sagawa[.]apk | Triage

General

Target

sagawa.apk
Size

4.0MB
MD5

5910a992058ca232e116a0b16cc31932
SHA1

04dabf910cfa38be27253837f12b7373a943a078
SHA256

152be211ecd21c8abfd7c687a5ca8a17906f589c59055516e5482ff3fcf42dbf
SHA512

5ad981191c5ca15e22a02cc7d72ba2874b408ae49d5ed06541b102eebf99f2495c1222a03d944d54a085a85e6110eb9b4076a0a40060028699902f72937a8f8e
SSDEEP

98304:ZIY7a/qQ42qGAqUb39zdKZCAWZ2vWlaGS7hKKvG2N+X:Zt7EqIqGAqUbthKgsvY7sh9v6

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 12 IoCs

description	ioc
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to receive WAP push messages.	android.permission.RECEIVE_WAP_PUSH
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

sagawa.apk
.apk android arch:arm

km.TI.mndnHn.rndnHnlhhkTknTimm

jp.co.sagawa.SagawaOfficialApp.activity.WelcomeActivity

Activities

jp.co.sagawa.SagawaOfficialApp.activity.WelcomeActivity

android.intent.action.MAIN

com.receiveSms.tools.WfkEmptyActivity

android.intent.action.MAIN
android.intent.action.SEND
android.intent.action.SENDTO

Permissions

android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.READ_PHONE_STATE
android.permission.FOREGROUND_SERVICE
android.permission.GET_TASKS
android.permission.REORDER_TASKS
android.permission.VIBRATE
android.permission.BROADCAST_STICKY
android.permission.RECEIVE_WAP_PUSH
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.RECEIVE_MMS
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.READ_LOGS
android.permission.READ_PHONE_STATE
android.permission.VIBRATE
android.permission.FLASHLIGHT
android.permission.CHANGE_WIFI_STATE
android.permission.READ_SYNC_SETTINGS

Receivers

jp.co.sagawa.SagawaOfficialApp.receiver.MyNetStatusReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.receiveSms.tools.WfkSMSReceiver

android.provider.Telephony.SMS_RECEIVED
android.provider.Telephony.SMS_DELIVER

com.receiveSms.tools.WfkMMSReceiver

android.provider.Telephony.WAP_PUSH_DELIVER

Services

com.receiveSms.tools.WfkHandleSmsSendService

android.intent.action.RESPOND_VIA_MESSAGE
432103a51751cff2a591a9abf9499c0f
d35f86c667b275ca1d3066d3fac4587d

Android Permissions

sagawa.apk

Permissions

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.READ_PHONE_STATE

android.permission.FOREGROUND_SERVICE

android.permission.GET_TASKS

android.permission.REORDER_TASKS

android.permission.VIBRATE

android.permission.BROADCAST_STICKY

android.permission.RECEIVE_WAP_PUSH

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.RECEIVE_MMS

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.READ_LOGS

android.permission.READ_PHONE_STATE

android.permission.VIBRATE

android.permission.FLASHLIGHT

android.permission.CHANGE_WIFI_STATE

android.permission.READ_SYNC_SETTINGS

Sharing

General

Malware Config

Signatures

Files

km.TI.mndnHn.rndnHnlhhkTknTimm

jp.co.sagawa.SagawaOfficialApp.activity.WelcomeActivity

Activities

jp.co.sagawa.SagawaOfficialApp.activity.WelcomeActivity

com.receiveSms.tools.WfkEmptyActivity

Permissions

Receivers

jp.co.sagawa.SagawaOfficialApp.receiver.MyNetStatusReceiver

com.receiveSms.tools.WfkSMSReceiver

com.receiveSms.tools.WfkMMSReceiver

Services

com.receiveSms.tools.WfkHandleSmsSendService

Android Permissions

sagawa.apk