com[.]zhihu[.]android_5034_apps[.]evozi[.]com[.]apk

Sharing

Copy URL Twitter E-mail

General

Target

com.zhihu.android_5034_apps.evozi.com.apk
Size

66.8MB
MD5

89cfd24d5138678e56165c84f5ffb8b3
SHA1

25bbaec3ac90c61067966b9ebf39c4e6a95acc1e
SHA256

2bfb937428fe00208488267a04a9bed8c94e3e31f84dd20a44b65ca9e49ddd6f
SHA512

2d3e045ea88d6b6167e8d5213df0759af9f94df2d856d7624b118ec0769df7b803b6c6057f55557fe46b53903932d54cb6ff81fa0b82c407f8eea32b3aa0c63e
SSDEEP

1572864:uJCZEYlONVZWvCblMFQJveFwI/7/ukzvzl9QCqTOO2LREQZEDMTYhG:uJYEYlW7ZNJWwS7/jvJ9QCqTOOCRHK4d

Score

7^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read the user's calendar data.	android.permission.READ_CALENDAR
Allows an application to write the user's calendar data.	android.permission.WRITE_CALENDAR

Files

com.zhihu.android_5034_apps.evozi.com.apk
.apk android arch:arm64

com.zhihu.android

com.zhihu.android.app.ui.activity.LauncherActivity

Activities

com.zhihu.android.app.live.ui.activity.VideoPlayActivity

android.intent.action.VIEW

com.zhihu.android.app.ui.activity.RouterPortalActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.zhihu.android.push.PushJumpBoardActivity

zhihu.intent.action.PUSH_SERVICE

com.zhihu.android.app.ui.activity.LauncherActivity

android.intent.action.MAIN
com.zhihu.android.app.ui.activity.MainActivity

com.zhihu.android.app.ui.activity.PortalActivity

android.intent.action.SENDTO

com.zhihu.android.app.ui.activity.DeepLinkTrickActivity

ad.activity.action.trick

com.zhihu.android.app.ui.activity.QDFaceActivity

android.intent.action.VIEW

com.zhihu.android.app.ui.activity.QDAliPayActivity

android.intent.action.VIEW

com.zhihu.android.push.invoke.ZHInvokeActivity

com.zhihu.android.intent.action.ZH_INVOKE_ACTIVITY

com.zhihu.android.push.invoke.ZHEntryActivity

com.zhihu.android.intent.action.ZH_ENTRY_ACTIVITY

com.zhihu.android.push.backgroundfree.GreenifyActivity

com.oasisfeng.greenify.intent.action.REQUEST_LIMITED_BACKGROUND

com.zhihu.android.app.ui.activity.ActionPortalActivity

com.zhihu.intent.action.FRAGMENT
android.intent.action.MAIN
android.intent.action.WEB_SEARCH
android.intent.action.SEARCH

com.zhihu.android.app.ui.activity.share.ShareToFeedActivity

android.intent.action.SEND

com.zhihu.android.app.ui.activity.share.ShareToMessageActivity

android.intent.action.SEND

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.zhihu.android.app.ui.activity.AccountActionActivity

com.zhihu.intent.action.GUIDE
com.zhihu.intent.action.SETPASSWORD

com.zhihu.android.app.ui.activity.AuthActivity

android.intent.action.VIEW

com.alibaba.alibclinkpartner.smartlink.ALPEntranceActivity

com.alibaba.intent.action.GETWAY

com.alibaba.baichuan.android.trade.ui.AlibcWebViewActivity

COM_TAOBAO_TAE_SDK_TRADE_WEB_VIEW_ACTION

com.alibaba.baichuan.android.trade.ui.AlibcBackActivity

android.intent.action.VIEW

Permissions

android.permission.REQUEST_INSTALL_PACKAGES
android.permission.BLUETOOTH
android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECORD_AUDIO
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.VIBRATE
android.Manifest.permission.DEVICE_POWER
android.permission.WAKE_LOCK
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_CONTACTS
android.permission.REORDER_TASKS
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.FOREGROUND_SERVICE
android.permission.CAMERA
android.permission.FLASHLIGHT
com.zhihu.android.ReceivePlayerInfo
android.permission.READ_CALENDAR
android.permission.WRITE_CALENDAR
com.huawei.appmarket.service.commondata.permission.GET_COMMON_DATA
android.permission.EXPAND_STATUS_BAR
android.permission.SYSTEM_ALERT_WINDOW
com.huawei.android.launcher.permission.CHANGE_BADGE
com.asus.msa.SupplementaryDID.ACCESS
android.permission.INSTALL_SHORTCUT
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.GET_TASKS
android.permission.READ_LOGS
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.BLUETOOTH_ADMIN
android.permission.RECORD_VIDEO
android.Manifest.permission.READ_PHONE_STATE
com.google.android.c2dm.permission.RECEIVE
android.permission.READ_SETTINGS
android.permission.CHANGE_CONFIGURATION
android.permission.RUN_INSTRUMENTATION

Receivers

com.zhihu.android.app.appwidget.SearchAppWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE

com.zhihu.android.app.ui.widget.download.ApkNotificationUtils$NotificationBroadcastReceiver

notification_progress_cancelled
notification_error_cancelled
notification_progress_clicked
notification_error_clicked

com.zhihu.android.article.tts.TTSPlayerReceiver

com.zhihu.android.PlayerAction

com.zhihu.android.app.market.receiver.MarketAudioReceiver

com.zhihu.android.PlayerAction

com.zhihu.android.app.nextlive.room.LiveRoomPlayerReceiver

com.zhihu.android.PlayerAction

com.zhihu.android.topic.match.MatchBroadcastReceiver

intent_topic_match_alarm_receive_action
intent_topic_match_notify_receive_action

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
com.igexin.sdk.action.refreshls

com.avos.avoscloud.AVBroadcastReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE

com.zhihu.push.leancloud.PushReceiver

zhihu.intent.action.NOTIFICATION
zhihu.intent.action.MESSAGE
zhihu.intent.action.PROMOTION
zhihu.intent.action.OPEN_URL
zhihu.intent.action.REMIX_NOTIFY
zhihu.intent.action.WITHDRAW
android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE

com.zhihu.android.base.receiver.CommunicationReceiver

com.zhihu.android.EVENT

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

Services

com.zhihu.android.push.invoke.PushInvokeService

com.zhihu.android.intent.action.PUSH_INVOKE

com.hpplay.sdk.source.process.LelinkSdkService

com.hpplay.sdk.source.LelinkSdkService.ACTION

com.zhihu.android.push.fcm.MessageService

com.google.firebase.MESSAGING_EVENT

com.didi.virtualapk.delegate.RemoteService

com.zhihu.android.intent.ACTION_DAEMON_SERVICE

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT
Night_Tabbar_Discover.json
Night_Tabbar_Feed.json
Night_Tabbar_More.json
Night_Tabbar_Notifications.json
Night_Tabbar_Shop.json
Night_Tabbar_Video.json
Tabbar_Discover.json
Tabbar_Feed.json
Tabbar_More.json
Tabbar_Notifications.json
Tabbar_Shop.json
Tabbar_Video.json
ad.layout
anim_open_push_guide.json
anim_open_push_guide_night.json
answer.html
.html .js
audacity_data.json
base_fragment.glsl
base_vertex.glsl
beauty.frag
beauty.vert
book_loading_white.gif
.gif
border_selected.png
.png
caret.js
.js
catch.json
cn.shuzilm.config.json
com.tencent.open.config.json
common_button_big_blue.9.png
.png
common_button_big_blue_disable.9.png
.png
common_button_big_blue_highlighted.9.png
.png
common_button_white.9.png
.png
common_button_white_highlighted.9.png
.png
content.js
.js
count_data.json
countryCode.txt
countryCodeEn.txt
countryCodeTw.txt
debug.lic
detect_data.json
easygo.json
edit_icon.json
edit_icon_night.json
edit_img_0.webp
edit_img_1.webp
edit_img_2.webp
edit_img_3.webp
edit_night_img_0.webp
edit_night_img_1.webp
edit_night_img_2.webp
edit_night_img_3.webp
editor.tar
.tar
.release
appConfig.json
editor/index.html
.html
editor/public/app.84d8bc84.js
.js
editor/public/app.9cfa88ae.css
emoji.xml
.xml
emoji_1.webp
emoji_10.webp
emoji_11.webp
emoji_12.webp
emoji_13.webp
emoji_14.webp
emoji_15.webp
emoji_16.webp
emoji_17.webp
emoji_18.webp
emoji_19.webp
emoji_2.webp
emoji_20.webp
emoji_21.webp
emoji_22.webp
emoji_23.webp
emoji_24.webp
emoji_25.webp
emoji_26.webp
emoji_27.webp
emoji_28.webp
emoji_29.webp
emoji_3.webp
emoji_30.webp
emoji_31.webp
emoji_32.webp
emoji_33.webp
emoji_34.webp
emoji_35.webp
emoji_36.webp
emoji_37.webp
emoji_38.webp
emoji_39.webp
emoji_4.webp
emoji_40.webp
emoji_41.webp
emoji_42.webp
emoji_43.webp
emoji_44.webp
emoji_45.webp
emoji_46.webp
emoji_47.webp
emoji_48.webp
emoji_49.webp
emoji_5.webp
emoji_6.webp
emoji_7.webp
emoji_8.webp
emoji_9.webp
emoji_tab_icon.webp
emoji_tab_icon_selected.webp
end_data.json
feed_default_tabs.json
filedownloader.properties
follow_guide_default_data.json
fonts.zip
.zip
DFGBHNT5华康手札体W5.ttf
FZYanSJ_Xian.OTF
frag.sh
fragment.glsl
get_code_button.9.png
.png
get_code_button_highlighted.9.png
.png
grow_guide_dialog.json
grow_guide_dialog_night.json
guide_tags_seven_default_data.json
h5_qr_back.png
.png
highlight.css
host_cucc.properties
hot_head_default_data.json
hot_head_default_data_2.json
ic_com_sina_weibo_sdk_close.png
.png
ic_gif.webp
ic_gif_round.webp
ic_video_delete.webp
ic_video_play_community.webp
ids.css
image.js
.js
image_holder_click_to_load.webp
image_holder_load_failed.webp
image_holder_loading.gif
.gif
image_holder_video_icon.webp
img_0.webp
km_shelf_playing_day.json
km_shelf_playing_night.json
kmvideo_edu_loading.json
kmvideo_vip_loading.json
lazyload.js
.js
libwbsafeedit
.elf linux arm
libwbsafeedit_64
.elf linux aarch64
libwbsafeedit_x86
.elf linux x86
libwbsafeedit_x86_64
.elf linux x64
link-box.css
link-box.js
.js
link_box_holder_bg_content_dark.webp
link_box_holder_bg_content_light.webp
link_box_holder_bg_thumbnail_dark.webp
link_box_holder_bg_thumbnail_light.webp
link_box_holder_link_dark.webp
link_box_holder_link_light.webp
link_box_holder_loading_dark.webp
link_box_holder_loading_light.webp
login_bottom_background.9.png
.png
login_country_background.9.png
.png
login_country_background_highlighted.9.png
.png
login_top_background.9.png
.png
lookup.frag
lookup.vert
lookup2.frag
lookup_Natural.zmlp
.png
manifest.mf
mention.js
.js
moment.min.js
.js
new_user_guide_pick_content_default_data.json
new_user_guide_pick_interest_default_data.json
new_user_guide_pick_user_default_data.json
notification_default_data.json
oes_fragment.glsl
oes_vertex.glsl
okhttpsuffixes.bin
.gz
okhttpsuffixes.bin
old_user_guide_default_data.json
own-video.css
pheidi_meta_wanted_night.gif
.gif
pheidi_meta_wanted_normal.gif
.gif
picture_panorama_fragment.glsl
picture_panorama_vertex.glsl
pinyinindex
player_video_topic_follow_lottie.json
player_video_topic_mute_lottie.json
prototype.js
.js
pull_refresh_loading.json
question_video_mute_lottie.json
quote.js
.js
reader.html
.html
reader.js
.js
recommend_default_tabs.json
record_data.json
recording_data.json
reddenWhiten_redden.zmlp
.png
reddenWhiten_whiten.zmlp
.png
release.lic
richtext.css
rsa.pub
rsa.sig
sdk_weibo_logo.png
.png
search_clear_btn_down.png
.png
search_clear_btn_normal.png
.png
search_tabs_default_data.json
share.js
.js
sharecore_card_templates.json
shutter_loop.json
shutter_start.json
smooth_contrast.zmlp
.png
sodler.json
suggest-edit.css
supplierconfig.json
tableview_sectionheader_background.png
.png
tags.css
template.js
timeline_icon_add_friends.png
.png
timeline_icon_attention.png
.png
triangle.png
.png
vertex.glsl
vertex.sh
vessay_audio_loading.json
vessay_outline_guide_drag.json
vessay_outline_guide_hander.json
video-box.css
video-box.js
.js
video-link.css
video-link.js
.js
video_entity_serial_like.json
video_entity_serial_new_like.json
video_yh_loading_icon.png
vip_emoji.xml
.xml
weibosdk_common_button_alpha.9.png
.png
weibosdk_common_button_alpha_highlighted.9.png
.png
weibosdk_common_shadow_top.9.png
.png
weibosdk_dialog_bg.9.png
.png
weibosdk_empty_failed.png
.png
weibosdk_navigationbar_back.png
.png
weibosdk_navigationbar_back_highlighted.png
.png
weibosdk_navigationbar_background.9.png
.png
weibosdk_notification_icon.png
.png
widgets.css
wrapper.js
.js
zepto.min.js
.js
zhimg_sku_list_playing_day.gif
.gif
zhimg_sku_list_playing_night.gif
.gif

Android Permissions

com.zhihu.android_5034_apps.evozi.com.apk

Permissions

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.BLUETOOTH

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.RECORD_AUDIO

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.VIBRATE

android.Manifest.permission.DEVICE_POWER

android.permission.WAKE_LOCK

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_CONTACTS

android.permission.REORDER_TASKS

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.FOREGROUND_SERVICE

android.permission.CAMERA

android.permission.FLASHLIGHT

com.zhihu.android.ReceivePlayerInfo

android.permission.READ_CALENDAR

android.permission.WRITE_CALENDAR

com.huawei.appmarket.service.commondata.permission.GET_COMMON_DATA

android.permission.EXPAND_STATUS_BAR

android.permission.SYSTEM_ALERT_WINDOW

com.huawei.android.launcher.permission.CHANGE_BADGE

com.asus.msa.SupplementaryDID.ACCESS

android.permission.INSTALL_SHORTCUT

android.permission.CHANGE_WIFI_MULTICAST_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.GET_TASKS

android.permission.READ_LOGS

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.BLUETOOTH_ADMIN

android.permission.RECORD_VIDEO

android.Manifest.permission.READ_PHONE_STATE

com.google.android.c2dm.permission.RECEIVE

android.permission.READ_SETTINGS

android.permission.CHANGE_CONFIGURATION

android.permission.RUN_INSTRUMENTATION

Sharing

General

Malware Config

Signatures

Files