1e6cc79f814c09374b550305e5095759

General

Target

1e6cc79f814c09374b550305e5095759
Size

13.7MB
MD5

1e6cc79f814c09374b550305e5095759
SHA1

a5c37c48e454f76b06e77ec61324e44aef3bb116
SHA256

bdb50871146e31fa47943f590bedacd757b3a354c68adc4274477b65a0e0845d
SHA512

a8890a1c1b1b8b0f755430b61ebd56b81c3749ab7007dbb3c0e8a876c87b0b6acda73c0010e269abdf4c582925db0d83b849156fff6bfecc32907fb3da475c73
SSDEEP

196608:mVpkHnBbSJ8yVBtSvdP70COMxnCVRItx4gNkd+kp8hjE/gK5jOMpahWATlrbZvJJ:mVuHnJ2wdnCExl1zjErFpxWtlvhwnRql

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 17 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

1e6cc79f814c09374b550305e5095759
.apk android arch:arm64 arch:arm

com.sohu.newsclient

com.sohu.newsclient.app.SplashActivity

Activities

com.sohu.newsclient.app.rssnews.NewsActivity

com.sohu.newsclient.app.news.NewsActivity

com.sohu.newsclient.app.SplashActivity

android.intent.action.MAIN

com.sohu.newsclient.app.NewsTabActivity

com.sohu.newsclient.nui.NewsTabActivity

com.sohu.newsclient.app.video.VideoViewFullScreenActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.sohu.newsclient.app.export.ViewInfoDetail

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.sohu.newsclient.app.search.SearchActivity

com.sohunewsclient.search.action.VIEW

com.sohu.newsclient.app.search.SearchActivity2

com.sohunewsclient.search.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.sohuvideo.minisdk.ui.VideoChannelActivity

android.intent.action.MAIN

com.sohu.tv.news.ads.sdk.core.PadDetailsActivity

com.sdk.pad.details

Permissions

android.permission.MODIFY_AUDIO_SETTINGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_COARSE_UPDATES
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.CHANGE_NETWORK_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE
android.permission.BROADCAST_STICKY
android.permission.RECORD_AUDIO
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_WIFI_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
android.permission.GET_TASKS
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECEIVE_USER_PRESENT
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.LOCATION
android.permission.ACCESS_GPS
android.permission.WRITE_SETTINGS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CAMERA
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.EXPAND_STATUS_BAR
android.permission.WRITE_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.android.launcher2.permission.WRITE_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher3.permission.WRITE_SETTINGS
org.adw.launcher.permission.READ_SETTINGS
org.adw.launcher.permission.WRITE_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.WRITE_SETTINGS
com.qihoo360.launcher.permission.READ_SETTINGS
com.qihoo360.launcher.permission.WRITE_SETTINGS
com.lge.launcher.permission.READ_SETTINGS
com.lge.launcher.permission.WRITE_SETTINGS
net.qihoo.launcher.permission.READ_SETTINGS
net.qihoo.launcher.permission.WRITE_SETTINGS
org.adwfreak.launcher.permission.READ_SETTINGS
org.adwfreak.launcher.permission.WRITE_SETTINGS
org.adw.launcher_donut.permission.READ_SETTINGS
org.adw.launcher_donut.permission.WRITE_SETTINGS
com.huawei.launcher3.permission.READ_SETTINGS
com.huawei.launcher3.permission.WRITE_SETTINGS
com.fede.launcher.permission.READ_SETTINGS
com.fede.launcher.permission.WRITE_SETTINGS
com.sec.android.app.twlauncher.settings.READ_SETTINGS
com.sec.android.app.twlauncher.settings.WRITE_SETTINGS
com.anddoes.launcher.permission.READ_SETTINGS
com.anddoes.launcher.permission.WRITE_SETTINGS
com.tencent.qqlauncher.permission.READ_SETTINGS
com.tencent.qqlauncher.permission.WRITE_SETTINGS
com.huawei.launcher2.permission.READ_SETTINGS
com.huawei.launcher2.permission.WRITE_SETTINGS
com.android.mylauncher.permission.READ_SETTINGS
com.android.mylauncher.permission.WRITE_SETTINGS
com.ebproductions.android.launcher.permission.READ_SETTINGS
com.ebproductions.android.launcher.permission.WRITE_SETTINGS
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
com.lenovo.launcher.permission.READ_SETTINGS
com.lenovo.launcher.permission.WRITE_SETTINGS
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
telecom.mdesk.permission.READ_SETTINGS
telecom.mdesk.permission.WRITE_SETTINGS
dianxin.permission.ACCESS_LAUNCHER_DATA

Receivers

com.sohu.newsclient.core.broadcast.ConnectionChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.net.conn.BACKGROUND_DATA_SETTING_CHANGED
android.intent.action.USER_PRESENT
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.BOOT_COMPLETED

com.sohu.newsclient.core.broadcast.CallAlarm

com.android.alarmclock.ALARM_ALERT

com.sohu.newsclient.wxapi.WXRegister

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

com.sohu.newsclient.core.broadcast.InstallReceiver

android.sohu.action.INSTALL_NEW_APK
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_CHANGED
android.intent.action.PACKAGE_INSTALL
android.intent.action.PACKAGE_REMOVED

com.sohu.newsclient.core.broadcast.NotifyReceiver

com.sohu.newsclient.ACTION_NOTIFY_CLICK
com.sohu.newsclient.ACTION_CLEAR_ALL_NOTIFY
com.sohu.newsclient.ACTION_DOWNLOAD_NOTIFY_CLICKED
com.sohu.newsclient.ACTION_NEW_APK_DOWNLOAD_RECEIVER
com.sohu.newsclient.ACTION_COUNT_ALARM
com.sohu.newsclient.ACTION_COUNT_ALARM_UPDATE_ALLOWED_VERSION

com.sohu.newsclient.tvSdkInter.TvShareReceiver

com.sohu.minisdk.share

com.sohu.newsclient.app.offline.OfflineBroadcastReceiver

android.net.conn.CONNECTIVITY_CHANGE
com.sohu.newsclient.ACTION_CACHELIMIT

com.sohu.newsclient.app.appwidget.WidgetProvider

android.appwidget.action.APPWIDGET_ENABLED
android.appwidget.action.APPWIDGET_UPDATE
android.intent.action.WALLPAPER_CHANGED
android.intent.action.AIRPLANE_MODE

com.sohu.newsclient.app.appwidget.WeatherProvider

android.appwidget.action.APPWIDGET_ENABLED
android.appwidget.action.APPWIDGET_UPDATE
android.intent.action.WALLPAPER_CHANGED
android.intent.action.AIRPLANE_MODE

com.sohu.newsclient.app.appwidget.NewsProvider

android.appwidget.action.APPWIDGET_ENABLED
android.appwidget.action.APPWIDGET_UPDATE
android.intent.action.WALLPAPER_CHANGED
android.intent.action.AIRPLANE_MODE

com.sohu.newsclient.app.slientapp.SlientAppDownReciver

android.net.conn.CONNECTIVITY_CHANGE
com.sohu.newsclient.ACTION_SLIENTAPP_DOWNLOAD

com.sohu.push.service.PushServiceReceiver

android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.BOOT_COMPLETED
com.sohu.push.action.message.ARRIVED

com.sohuvideo.minisdk.control.push.PushBroadcastReceiver

com.sohuvideo.minisdk.PUSHJUMP

Services

com.sohu.newsclient.core.broadcast.ExternalActivateService

android.intent.action.VIEW

com.sohu.newsclient.core.broadcast.DealPushMessageService

com.sohu.push.action.REGISTERED
com.sohu.push.action.MESSAGE_RECEIVED
com.sohu.push.action.NOTIFICATION_CLICK

com.sohu.news.mp.sp.SohuNewsService

com.sohu.push.action.PUSH_SERVICE

com.sohu.android.plugin.service.PluginCoreService

com.sohu.plugin.action.CORE_SERVICE

com.sogou.map.mobile.trafficdog.TrafficDogService

com.sogou.map.trafficdog.action
deploy_plugin.jetaa
.apk android arch:x86 arch:arm64 arch:arm

com.sohu.pushsdk

Android Permissions

1e6cc79f814c09374b550305e5095759

Permissions

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_COARSE_UPDATES

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.CHANGE_NETWORK_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_PHONE_STATE

android.permission.BROADCAST_STICKY

android.permission.RECORD_AUDIO

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_WIFI_STATE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

android.permission.GET_TASKS

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.RECEIVE_USER_PRESENT

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.LOCATION

android.permission.ACCESS_GPS

android.permission.WRITE_SETTINGS

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.CAMERA

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.EXPAND_STATUS_BAR

android.permission.WRITE_SETTINGS

com.android.launcher2.permission.READ_SETTINGS

com.android.launcher2.permission.WRITE_SETTINGS

com.android.launcher3.permission.READ_SETTINGS

com.android.launcher3.permission.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.sohu.newsclient

com.sohu.newsclient.app.SplashActivity

Activities

com.sohu.newsclient.app.rssnews.NewsActivity

com.sohu.newsclient.app.SplashActivity

com.sohu.newsclient.app.NewsTabActivity

com.sohu.newsclient.app.video.VideoViewFullScreenActivity

com.sohu.newsclient.app.export.ViewInfoDetail

com.sohu.newsclient.app.search.SearchActivity

com.sohu.newsclient.app.search.SearchActivity2

com.tencent.tauth.AuthActivity

com.sohuvideo.minisdk.ui.VideoChannelActivity

com.sohu.tv.news.ads.sdk.core.PadDetailsActivity

Permissions

Receivers

com.sohu.newsclient.core.broadcast.ConnectionChangeReceiver

com.sohu.newsclient.core.broadcast.CallAlarm

com.sohu.newsclient.wxapi.WXRegister

com.sohu.newsclient.core.broadcast.InstallReceiver

com.sohu.newsclient.core.broadcast.NotifyReceiver

com.sohu.newsclient.tvSdkInter.TvShareReceiver

com.sohu.newsclient.app.offline.OfflineBroadcastReceiver

com.sohu.newsclient.app.appwidget.WidgetProvider

com.sohu.newsclient.app.appwidget.WeatherProvider

com.sohu.newsclient.app.appwidget.NewsProvider

com.sohu.newsclient.app.slientapp.SlientAppDownReciver

com.sohu.push.service.PushServiceReceiver

com.sohuvideo.minisdk.control.push.PushBroadcastReceiver

Services

com.sohu.newsclient.core.broadcast.ExternalActivateService

com.sohu.newsclient.core.broadcast.DealPushMessageService

com.sohu.news.mp.sp.SohuNewsService

com.sohu.android.plugin.service.PluginCoreService

com.sogou.map.mobile.trafficdog.TrafficDogService

com.sohu.pushsdk

Android Permissions

1e6cc79f814c09374b550305e5095759