8a65f04b58e4c4e069e15b1bb2d46d073a6192bc6004e2af45613344ac1f6ce9

General

Target

8a65f04b58e4c4e069e15b1bb2d46d073a6192bc6004e2af45613344ac1f6ce9
Size

28.4MB
MD5

739e87b24b4e7739d488351a11bff011
SHA1

c3a76b265d6d90a34b6a87485341857e8ef5f5bb
SHA256

8a65f04b58e4c4e069e15b1bb2d46d073a6192bc6004e2af45613344ac1f6ce9
SHA512

07e43ab1f84b39a9838959f73a82d4bc17fba3da6e1bafb6f9830e12dfe5bd9230fd8e01beb9a99dd2aa55aeb06091e6bf66d1a1ab0901f30039ae61ab55a0a3
SSDEEP

786432:pyLjDUEAEu0nWdZc7mct6C625L8rtWzeYLBUfEY8:gLjDUotnWDAz6t4GtseHu

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

8a65f04b58e4c4e069e15b1bb2d46d073a6192bc6004e2af45613344ac1f6ce9
.apk android arch:arm

com.bitmango.go.wordcookies

com.qiqiersan.sdk.QqesShellActivity

Activities

com.bitmango.go.wordcookies.UnityPlayerActivity

android.intent.action.MAIN

com.qiqiersan.sdk.QqesShellActivity

android.intent.action.MAIN

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE
android.permission.INTERNET
com.bitmango.go.wordcookies.permission.C2D_MESSAGE
android.permission.WRITE_EXTERNAL_STORAGE
com.android.vending.BILLING
android.permission.READ_EXTERNAL_STORAGE

Receivers

com.kochava.android.tracker.lite.ReferralCapture

com.android.vending.INSTALL_REFERRER

com.bitmango.gcm.GCMBroadcastReceiver

com.google.android.c2dm.intent.RECEIVE

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE
com.google.android.c2dm.intent.REGISTRATION

Services

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT
rtk_app.apk
.apk android arch:arm

com.rtk.app

com.rtk.app.Welcome

Activities

com.rtk.app.Welcome

android.intent.action.MAIN

com.mob.tools.MobUIShell

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.FLASHLIGHT
android.permission.VIBRATE
android.permission.RESTART_PACKAGES
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.GET_TASKS
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.READ_EXTERNAL_STORAGE
android.permission.BIND_ACCESSIBILITY_SERVICE
android.permission.WAKE_LOCK
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.SYSTEM_ALERT_WINDOW
getui.permission.GetuiService.com.rtk.app

Receivers

com.rtk.tools.BootReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.getui.demo.PushDemoReceiver

com.igexin.sdk.action.vqiYZJVob39RPgWvymrvq6

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.igexin.sdk.PushManagerReceiver

com.igexin.sdk.action.pushmanager

com.igexin.download.DownloadReceiver

android.net.conn.CONNECTIVITY_CHANGE

Services

com.igexin.sdk.PushService

com.igexin.sdk.action.service.message

com.rtk.tools.MyAccessibilityService

android.accessibilityservice.AccessibilityService

Android Permissions

8a65f04b58e4c4e069e15b1bb2d46d073a6192bc6004e2af45613344ac1f6ce9

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WAKE_LOCK

com.google.android.c2dm.permission.RECEIVE

android.permission.INTERNET

com.bitmango.go.wordcookies.permission.C2D_MESSAGE

android.permission.WRITE_EXTERNAL_STORAGE

com.android.vending.BILLING

android.permission.READ_EXTERNAL_STORAGE

Sharing

General

Malware Config

Signatures

Files

com.bitmango.go.wordcookies

com.qiqiersan.sdk.QqesShellActivity

Activities

com.bitmango.go.wordcookies.UnityPlayerActivity

com.qiqiersan.sdk.QqesShellActivity

Permissions

Receivers

com.kochava.android.tracker.lite.ReferralCapture

com.bitmango.gcm.GCMBroadcastReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

Services

com.google.firebase.iid.FirebaseInstanceIdService

com.rtk.app

com.rtk.app.Welcome

Activities

com.rtk.app.Welcome

com.mob.tools.MobUIShell

Permissions

Receivers

com.rtk.tools.BootReceiver

com.getui.demo.PushDemoReceiver

com.igexin.sdk.PushReceiver

com.igexin.sdk.PushManagerReceiver

com.igexin.download.DownloadReceiver

Services

com.igexin.sdk.PushService

com.rtk.tools.MyAccessibilityService

Android Permissions

8a65f04b58e4c4e069e15b1bb2d46d073a6192bc6004e2af45613344ac1f6ce9