f061c6342730870f6ad18debbec1f66a911d9ae818ebf049160652b4d0d78c55[.]apk[.]zip

Sharing

Copy URL

Twitter E-mail

General

Target

f061c6342730870f6ad18debbec1f66a911d9ae818ebf049160652b4d0d78c55.apk.zip
Size

20.8MB
MD5

09e14e296bc09877119745984245ff82
SHA1

ea7aebb9cf5bdd04249bc0f5cabafe121dae8bb7
SHA256

6d1432e83832d39fc755af69ddc6ea8fb34d961be81bfb79432b6eb347133ae9
SHA512

144c0e7f6eb82f5f439a52fa7f3abaadbf4ebe9af92351a050f03a65728b493ce3d72b65f9af33e196b1fbdd844efae3ab0395723c4bd6a1f5a6fc03ce1e5300
SSDEEP

393216:BXVVtuEUeUA9iuzNEEVWreJcooHtjSrZekZiluQMRb0OewIX8c:BXVHu13CL9sDooN6ZekvP0OXE

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

f061c6342730870f6ad18debbec1f66a911d9ae818ebf049160652b4d0d78c55.apk.zip
.zip

Password: infected
f061c6342730870f6ad18debbec1f66a911d9ae818ebf049160652b4d0d78c55.apk
.apk android arch:arm arch:x86

com.estrongs.android.pop

com.estrongs.android.pop.app.openscreenad.NewSplashActivity

Activities

com.estrongs.android.pop.view.FileExplorerActivity

android.intent.action.VIEW
com.estrongs.android.pop.action.ACTION_VIEW_FOLDER
org.openintents.action.VIEW_DIRECTORY
com.estrongs.android.SHOW_DISK_USAGE

com.estrongs.android.pop.app.OpenRecommActivityAlias

com.estrongs.android.pop.action.OPEN_CHOOSER

com.estrongs.android.pop.app.compress.CompressionActivity

android.intent.action.VIEW

com.estrongs.android.pop.app.ESFileSharingActivity

android.intent.action.VIEW
android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.estrongs.android.pop.app.SaveToESActivity

android.intent.action.VIEW
android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.estrongs.android.pop.app.LocalFileSharingActivity

android.intent.action.VIEW

com.estrongs.android.pop.app.PopVideoPlayer

android.intent.action.VIEW
android.intent.action.VIEW

com.estrongs.android.pop.app.AudioPlayerProxyActivity

android.intent.action.VIEW
android.intent.action.VIEW

com.estrongs.android.pop.app.editor.PopNoteEditor

android.intent.action.VIEW
android.intent.action.EDIT
android.intent.action.SEND
android.intent.action.SEARCH
com.googlecode.android_scripting.action.EDIT_SCRIPT

com.estrongs.android.pop.app.FileChooserActivity

com.estrongs.action.PICK_FILE
com.estrongs.action.PLUGIN_PICK_FILE
com.estrongs.action.PICK_FILE
com.estrongs.action.PLUGIN_PICK_FILE
com.estrongs.action.PICK_DIRECTORY
com.estrongs.action.PLUGIN_PICK_DIRECTORY
com.estrongs.action.PICK_DIRECTORY
com.estrongs.action.PLUGIN_PICK_DIRECTORY
android.intent.action.CREATE_SHORTCUT

com.estrongs.android.pop.app.ESContentChooserActivity

android.intent.action.GET_CONTENT

com.estrongs.android.pop.app.ESRingtoneChooserActivity

android.intent.action.RINGTONE_PICKER

com.estrongs.android.pop.app.ESWallPaperChooserActivity

android.intent.action.SET_WALLPAPER

com.estrongs.android.pop.app.BrowserDownloaderActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.estrongs.android.pop.app.PopRemoteImageBrowser

android.intent.action.VIEW

com.estrongs.android.pop.app.AdbControllerActivity

com.estrongs.android.pop.app.AdbControllerActivity

com.estrongs.android.pop.app.UsbMonitorActivity

android.hardware.usb.action.USB_DEVICE_ATTACHED
android.hardware.usb.action.USB_DEVICE_DETACHED

com.estrongs.android.pop.app.TransitActivity

com.estrongs.android.SHOW_DISK_USAGE
com.estrongs.android.SHOW_APP_MGR
com.estrongs.android.SHOW_SDCARD
com.estrongs.android.SHOW_MUSIC_PLAYER

com.estrongs.android.pop.app.filetransfer.FileTransferSendActivity

android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.estrongs.android.pop.app.openscreenad.NewSplashActivity

android.intent.action.MAIN

com.estrongs.android.pop.app.FileSaveToActivity

com.estrongs.action.SAVE_TO_FILE

com.estrongs.android.pop.app.videoeditor.VideoEditProxyActivity

android.intent.action.VIEW

com.estrongs.android.pop.app.premium.newui.ChinaMemberActivity

com.estrongs.action.EDITOR_GO_VIP_PAGE

com.estrongs.android.pop.app.transferstation.FileTransferStationActivity

android.intent.action.VIEW

Permissions

android.permission.KILL_BACKGROUND_PROCESSES
android.permission.WRITE_SETTINGS
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.INTERNET
android.permission.SET_WALLPAPER
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.WRITE_MEDIA_STORAGE
android.permission.WAKE_LOCK
android.permission.ACCESS_SUPERUSER
android.permission.VIBRATE
.PERMISSION
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_TASKS
android.permission.RECEIVE_BOOT_COMPLETED
com.google.android.c2dm.permission.RECEIVE
com.estrongs.android.pop.permission.C2D_MESSAGE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.GET_PACKAGE_SIZE
android.permission.CLEAR_APP_CACHE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_PHONE_STATE
android.permission.CAMERA
android.permission.GET_ACCOUNTS
android.permission.READ_EXTERNAL_STORAGE

Receivers

com.estrongs.android.pop.app.AudioPlayerService$MediaButtonReceiver

android.intent.action.MEDIA_BUTTON

com.estrongs.android.pop.EnableOEMConfig

android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_UNMOUNTED
android.intent.action.MEDIA_BAD_REMOVAL

com.estrongs.android.pop.app.InstallMonitorReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.estrongs.android.pop.app.StartServiceReceiver

android.intent.action.USER_PRESENT
android.intent.action.ACTION_POWER_CONNECTED
com.estrongs.action.PERFNOTIFY
android.intent.action.MEDIA_MOUNTED

com.estrongs.android.pop.app.analysis.AnalysisNotificationDeletedReceiver

com.estrongs.analysis.action.NOTIFICATION_REMOVED

com.estrongs.android.pop.app.ReportAliveReceiver

android.intent.action.ACTION_POWER_CONNECTED

com.android.apps.pros.LocalCReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

Services

com.estrongs.android.pop.bt.OBEXFtpServerService

android.intent.action.START_OBEX_FTP_SERVER
ace.js
.js
adjunk.txt
animation.css
app_config.js
.js
app_permissions_cn.txt
app_permissions_en.txt
app_permissions_zh-Hant.txt
app_whitelist.txt
au_becs_bsb.json
bridge.js
.js
c_cpp.js
csharp.js
css.js
device_icon.png
.png
dom.js
.js
ds-amex.pem
ds-discover.cer
ds-mastercard.crt
ds-test-ec.txt
ds-test-rsa.txt
ds-visa.crt
editor.html
.html .js
editor.js
.js
es5-shim.js
.js
es_privacy_content.html
.html
es_privacy_content_en.html
.html
es_privacy_content_zh.html
.html
event.js
.js
event_emitter.js
.js
event_emitter_test.js
.js
ext-beautify.js
.js
ext-elastic_tabstops_lite.js
.js
ext-emmet.js
.js
ext-error_marker.js
.js
ext-keybinding_menu.js
.js
ext-language_tools.js
.js
ext-linking.js
.js
ext-modelist.js
.js
ext-old_ie.js
.js
ext-searchbox.js
.js
ext-settings_menu.js
.js
ext-spellcheck.js
.js
ext-split.js
.js
ext-static_highlight.js
.js
ext-statusbar.js
.js
ext-textarea.js
.js
ext-themelist.js
.js
ext-whitespace.js
.js
fixoldbrowsers.js
.js .vbs
folder_app.zip
.zip
folder_app.db
fontello-codes.css
fontello-embedded.css
fontello-ie7-codes.css
fontello-ie7.css
fontello.css
fontello.eot
fontello.svg
.xml
fontello.ttf
fontello.woff
fontello.woff2
gdtadv2.jar
.apk android arch:arm64 arch:arm
comp_list
yaq.sec
yaqsdkcookie
golang.js
groovy.js
haxe.js
html.js
html_elixir.js
html_ruby.js
ini.js
java.js
.js
javascript.js
.js
json.js
jsp.js
.js .vbs
keybinding-emacs.js
.js
keybinding-vim.js
.js
keys.js
.js
kotlin.js
lang.js
.js
makefile.js
markdown.js
media_store_monitor_paths.txt
mode-applescript.js
.js
mode-c_cpp.js
.js
mode-csharp.js
.js
mode-css.js
.js
mode-golang.js
.js
mode-groovy.js
.js
mode-haxe.js
.js
mode-html.js
.js
mode-html_elixir.js
.js
mode-html_ruby.js
.js
mode-ini.js
.js
mode-java.js
.js
mode-javascript.js
.js
mode-json.js
.js
mode-jsp.js
.js
mode-kotlin.js
.js
mode-makefile.js
.js
mode-markdown.js
.js
mode-mysql.js
.js
mode-objectivec.js
.js
mode-pascal.js
.js
mode-perl.js
.js
mode-php.js
.js
mode-python.js
.js
mode-ruby.js
.js
mode-shellscript.js
.js
mode-smali.js
.js
mode-sql.js
.js
mode-svg.js
.js
mode-swift.js
.js
mode-text.js
mode-vbscript.js
.js
mode-xml.js
.js
mysql.js
net.js
.js
objectivec.js
oop.js
.js
pascal.js
perl.js
php.js
.js .ps1
python.js
regexp.js
.js
ruby.js
scrollbar_handle_accelerated.png
.png
search_engines_property.json
search_float_property.json
search_hotwords_property.json
shellscript.js
smali.js
sql.js
svg.js
swift.js
template.docx
.docx office2007
template.pptx
.pptx office2007
template.xlsx
.xlsx office2007
text.js
text_select_handle_left.png
.png
text_select_handle_middle.png
.png
text_select_handle_right.png
.png
theme-chrome.js
.js
theme-github.js
.js
theme-tomorrow_night.js
.js
theme-xcode.js
.js
useragent.js
.js
vbscript.js
worker-json.js
.js
xml.js

Sharing

General

Malware Config

Signatures

Files

Password: infected

com.estrongs.android.pop

com.estrongs.android.pop.app.openscreenad.NewSplashActivity

Activities

com.estrongs.android.pop.view.FileExplorerActivity

com.estrongs.android.pop.app.OpenRecommActivityAlias

com.estrongs.android.pop.app.compress.CompressionActivity

com.estrongs.android.pop.app.ESFileSharingActivity

com.estrongs.android.pop.app.SaveToESActivity

com.estrongs.android.pop.app.LocalFileSharingActivity

com.estrongs.android.pop.app.PopVideoPlayer

com.estrongs.android.pop.app.AudioPlayerProxyActivity

com.estrongs.android.pop.app.editor.PopNoteEditor

com.estrongs.android.pop.app.FileChooserActivity

com.estrongs.android.pop.app.ESContentChooserActivity

com.estrongs.android.pop.app.ESRingtoneChooserActivity

com.estrongs.android.pop.app.ESWallPaperChooserActivity

com.estrongs.android.pop.app.BrowserDownloaderActivity

com.estrongs.android.pop.app.PopRemoteImageBrowser

com.estrongs.android.pop.app.AdbControllerActivity

com.estrongs.android.pop.app.UsbMonitorActivity

com.estrongs.android.pop.app.TransitActivity

com.estrongs.android.pop.app.filetransfer.FileTransferSendActivity

com.estrongs.android.pop.app.openscreenad.NewSplashActivity

com.estrongs.android.pop.app.FileSaveToActivity

com.estrongs.android.pop.app.videoeditor.VideoEditProxyActivity

com.estrongs.android.pop.app.premium.newui.ChinaMemberActivity

com.estrongs.android.pop.app.transferstation.FileTransferStationActivity

Permissions

Receivers

com.estrongs.android.pop.app.AudioPlayerService$MediaButtonReceiver

com.estrongs.android.pop.EnableOEMConfig

com.estrongs.android.pop.app.InstallMonitorReceiver

com.estrongs.android.pop.app.StartServiceReceiver

com.estrongs.android.pop.app.analysis.AnalysisNotificationDeletedReceiver

com.estrongs.android.pop.app.ReportAliveReceiver

com.android.apps.pros.LocalCReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

Services

com.estrongs.android.pop.bt.OBEXFtpServerService