TEMU272TEST[.]zip

Sharing

Copy URL Twitter E-mail

General

Target

TEMU272TEST.zip
Size

28.8MB
MD5

b2a6bdb837cf610570bd0c0a18a68ee6
SHA1

662f467faff70c7e66889c3376fd861098677835
SHA256

5f92edfbde97b8a7dd08b251d7b499c99beb5923fdce88d700dcae1dd1a96321
SHA512

94dcdb4eb4497f51f174467f389f1f325f2e568c7ee52d70ad4acd28df21832fd7981aa2a033137ca9e0ff76460c09b4e0d4008c84756bb3d0fe8ecbf4398e4b
SSDEEP

786432:smt0PTU9JBnjUR1x98spWgAKkX1IVSJKKxz8p:smtgmBopSsogTkFIYVup

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to post notifications.	android.permission.POST_NOTIFICATIONS

Files

TEMU272TEST.zip
.zip
TEMU_com.einnovation.temu_2.7.2.apks
.zip
base.apk
.apk android

com.einnovation.temu

com.baogong.splash.activity.MainFrameActivity

Activities

com.adyen.threeds2.internal.ui.activity.ChallengeActivity

android.intent.action.VIEW

com.baogong.activity.NewPageActivity

com.einnovation.whaleco.ACTION_NEW_PAGE_ACTIVITY

com.baogong.activity.NewPageActivity2

com.einnovation.whaleco.ACTION_NEW_PAGE_ACTIVITY2

com.baogong.activity.NewPageMaskActivity

com.einnovation.whaleco.ACTION_NEW_PAGE_MASK_ACTIVITY

com.facebook.CustomTabActivity

android.intent.action.VIEW
android.intent.action.VIEW

com.baogong.splash.activity.MainFrameActivity

android.intent.action.MAIN
xmg.mobilebase.router.ACTION_NEW_PAGE_ACTIVITY
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.einnovation.whaleco.pay.auth.braintree.BraintreeSdkActivity

android.intent.action.VIEW

com.linecorp.linesdk.auth.internal.LineAuthenticationCallbackActivity

android.intent.action.VIEW

com.braintreepayments.api.BraintreeDeepLinkActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
com.google.android.gms.permission.AD_ID
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.VIBRATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.POST_NOTIFICATIONS
com.adjust.preinstall.READ_PERMISSION
android.permission.RECEIVE_BOOT_COMPLETED
com.google.android.c2dm.permission.RECEIVE
com.einnovation.temu.ab_config

Receivers

com.adyen.threeds2.internal.AppUpgradeBroadcastReceiver

android.intent.action.MY_PACKAGE_REPLACED

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.baogong.push.LocaleChangedReceiver

android.intent.action.LOCALE_CHANGED

com.baogong.play.engage.EngageBroadcastReceiver

com.google.android.engage.action.PUBLISH_RECOMMENDATION
com.google.android.engage.action.PUBLISH_FEATURED
com.google.android.engage.action.shopping.PUBLISH_SHOPPING_CART

com.einnovation.temu.promot_module.components.tea.SystemReceiver

android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_CHECKING
android.intent.action.MEDIA_EJECT
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED
android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.einnovation.temu.promot_module.components.tea.SystemReceiver2

android.app.action.NEXT_ALARM_CLOCK_CHANGED

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_ACCESS_TOKEN_CHANGED

com.facebook.AuthenticationTokenManager$CurrentAuthenticationTokenChangedBroadcastReceiver

com.facebook.sdk.ACTION_CURRENT_AUTHENTICATION_TOKEN_CHANGED

meco.sdk.core.dex.MecoBroadcastManager

com.android.meco.MECO_DEX_PATH_ERROR

Services

com.baogong.push.WhaleCoFirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.einnovation.temu.promot_module.components.tide.UserAuthService

android.accounts.AccountAuthenticator

com.einnovation.temu.promot_module.components.tide.UserModuleService

android.content.SyncAdapter

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT
app_dc_view_placeholder_round.png
.png
baseline.prof
baseline.profm
com.baogong.web.zip
.zip
com.baogong.web.manifest
com.baogong.web.md5checker
web-416061da86f89b0454b71f6f88c1497a
data
datura_petal_materials
default_region_entity.json
default_region_list.json
iconfont.ttf
iconfont_rtl.ttf
personal_default_data.txt
setting_service_signed_in.json
setting_service_signed_out.json
so_uuid
timezone_map.json
icon.png
.png
meta.sai_v1.json
meta.sai_v2.json
split_config.arm64_v8a.apk
.apk android arch:arm64

com.einnovation.temu
split_config.xxhdpi.apk
.apk android

com.einnovation.temu
com.aefyr.sai_4.5.apk
.apk android

com.aefyr.sai

com.aefyr.sai.ui.activities.MainActivity

Activities

com.aefyr.sai.ui.activities.MainActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.aefyr.sai.ui.activities.ApkActionViewProxyActivity

android.intent.action.VIEW

Permissions

android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.REQUEST_DELETE_PACKAGES
android.permission.FOREGROUND_SERVICE
moe.shizuku.manager.permission.API_V23
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.android.vending.BILLING

Receivers

Services

Sharing

General

Malware Config

Signatures

Files

com.einnovation.temu

com.baogong.splash.activity.MainFrameActivity

Activities

com.adyen.threeds2.internal.ui.activity.ChallengeActivity

com.baogong.activity.NewPageActivity

com.baogong.activity.NewPageActivity2

com.baogong.activity.NewPageMaskActivity

com.facebook.CustomTabActivity

com.baogong.splash.activity.MainFrameActivity

com.einnovation.whaleco.pay.auth.braintree.BraintreeSdkActivity

com.linecorp.linesdk.auth.internal.LineAuthenticationCallbackActivity

com.braintreepayments.api.BraintreeDeepLinkActivity

Permissions

Receivers

com.adyen.threeds2.internal.AppUpgradeBroadcastReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.baogong.push.LocaleChangedReceiver

com.baogong.play.engage.EngageBroadcastReceiver

com.einnovation.temu.promot_module.components.tea.SystemReceiver

com.einnovation.temu.promot_module.components.tea.SystemReceiver2

com.facebook.CurrentAccessTokenExpirationBroadcastReceiver

com.facebook.AuthenticationTokenManager$CurrentAuthenticationTokenChangedBroadcastReceiver

meco.sdk.core.dex.MecoBroadcastManager

Services

com.baogong.push.WhaleCoFirebaseMessagingService

com.einnovation.temu.promot_module.components.tide.UserAuthService

com.einnovation.temu.promot_module.components.tide.UserModuleService

com.google.firebase.messaging.FirebaseMessagingService

com.einnovation.temu

com.einnovation.temu

com.aefyr.sai

com.aefyr.sai.ui.activities.MainActivity

Activities

com.aefyr.sai.ui.activities.MainActivity

com.aefyr.sai.ui.activities.ApkActionViewProxyActivity

Permissions

Receivers

Services