Gmail[.]apk | Triage

General

Target

Gmail.apk
Size

2.1MB
MD5

b83e7004c3f99463be91f78b80cfb9ef
SHA1

85090bbfaa2ea483b6f83ef3ce437518482e3224
SHA256

f3b40a0d1e757a64b68f6f4b73e40eba6e25e947f6c0beb6afb8d3e4dde0a69a
SHA512

9f03be64c10fa17835dc7ad37c0bb72289ae484c2dc31eba511125e80de1c5dcd8b63a021b9f53c863d22e33e6ad961f8228ef2d7b13c5faf07dae92223e3169
SSDEEP

49152:ytb4zp769TtO0dnqD9kJt+IqjvCro66RZ9:O4zpordm9kJ0Iqcq9

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

Gmail.apk
.apk android

com.google.android.gm

ConversationListActivityGmail

Activities

ConversationListActivity

android.intent.action.SEARCH

ConversationListActivityGmail

android.intent.action.MAIN

ConversationListActivityGoogleMail

android.intent.action.MAIN

ComposeActivityGmail

android.intent.action.VIEW
android.intent.action.SENDTO
android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

ComposeActivityGoogleMail

android.intent.action.VIEW
android.intent.action.SENDTO
android.intent.action.SEND

AutoSendActivity

com.google.android.gm.action.AUTO_SEND

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.GET_ACCOUNTS
android.permission.MANAGE_ACCOUNTS
android.permission.INTERNET
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.READ_SYNC_SETTINGS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.SUBSCRIBED_FEEDS_READ
android.permission.SUBSCRIBED_FEEDS_WRITE
android.permission.USE_CREDENTIALS
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.WRITE_SYNC_SETTINGS
android.permission.WRITE_EXTERNAL_STORAGE
com.google.android.gm.permission.READ_ATTACHMENT_PREVIEW
com.google.android.gm.permission.READ_GMAIL
com.google.android.gm.permission.WRITE_GMAIL
com.google.android.googleapps.permission.GOOGLE_AUTH
com.google.android.googleapps.permission.GOOGLE_AUTH.mail
com.google.android.providers.gsf.permission.READ_GSERVICES
com.google.android.gm.permission.AUTO_SEND
com.google.android.voicesearch.AUDIO_FILE_ACCESS

Receivers

GoogleMailSwitchReceiver

com.google.android.googleapps.GOOGLE_MAIL_SWITCH

AccountsChangedReceiver

android.accounts.LOGIN_ACCOUNTS_CHANGED

GmailReceiver

android.intent.action.PROVIDER_CHANGED

.MailIntentReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.DEVICE_STORAGE_OK
android.intent.action.DOWNLOAD_COMPLETED
com.google.android.gm.intent.CLEAR_ALL_NEW_MAIL_NOTIFICATIONS

.downloadprovider.DownloadReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE

Services

.provider.MailSyncAdapterService

android.content.SyncAdapter

Android Permissions

Gmail.apk

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.GET_ACCOUNTS

android.permission.MANAGE_ACCOUNTS

android.permission.INTERNET

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.READ_SYNC_SETTINGS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.SUBSCRIBED_FEEDS_READ

android.permission.SUBSCRIBED_FEEDS_WRITE

android.permission.USE_CREDENTIALS

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.WRITE_SYNC_SETTINGS

android.permission.WRITE_EXTERNAL_STORAGE

com.google.android.gm.permission.READ_ATTACHMENT_PREVIEW

com.google.android.gm.permission.READ_GMAIL

com.google.android.gm.permission.WRITE_GMAIL

com.google.android.googleapps.permission.GOOGLE_AUTH

com.google.android.googleapps.permission.GOOGLE_AUTH.mail

com.google.android.providers.gsf.permission.READ_GSERVICES

com.google.android.gm.permission.AUTO_SEND

com.google.android.voicesearch.AUDIO_FILE_ACCESS

Sharing

General

Malware Config

Signatures

Files

com.google.android.gm

ConversationListActivityGmail

Activities

ConversationListActivity

ConversationListActivityGmail

ConversationListActivityGoogleMail

ComposeActivityGmail

ComposeActivityGoogleMail

AutoSendActivity

Permissions

Receivers

GoogleMailSwitchReceiver

AccountsChangedReceiver

GmailReceiver

.MailIntentReceiver

.downloadprovider.DownloadReceiver

Services

.provider.MailSyncAdapterService

Android Permissions

Gmail.apk