78d2c5a5e769902b1c92d9bd833171931147290f3fd3fc31a61f064b068b773d

General

Target

78d2c5a5e769902b1c92d9bd833171931147290f3fd3fc31a61f064b068b773d
Size

7.3MB
MD5

7130e4d24947d1b190a32f2ed3fc0393
SHA1

54cc0632675f58c916777669082850ee3da541af
SHA256

78d2c5a5e769902b1c92d9bd833171931147290f3fd3fc31a61f064b068b773d
SHA512

023c8ffe506f39363541ffe9f801e3c74a5191c6b58919e4fd82eae8cfc2a6804e0bc2ee50159ddf96d305a923aa1cdb63b9b9e3ccfeec6a04df7d85fca10116
SSDEEP

196608:D0jW8Y8h1zN5Kj3j9AYPeJ6I6Gau0IhwHhMoC4to:D0jWr8h1zN0j9Aak6I6Gar/q

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 20 IoCs

description	ioc
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to write and read the user's call log data.	android.permission.WRITE_CALL_LOG
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to receive WAP push messages.	android.permission.RECEIVE_WAP_PUSH
Required to be able to access the camera device.	android.permission.CAMERA

Files

78d2c5a5e769902b1c92d9bd833171931147290f3fd3fc31a61f064b068b773d
.apk .ps1 android arch:arm polyglot

com.anguanjia.safe

com.anguanjia.safe.main.SplashActivity

Activities

com.anguanjia.safe.main.SplashActivity

android.intent.action.MAIN

.positivedefense.TyuPopupActivity

android.intent.action.VIEW

.positivedefense.TyuApkFileOpenView

android.intent.action.VIEW

.qrcode.QRCodeScanActivity

android.intent.action.MAIN

Permissions

android.permission.READ_CALL_LOG
android.permission.WRITE_CALL_LOG
com.android.browser.permission.READ_HISTORY_BOOKMARKS
android.permission.CAMERA
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.FLASHLIGHT
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.PROCESS_OUTGOING_CALLS
android.permission.INTERNET
android.permission.READ_CONTACTS
android.permission.WRITE_CONTACTS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_SMS
android.permission.RECEIVE_MMS
android.permission.SEND_SMS
android.permission.MODIFY_PHONE_STATE
android.permission.CALL_PHONE
android.permission.VIBRATE
android.permission.RESTART_PACKAGES
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_LOGS
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_PACKAGE_SIZE
android.permission.READ_SYNC_STATS
android.permission.READ_SYNC_SETTINGS
android.permission.WRITE_SYNC_SETTINGS
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.CHANGE_WIFI_MULTICAST_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_MOCK_LOCATION
android.permission.RECEIVE_WAP_PUSH
android.permission.USE_CREDENTIALS
android.permission.GET_TASKS
android.permission.DELETE_CACHE_FILES
android.permission.CLEAR_APP_CACHE
android.permission.REORDER_TASKS
com.android.launcher.permission.READ_SETTINGS
android.permission.SET_DEBUG_APP
android.permission.ACCESS_AGJ_DOWNLOAD_MANAGER
android.permission.ACCESS_AGJ_DOWNLOAD_ACCESS
android.permission.ACCESS_AGJ_ALL_DOWNLOADS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_NETWORK_STATE
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.WRITE_SECURE_SETTINGS
android.permission.CAMERA
android.permission.MOUNT_UNMOUNT_FILESYSTEMS

Receivers

.receiver.AutoStartReceiver

android.intent.action.BOOT_COMPLETED

.receiver.ConnectionChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

.receiver.InOutCallReceiver

android.intent.action.PHONE_STATE
android.intent.action.NEW_OUTGOING_CALL

.receiver.PackageActionsReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_REMOVED

.receiver.DownloadBroadcast

com.anguanjia.action.download.DOWNLOAD_SUCCESS
com.anguanjia.action.download.DOWNLOAD_DATA

.receiver.PushReceiver

android.provider.Telephony.WAP_PUSH_RECEIVED

.receiver.SreenOnReceiver

android.intent.action.USER_PRESENT

.receiver.BatteryModelChangeReceiver

com.anguanjia.safe.BATTERY_MODEL_CHANGE

com.anguanjia.safe.receiver.CommonNotiReceiver

tyu_common_notify_backup
tyu_common_notify_heathcheck
tyu_common_error_report

Services

com.anguanjia.safe.revive.ReviveService

com.anguanjia.safe.daemon

Android Permissions

78d2c5a5e769902b1c92d9bd833171931147290f3fd3fc31a61f064b068b773d

Permissions

android.permission.READ_CALL_LOG

android.permission.WRITE_CALL_LOG

com.android.browser.permission.READ_HISTORY_BOOKMARKS

android.permission.CAMERA

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.FLASHLIGHT

android.permission.WRITE_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.PROCESS_OUTGOING_CALLS

android.permission.INTERNET

android.permission.READ_CONTACTS

android.permission.WRITE_CONTACTS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.RECEIVE_SMS

android.permission.RECEIVE_MMS

android.permission.SEND_SMS

android.permission.MODIFY_PHONE_STATE

android.permission.CALL_PHONE

android.permission.VIBRATE

android.permission.RESTART_PACKAGES

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_LOGS

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.SYSTEM_ALERT_WINDOW

android.permission.GET_PACKAGE_SIZE

android.permission.READ_SYNC_STATS

android.permission.READ_SYNC_SETTINGS

android.permission.WRITE_SYNC_SETTINGS

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.CHANGE_WIFI_MULTICAST_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_MOCK_LOCATION

android.permission.RECEIVE_WAP_PUSH

android.permission.USE_CREDENTIALS

android.permission.GET_TASKS

android.permission.DELETE_CACHE_FILES

android.permission.CLEAR_APP_CACHE

android.permission.REORDER_TASKS

com.android.launcher.permission.READ_SETTINGS

android.permission.SET_DEBUG_APP

android.permission.ACCESS_AGJ_DOWNLOAD_MANAGER

android.permission.ACCESS_AGJ_DOWNLOAD_ACCESS

android.permission.ACCESS_AGJ_ALL_DOWNLOADS

Sharing

General

Malware Config

Signatures

Files

com.anguanjia.safe

com.anguanjia.safe.main.SplashActivity

Activities

com.anguanjia.safe.main.SplashActivity

.positivedefense.TyuPopupActivity

.positivedefense.TyuApkFileOpenView

.qrcode.QRCodeScanActivity

Permissions

Receivers

.receiver.AutoStartReceiver

.receiver.ConnectionChangeReceiver

.receiver.InOutCallReceiver

.receiver.PackageActionsReceiver

.receiver.DownloadBroadcast

.receiver.PushReceiver

.receiver.SreenOnReceiver

.receiver.BatteryModelChangeReceiver

com.anguanjia.safe.receiver.CommonNotiReceiver

Services

com.anguanjia.safe.revive.ReviveService

Android Permissions

78d2c5a5e769902b1c92d9bd833171931147290f3fd3fc31a61f064b068b773d