Google-play[.]apk

General

Target

Google-play.apk
Size

194KB
MD5

790a62a841927f4ec1e0675a590c56d1
SHA1

c6a72b78a28ce14e992189322be74139aef2b463
SHA256

d56f569e1d056a400e3b1fc19cd5291842bdfde8bf219757ceec4c9378a60292
SHA512

1ff93f589bb100b5b9653522222c2fef59d920384a51a9b88ba73d390d8653be36d052623b094572e05feb20e6c4e9743500408387e776fd304010c696de03c6
SSDEEP

3072:MeiR+/hpACL6QH5OLUyCO9ydCKVv11dgsyAjkeKmj/Pbb/oRW2urYIuOJ/5i8Ph:0+X0QZOQRdH/gZ8kQru6cIuOJ/Vh

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

Google-play.apk
.apk android

cosmetiq.fl

.services.LaunchActivity

Activities

.services.LaunchActivity

android.intent.action.MAIN

.services.IncomeSMSActivity

android.intent.action.SEND
android.intent.action.SENDTO

Permissions

android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_CONTACTS
android.permission.DEVICE_POWER
android.permission.USES_POLICY_FORCE_LOCK
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.WAKE_LOCK
android.permission.WRITE_SMS
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.SEND_SMS
android.permission.GET_TASKS
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE

Receivers

.services.receivers.InstallReceiver

android.intent.action.PACKAGE_INSTALL
android.intent.action.PACKAGE_ADDED

.services.receivers.mess.ReceiverMess

android.provider.Telephony.SMS_DELIVER

.services.receivers.mess.ReceiverPush

android.provider.Telephony.WAP_PUSH_DELIVER

.services.receivers.AdministrationReceiver

android.app.action.DEVICE_ADMIN_ENABLED

.services.receivers.mess.ReceiverIncoming

android.provider.Telephony.SMS_RECEIVED

.services.receivers.BootReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.QUICKBOOT_POWERON

.services.receivers.NetworkChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.WIFI_STATE_CHANGED

Services

.services.call.HeadlessSmsSendService

android.intent.action.RESPOND_VIA_MESSAGE

.controllers.activities.WebMainService

.controllers.activities.WebMainService

.services.call.SmsKitKatService

.services.call.SmsKitKatService

Android Permissions

Google-play.apk

Permissions

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_CONTACTS

android.permission.DEVICE_POWER

android.permission.USES_POLICY_FORCE_LOCK

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.WAKE_LOCK

android.permission.WRITE_SMS

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.SEND_SMS

android.permission.GET_TASKS

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

Sharing

General

Malware Config

Signatures

Files

cosmetiq.fl

.services.LaunchActivity

Activities

.services.LaunchActivity

.services.IncomeSMSActivity

Permissions

Receivers

.services.receivers.InstallReceiver

.services.receivers.mess.ReceiverMess

.services.receivers.mess.ReceiverPush

.services.receivers.AdministrationReceiver

.services.receivers.mess.ReceiverIncoming

.services.receivers.BootReceiver

.services.receivers.NetworkChangeReceiver

Services

.services.call.HeadlessSmsSendService

.controllers.activities.WebMainService

.services.call.SmsKitKatService

Android Permissions

Google-play.apk