7743eaaebeb0a3001170607c40303b8d3895597439fe998e2c7b2a7629082c89

Sharing

Copy URL Twitter E-mail

General

Target

7743eaaebeb0a3001170607c40303b8d3895597439fe998e2c7b2a7629082c89
Size

25.0MB
MD5

f3c965f0b04e3dbc44c0b96c363618dc
SHA1

b4de47070787fddc4bb01293c309452f310a0ad0
SHA256

7743eaaebeb0a3001170607c40303b8d3895597439fe998e2c7b2a7629082c89
SHA512

333fc84bb60e18aa2102b89098b24a742dfa53263cbf36a98ae91bcb011856d3530707ee03c4e0c4c922e6456be5520bc82e18b7157f9d6c15d0bee42edfa65f
SSDEEP

786432:s/JcAaspQkqKBSRDu2croauzeTo9z85ynIu:s3TaIBSRayauZNP5

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 27 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS
Allows an application to access data from sensors that the user uses to measure what is happening inside their body, such as heart rate.	android.permission.BODY_SENSORS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows an application to read the user's calendar data.	android.permission.READ_CALENDAR
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to receive WAP push messages.	android.permission.RECEIVE_WAP_PUSH
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to use SIP service.	android.permission.USE_SIP
Allows an application to write the user's calendar data.	android.permission.WRITE_CALENDAR
Allows an application to write and read the user's call log data.	android.permission.WRITE_CALL_LOG
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

7743eaaebeb0a3001170607c40303b8d3895597439fe998e2c7b2a7629082c89
.apk android arch:arm

cc.laowantong.gcw

cc.laowantong.gcw.activity.WelcomeActivity

Activities

cc.laowantong.gcw.activity.WelcomeActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.GET_TASKS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.BLUETOOTH
android.permission.CAMERA
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.RECORD_AUDIO
android.permission.ACCESS_COARSE_UPDATES
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.READ_CONTACTS
com.android.launcher.permission.INSTALL_SHORTCUT
getui.permission.GetuiService.cc.laowantong.gcw
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.CHANGE_NETWORK_STATE
cc.laowantong.gcw.permission.MIPUSH_RECEIVE
com.meizu.flyme.push.permission.RECEIVE
cc.laowantong.gcw.push.permission.MESSAGE
com.meizu.c2dm.permission.RECEIVE
cc.laowantong.gcw.permission.C2D_MESSAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
com.huawei.authentication.HW_ACCESS_AUTH_SERVICE
com.samsung.svoice.sync.READ_DATABASE
com.samsung.svoice.sync.ACCESS_SERVICE
com.samsung.svoice.sync.WRITE_DATABASE
com.sec.android.app.voicenote.Controller
com.sec.android.permission.VOIP_INTERFACE
com.sec.android.permission.LAUNCH_PERSONAL_PAGE_SERVICE
com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY
com.samsung.android.providers.context.permission.READ_RECORD_AUDIO
com.samsung.android.providers.context.permission.WRITE_RECORD_AUDIO
com.sec.android.settings.permission.SOFT_RESET
sec.android.permission.READ_MSG_PREF
com.samsung.android.scloud.backup.lib.read
com.samsung.android.scloud.backup.lib.write
android.permission.BIND_DIRECTORY_SEARCH
android.permission.UPDATE_APP_OPS_STATS
com.android.voicemail.permission.READ_WRITE_ALL_VOICEMAIL
android.permission.ACCOUNT_MANAGER
android.permission.PACKAGE_USAGE_STATS
android.permission.ACCESS_MOCK_LOCATION
android.permission.ACCESS_WIMAX_STATE
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.BIND_APPWIDGET
android.permission.BLUETOOTH_ADMIN
android.permission.BODY_SENSORS
android.permission.BROADCAST_STICKY
android.permission.CALL_PHONE
android.permission.CHANGE_WIMAX_STATE
android.permission.CLEAR_APP_CACHE
android.permission.DISABLE_KEYGUARD
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.EXPAND_STATUS_BAR
android.permission.FLASHLIGHT
android.permission.GET_CLIPS
android.permission.GET_PACKAGE_SIZE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.NFC
android.permission.PERSISTENT_ACTIVITY
android.permission.PROCESS_OUTGOING_CALLS
android.permission.READ_CALENDAR
android.permission.READ_CALL_LOG
android.permission.READ_CELL_BROADCASTS
android.permission.READ_CLIPS
android.permission.READ_INSTALL_SESSIONS
android.permission.READ_PROFILE
android.permission.READ_SMS
android.permission.READ_SOCIAL_STREAM
android.permission.READ_SYNC_SETTINGS
android.permission.READ_SYNC_STATS
android.permission.READ_USER_DICTIONARY
android.permission.RECEIVE_MMS
android.permission.RECEIVE_SMS
android.permission.RECEIVE_WAP_PUSH
android.permission.REORDER_TASKS
android.permission.SEND_SMS
android.permission.SET_TIME_ZONE
android.permission.SET_WALLPAPER
android.permission.SET_WALLPAPER_HINTS
android.permission.SUBSCRIBED_FEEDS_READ
android.permission.SUBSCRIBED_FEEDS_WRITE
android.permission.TRANSMIT_IR
android.permission.USE_SIP
android.permission.WRITE_CALENDAR
android.permission.WRITE_CALL_LOG
android.permission.WRITE_CLIPS
android.permission.WRITE_CONTACTS
android.permission.WRITE_PROFILE
android.permission.WRITE_SETTINGS
android.permission.WRITE_SMS
android.permission.WRITE_SOCIAL_STREAM
android.permission.WRITE_SYNC_SETTINGS
android.permission.WRITE_USER_DICTIONARY
android.permission.USE_FINGERPRINT
com.android.alarm.permission.SET_ALARM
com.android.browser.permission.READ_HISTORY_BOOKMARKS
com.android.browser.permission.WRITE_HISTORY_BOOKMARKS
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.READ_LOGS
android.permission.INSTALL_PACKAGES
android.permission.DELETE_PACKAGES
android.permission.CLEAR_APP_USER_DATA
android.permission.WRITE_MEDIA_STORAGE
android.permission.ACCESS_CACHE_FILESYSTEM
android.permission.READ_OWNER_DATA
android.permission.WRITE_OWNER_DATA
android.permission.CHANGE_CONFIGURATION
android.permission.DEVICE_POWER
android.permission.BATTERY_STATS
android.permission.ACCESS_DOWNLOAD_MANAGER
com.android.launcher.permission.READ_SETTINGS
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.teslacoilsw.launcher.permission.READ_SETTINGS
com.actionlauncher.playstore.permission.READ_SETTINGS
com.mx.launcher.permission.READ_SETTINGS
com.anddoes.launcher.permission.READ_SETTINGS
com.apusapps.launcher.permission.READ_SETTINGS
com.tsf.shell.permission.READ_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
com.lenovo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.READ_SETTINGS
com.bbk.launcher2.permission.READ_SETTINGS
com.s.launcher.permission.READ_SETTINGS
cn.nubia.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.CHANGE_BADGE
android.permission.GET_INTENT_SENDER_INTENT
android.permission.WRITE_APN_SETTINGS

Receivers

cc.laowantong.gcw.MeizuPushReceiver

com.meizu.flyme.push.intent.MESSAGE
com.meizu.flyme.push.intent.REGISTER.FEEDBACK
com.meizu.flyme.push.intent.UNREGISTER.FEEDBACK
com.meizu.c2dm.intent.REGISTRATION
com.meizu.c2dm.intent.RECEIVE

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

cc.laowantong.gcw.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

org.android.agoo.xiaomi.MiPushBroadcastReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

org.android.agoo.huawei.HuaWeiReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.intent.action.PUSH
com.huawei.intent.action.PUSH_STATE

com.hoc.hoclib.adlib.AdReceiver

android.intent.action.PACKAGE_ADDED

Services

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action
com.umeng.message.message.sendmessage.action

com.hpplay.sdk.source.mirror.ScreenCastService

com.hpplay.sdk.source.mirrorcast.ScreenCastService.ACTION
ad_adview.jar
.apk android
bdxadsdk.jar
.apk android
gdtadv2.jar
.apk android arch:arm arch:arm64

Android Permissions

7743eaaebeb0a3001170607c40303b8d3895597439fe998e2c7b2a7629082c89

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_MULTICAST_STATE

android.permission.GET_TASKS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.BLUETOOTH

android.permission.CAMERA

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.RECORD_AUDIO

android.permission.ACCESS_COARSE_UPDATES

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.READ_CONTACTS

com.android.launcher.permission.INSTALL_SHORTCUT

getui.permission.GetuiService.cc.laowantong.gcw

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.CHANGE_NETWORK_STATE

cc.laowantong.gcw.permission.MIPUSH_RECEIVE

com.meizu.flyme.push.permission.RECEIVE

cc.laowantong.gcw.push.permission.MESSAGE

com.meizu.c2dm.permission.RECEIVE

cc.laowantong.gcw.permission.C2D_MESSAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

com.huawei.authentication.HW_ACCESS_AUTH_SERVICE

com.samsung.svoice.sync.READ_DATABASE

com.samsung.svoice.sync.ACCESS_SERVICE

com.samsung.svoice.sync.WRITE_DATABASE

com.sec.android.app.voicenote.Controller

com.sec.android.permission.VOIP_INTERFACE

com.sec.android.permission.LAUNCH_PERSONAL_PAGE_SERVICE

com.samsung.android.providers.context.permission.WRITE_USE_APP_FEATURE_SURVEY

com.samsung.android.providers.context.permission.READ_RECORD_AUDIO

com.samsung.android.providers.context.permission.WRITE_RECORD_AUDIO

Sharing

General

Malware Config

Signatures

Files

cc.laowantong.gcw

cc.laowantong.gcw.activity.WelcomeActivity

Activities

cc.laowantong.gcw.activity.WelcomeActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

cc.laowantong.gcw.MeizuPushReceiver

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

org.android.agoo.xiaomi.MiPushBroadcastReceiver

org.android.agoo.huawei.HuaWeiReceiver

com.hoc.hoclib.adlib.AdReceiver

Services

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.hpplay.sdk.source.mirror.ScreenCastService

Android Permissions

7743eaaebeb0a3001170607c40303b8d3895597439fe998e2c7b2a7629082c89