775904c074e89739e86d66def16f07b0efc7f11fd7ef2cb1de95139a7230dca7

General

Target

775904c074e89739e86d66def16f07b0efc7f11fd7ef2cb1de95139a7230dca7
Size

3.5MB
MD5

0f4b87d4635b2f42fbbd4001601ace74
SHA1

b45ca7ee9a52dc8a2442843264de3e52b14ffbd3
SHA256

775904c074e89739e86d66def16f07b0efc7f11fd7ef2cb1de95139a7230dca7
SHA512

3b27c2f911fc2555f645524e601235028a31ed277606e9474ae174e1f9f065306c7f329bc3219252a6318ab18be3d4d91fca37dbb79d63830239b5dae1c929df
SSDEEP

98304:Pe+yqUClfCGaBrtONLPemZSnr3qaNhbTBl9UxYlxFT3Q+Y:PeufCGaB52mmZAr35NhbTt6YlxFT3Y

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 2 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE
Required by notification listener services to bind with the system. Allows apps to listen to and interact with notifications on the device.	android.permission.BIND_NOTIFICATION_LISTENER_SERVICE

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION

Files

775904c074e89739e86d66def16f07b0efc7f11fd7ef2cb1de95139a7230dca7
.apk android arch:arm

com.iooly.android.lockscreen

com.iooly.android.lockscreen.activites.MainActivity

Activities

com.iooly.android.lockscreen.activites.MainActivity

android.intent.action.MAIN
com.iooly.android.ertao.ACTION_DESKTOP_SHORTCUT
com.iooly.android.ertao.ACTION_LOCKSCREEN
com.iooly.android.ertao.ACTION_MENU_ITEM

com.iooly.android.lockscreen.activites.FakeActivity

com.iooly.android.TAKE_PICTURE
com.iooly.android.FLASH_LIGHT_ON

com.iooly.android.lockscreen.activites.ChoosePictureActivity

com.iooly.android.CHOOSE_PICTURE

com.iooly.android.lockscreen.activites.LoginTaobaoActivity

com.iooly.android.LOGIN_TAOBAO

com.iooly.android.lockscreen.activites.FloatGuideActivity

com.iooly.android.lockscreen.FLOAT_GUIDE_MESSAGE
com.iooly.android.lockscreen.FLOAT_GUIDE_LAYOUT
com.iooly.android.lockscreen.ORIGIN_FLOAT_GUIDE_FRAGMENT

com.iooly.android.lockscreen.activites.FloatGuideNotitleBarActivity

com.iooly.android.lockscreen.FULL_FLOAT_GUIDE_MESSAGE
com.iooly.android.lockscreen.FLOAT_GUIDE_FRAGMENT

com.iooly.android.lockscreen.activites.FloatGuide2Activity

com.iooly.android.lockscreen.FLOAT_GUIDE_2_MESSAGE
com.iooly.android.lockscreen.FLOAT_GUIDE_2_LAYOUT
com.iooly.android.lockscreen.FLOAT_GUIDE_2_FRAGMENT

com.iooly.android.lockscreen.activites.ShareThemeReceiveActivity

android.intent.action.VIEW
android.intent.action.EDIT
android.intent.action.VIEW
android.intent.action.EDIT
android.intent.action.VIEW
android.intent.action.EDIT

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.DISABLE_KEYGUARD
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_INTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.GET_TASKS
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.PACKAGE_USAGE_STATS
com.iooly.android.lockscreen.START_LOCKSCREEN
android.permission.ACCESS_WIFI_STATE
android.permission.SET_WALLPAPER
android.permission.SET_WALLPAPER_HINTS
android.permission.UPDATE_APP_OPS_STATS
android.permission.VIBRATE
android.permission.READ_LOGS
android.permission.WRITE_SETTINGS
android.permission.RESTART_PACKAGES
com.iooly.android.lockscreen.RECEIVE_NOTIFICATION_MESSAGE
com.iooly.android.lockscreen.RECEIVE_STATUS_BAR_STATE
com.iooly.android.lockscreen.SERVICE_MANAGER
com.iooly.android.theme.SERVICE_MANAGER
com.iooly.android.album.SERVICE_MANAGER
com.iooly.android.onekeylock.SERVICE_MANAGER
com.iooly.android.lockscreen.INTERNAL_SERVICE
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.MANAGE_ACTIVITY_STACKS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_COARSE_UPDATES

Receivers

com.iooly.android.lockscreen.receiver.AppInstallReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED

com.iooly.android.lockscreen.receiver.KeyCommandReceiver

android.provider.Telephony.SECRET_CODE

com.iooly.android.lockscreen.receiver.AutoStartReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_SHUTDOWN
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT

com.iooly.android.lockscreen.receiver.PackageReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED

com.iooly.android.lockscreen.receiver.ShutdownReceiver

android.intent.action.ACTION_SHUTDOWN

com.umeng.message.SystemReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.MessageReceiver

org.agoo.android.intent.action.RECEIVE

com.umeng.message.ElectionReceiver

org.agoo.android.intent.action.ELECTION_RESULT_V4

com.umeng.message.RegistrationReceiver

com.iooly.android.lockscreen.intent.action.COMMAND

com.umeng.message.UmengMessageBootReceiver

android.intent.action.BOOT_COMPLETED

com.act.aa.RecA

android.intent.action.PACKAGE_ADDED

Services

com.iooly.android.lockscreen.app.LockService

com.iooly.android.lockscreen.LOCK_SCREEN
com.iooly.android.lockscreen.LOCK_SERVICE
com.iooly.android.LOCK_SERVICE

com.iooly.android.lockscreen.app.NotificationAccessibilityService

android.accessibilityservice.AccessibilityService

com.iooly.android.service.ServiceManagerService

com.iooly.android.lockscreen.SERVICE_MANAGER

com.iooly.android.lockscreen.app.LockNotificationService

android.service.notification.NotificationListenerService

com.iooly.android.context.LayerManagerService

com.iooly.android.lockscreen.layer.START_SERVICE
com.iooly.android.lockscreen.layer.ADD_LAYER
com.iooly.android.lockscreen.layer.PAUSE_LAYER
com.iooly.android.lockscreen.layer.RESUME_LAYER
com.iooly.android.lockscreen.layer.REMOVE_LAYER
com.iooly.android.lockscreen.layer.NEW_INTENT

com.umeng.message.UmengService

com.iooly.android.lockscreen.intent.action.START
com.iooly.android.lockscreen.intent.action.COCKROACH
org.agoo.android.intent.action.PING_V4

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService
org.android.agoo.client.ElectionReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.unregistercallback.action
com.umeng.message.message.handler.action
com.umeng.message.autoupdate.handler.action
__xadsdk__remote__final__.jar
.apk android

Android Permissions

775904c074e89739e86d66def16f07b0efc7f11fd7ef2cb1de95139a7230dca7

Permissions

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.DISABLE_KEYGUARD

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_INTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.GET_TASKS

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.PACKAGE_USAGE_STATS

com.iooly.android.lockscreen.START_LOCKSCREEN

android.permission.ACCESS_WIFI_STATE

android.permission.SET_WALLPAPER

android.permission.SET_WALLPAPER_HINTS

android.permission.UPDATE_APP_OPS_STATS

android.permission.VIBRATE

android.permission.READ_LOGS

android.permission.WRITE_SETTINGS

android.permission.RESTART_PACKAGES

com.iooly.android.lockscreen.RECEIVE_NOTIFICATION_MESSAGE

com.iooly.android.lockscreen.RECEIVE_STATUS_BAR_STATE

com.iooly.android.lockscreen.SERVICE_MANAGER

com.iooly.android.theme.SERVICE_MANAGER

com.iooly.android.album.SERVICE_MANAGER

com.iooly.android.onekeylock.SERVICE_MANAGER

com.iooly.android.lockscreen.INTERNAL_SERVICE

android.permission.CAMERA

android.permission.FLASHLIGHT

android.permission.MANAGE_ACTIVITY_STACKS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_COARSE_UPDATES

Sharing

General

Malware Config

Signatures

Files

com.iooly.android.lockscreen

com.iooly.android.lockscreen.activites.MainActivity

Activities

com.iooly.android.lockscreen.activites.MainActivity

com.iooly.android.lockscreen.activites.FakeActivity

com.iooly.android.lockscreen.activites.ChoosePictureActivity

com.iooly.android.lockscreen.activites.LoginTaobaoActivity

com.iooly.android.lockscreen.activites.FloatGuideActivity

com.iooly.android.lockscreen.activites.FloatGuideNotitleBarActivity

com.iooly.android.lockscreen.activites.FloatGuide2Activity

com.iooly.android.lockscreen.activites.ShareThemeReceiveActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.iooly.android.lockscreen.receiver.AppInstallReceiver

com.iooly.android.lockscreen.receiver.KeyCommandReceiver

com.iooly.android.lockscreen.receiver.AutoStartReceiver

com.iooly.android.lockscreen.receiver.PackageReceiver

com.iooly.android.lockscreen.receiver.ShutdownReceiver

com.umeng.message.SystemReceiver

com.umeng.message.MessageReceiver

com.umeng.message.ElectionReceiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengMessageBootReceiver

com.act.aa.RecA

Services

com.iooly.android.lockscreen.app.LockService

com.iooly.android.lockscreen.app.NotificationAccessibilityService

com.iooly.android.service.ServiceManagerService

com.iooly.android.lockscreen.app.LockNotificationService

com.iooly.android.context.LayerManagerService

com.umeng.message.UmengService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

775904c074e89739e86d66def16f07b0efc7f11fd7ef2cb1de95139a7230dca7