessageReceiver

com.heytap.msp.push.service.DataMessageCallbackService

com.heytap.msp.push.service.CompatibleDataMessageCallbackService

com.sina.push.service.SinaPushNewService

com.sina.push.service.SinaPushService

com.huawei.hms.support.api.push.service.HmsMsgService

com.theme.night