85ba7cb288300c2ef4b235d74b22ff2459645f2a21d680fd20f5cb5e39ce3cd8

General

Target

85ba7cb288300c2ef4b235d74b22ff2459645f2a21d680fd20f5cb5e39ce3cd8
Size

9.0MB
MD5

3ceb17f8c563a103d9a8f5a9d20bddb5
SHA1

94137197ed382f1a3b25d63d2b9e1a670ef39f86
SHA256

85ba7cb288300c2ef4b235d74b22ff2459645f2a21d680fd20f5cb5e39ce3cd8
SHA512

c6a1ddac219295b1c4af2f6222d308e00a3d47dabce75b500ee51fa4b112971edb21fdf2ba155e42e22d8f9a0f718fbcb90105c9a768e400e76d7e13948c2ff5
SSDEEP

196608:oi8/dyHVB7RNEXcOv5Jg6jUcYfV8lUm2eaNGwzqInQSEtnS2eNZcsk:oJ4rF4lv5pq6OeawSqIYtSXNZcsk

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 9 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS

Files

85ba7cb288300c2ef4b235d74b22ff2459645f2a21d680fd20f5cb5e39ce3cd8
.apk android

com.sdcq.nearme.gamecenter

com.sh.shwebview.SplashActivity

Activities

com.sh.shwebview.SplashActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_SMS
android.permission.READ_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_TASKS
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS

Receivers

com.nearme.game.sdk.component.proxy.ProxyUserCenterOperateReceiver

com.oppo.usercenter.account_login
com.oppo.usercenter.account_logout
com.oppo.usercenter.modify_name

Services
nearme.apk
.apk android arch:arm

com.nearme.atlas

com.nearme.oppowallet.activity.WalletEntryActivity

Activities

com.nearme.plugin.pay.activity.MainChargeActivity

nearme.plugin.host.startup.action.single_pay
android.intent.action.VIEW

com.nearme.plugin.pay.activity.WeChatPayActivity

android.intent.action.VIEW

com.nearme.atlas.qqwallet.MqqPayCallbackActivity

android.intent.action.VIEW

com.nearme.atlas.alipay.FastAlipaySettingAcitviy

nearme.atlas.settings.fastalipay

com.nearme.atlas.alipay.FastAlipaySignCallbackAcitviy

android.intent.action.VIEW
android.intent.action.VIEW

com.nearme.oppowallet.activity.WalletEntryActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.coloros.lifestyle.WebActivity

com.coloros.lifestyle.action.innerbrowser

com.nearme.plugin.pay.activity.QRCodePayActivity

com.nearme.pay.qrcode
com.nearme.pay.qrscan

Permissions

android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.RESTART_PACKAGES
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.RECEIVE_SMS
android.permission.READ_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.GET_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.READ_SETTINGS
android.permission.READ_LOGS
android.permission.GET_TASKS
android.permission.DISABLE_KEYGUARD
android.permission.CHANGE_CONFIGURATION
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.RUN_INSTRUMENTATION
android.permission.WRITE_SETTINGS
com.oppo.findmyphone.permission.AUTH_TOKEN
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.READ_CONTACTS
android.permission.CALL_PHONE
android.permission.REORDER_TASKS
android.permission.VIBRATE
android.permission.CAMERA

Receivers

com.nearme.plugin.pay.receiver.ProcessReceiver

com.nearme.plugin.pay.action.directpay

com.nearme.atlas.wxapi.AppRegister

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

com.oppo.usercenter.sdk.helper.UserCenterOperateReceiver

com.oppo.usercenter.account_login
com.oppo.usercenter.account_logout
com.oppo.usercenter.modify_name

com.oppo.usercenter.sdk.helper.UserCenterOperateReceiver

com.oppo.usercenter.account_login
com.oppo.usercenter.account_logout
com.oppo.usercenter.modify_name

Services

.PayActionService

com.oppo.action.PAY_ACTION
oppo_game_service_201502.so
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.nearme.game.service

com.nearme.atlas.offlinepay.application.ui.activities.OppoOfflinePayHostActivity

Activities

com.oppo.usercenter.opensdk.dialog.register.UserCenterOperateActivity

com.oppo.usercenter.opensdk_register_dialog

Permissions

android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.CHANGE_NETWORK_STATE
android.permission.GET_TASKS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.WRITE_SMS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW

Receivers

com.oppo.usercenter.sdk.helper.UserCenterOperateReceiver

com.oppo.usercenter.account_login
com.oppo.usercenter.account_logout
com.oppo.usercenter.modify_name

Android Permissions

85ba7cb288300c2ef4b235d74b22ff2459645f2a21d680fd20f5cb5e39ce3cd8

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.RECEIVE_SMS

android.permission.READ_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.GET_TASKS

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

Sharing

General

Malware Config

Signatures

Files

com.sdcq.nearme.gamecenter

com.sh.shwebview.SplashActivity

Activities

com.sh.shwebview.SplashActivity

Permissions

Receivers

com.nearme.game.sdk.component.proxy.ProxyUserCenterOperateReceiver

Services

com.nearme.atlas

com.nearme.oppowallet.activity.WalletEntryActivity

Activities

com.nearme.plugin.pay.activity.MainChargeActivity

com.nearme.plugin.pay.activity.WeChatPayActivity

com.nearme.atlas.qqwallet.MqqPayCallbackActivity

com.nearme.atlas.alipay.FastAlipaySettingAcitviy

com.nearme.atlas.alipay.FastAlipaySignCallbackAcitviy

com.nearme.oppowallet.activity.WalletEntryActivity

com.coloros.lifestyle.WebActivity

com.nearme.plugin.pay.activity.QRCodePayActivity

Permissions

Receivers

com.nearme.plugin.pay.receiver.ProcessReceiver

com.nearme.atlas.wxapi.AppRegister

com.oppo.usercenter.sdk.helper.UserCenterOperateReceiver

com.oppo.usercenter.sdk.helper.UserCenterOperateReceiver

Services

.PayActionService

com.nearme.game.service

com.nearme.atlas.offlinepay.application.ui.activities.OppoOfflinePayHostActivity

Activities

com.oppo.usercenter.opensdk.dialog.register.UserCenterOperateActivity

Permissions

Receivers

com.oppo.usercenter.sdk.helper.UserCenterOperateReceiver

Android Permissions

85ba7cb288300c2ef4b235d74b22ff2459645f2a21d680fd20f5cb5e39ce3cd8