73172e7706eb5e6c3f1262abee90c0e3bded7d85bf2f4a20df2eb485ef17efc4

General

Target

73172e7706eb5e6c3f1262abee90c0e3bded7d85bf2f4a20df2eb485ef17efc4
Size

8.6MB
MD5

d9693e55251d1969513dc1a60e215799
SHA1

26b65a3f2f14bd2a777c48056454a17c82de8441
SHA256

73172e7706eb5e6c3f1262abee90c0e3bded7d85bf2f4a20df2eb485ef17efc4
SHA512

e9e9fa71e2b57e3133bdf8954f2eab17be0e5a501fa1a8a0a27862739d9c67e1f2b732f9cbda8ba86096640c413e186d3d67c22592cd2f0805fc2d41167517c7
SSDEEP

196608:qK1jbvZogvGAx+5xKY6k8FDVbzNp6OB2SiTT6OB2SiTk6OB2SiTJ6OB2SiTF6OBP:qK1nhvZM5xKYD8FDVbSOxAmOxAFOxAI5

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 16 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to read SMS messages.	android.permission.READ_SMS

Files

73172e7706eb5e6c3f1262abee90c0e3bded7d85bf2f4a20df2eb485ef17efc4
.apk android arch:arm arch:mips arch:x86

com.hsy

com.hsy.activity.GuideActivity

Activities

com.hsy.activity.GuideActivity

android.intent.action.MAIN

.wxapi.WXPayEntryActivity

android.intent.action.VIEW

Permissions

android.permission.GET_TASKS
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.WAKE_LOCK
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_SETTINGS
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.ACCESS_FINE_LOCATION
android.permission.BAIDU_LOCATION_SERVICE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_MOCK_LOCATION
android.permission.ACCESS_GPS
android.permission.READ_LOGS
android.permission.READ_PHONE_STATE
android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_COARSE_LOCATION
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CHANGE_NETWORK_STATE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.READ_SETTINGS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.READ_PHONE_STATE
android.permission.WRITE_SETTINGS
android.permission.READ_SMS
android.permission.ACCESS_DOWNLOAD_MANAGER

Receivers

net.sourceforge.simcpux.AppRegister

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

Services

com.hsy.service.AccountAuthenticatorService

android.accounts.AccountAuthenticator
UPPayPluginEx.apk
.apk android arch:arm arch:mips arch:x86

com.unionpay.uppay

com.unionpay.uppay.PayActivity

Activities

com.unionpay.uppay.PayActivity

android.intent.action.Run
android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
com.tencent.mtt.extension.Player
android.webkit.permission.PLUGIN

Services

com.UCMobile.PayPlugin.PayPluginService

android.webkit.PLUGIN

Android Permissions

73172e7706eb5e6c3f1262abee90c0e3bded7d85bf2f4a20df2eb485ef17efc4

Permissions

android.permission.GET_TASKS

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.WAKE_LOCK

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_SETTINGS

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.ACCESS_FINE_LOCATION

android.permission.BAIDU_LOCATION_SERVICE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_MOCK_LOCATION

android.permission.ACCESS_GPS

android.permission.READ_LOGS

android.permission.READ_PHONE_STATE

android.permission.CALL_PHONE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_COARSE_LOCATION

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.CHANGE_NETWORK_STATE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.READ_SETTINGS

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.READ_PHONE_STATE

android.permission.WRITE_SETTINGS

android.permission.READ_SMS

android.permission.ACCESS_DOWNLOAD_MANAGER

Sharing

General

Malware Config

Signatures

Files

com.hsy

com.hsy.activity.GuideActivity

Activities

com.hsy.activity.GuideActivity

.wxapi.WXPayEntryActivity

Permissions

Receivers

net.sourceforge.simcpux.AppRegister

Services

com.hsy.service.AccountAuthenticatorService

com.unionpay.uppay

com.unionpay.uppay.PayActivity

Activities

com.unionpay.uppay.PayActivity

Permissions

Services

com.UCMobile.PayPlugin.PayPluginService

Android Permissions

73172e7706eb5e6c3f1262abee90c0e3bded7d85bf2f4a20df2eb485ef17efc4