9af5b565a074900bf960f4677b25ab9efbbc1ef82f633d2b18d82e9f93419465

General

Target

9af5b565a074900bf960f4677b25ab9efbbc1ef82f633d2b18d82e9f93419465
Size

8.5MB
MD5

6d21c6dd694551329a1fa758cc446ea9
SHA1

6de0ee60fd86f40ee2175fc5e44d4032734bb5bb
SHA256

9af5b565a074900bf960f4677b25ab9efbbc1ef82f633d2b18d82e9f93419465
SHA512

4a7d53823655f14d8e2389d9e628006f43f9164ba0dd1b0c51dc1403cf2c866b04c5c8920d4c46a0d839751d91bb9be8fa24a9b1807bc871f2b577a58f935e3d
SSDEEP

196608:v9kdf1BEq1hcOGL4/MqGO2374lMGMHb3qoxRWQ2yA:FkdNB2c/+O23Lzs9d

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 19 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

9af5b565a074900bf960f4677b25ab9efbbc1ef82f633d2b18d82e9f93419465
.apk android arch:arm arch:arm64 arch:x86

com.weimi.mzg

com.weimi.md.ui.login.SplashActivity

Activities

com.weimi.md.ui.login.SplashActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.weimi.md.ui.chat.ConversationActivity

android.intent.action.VIEW

com.weimi.md.ui.chat.ListConversationActivity

android.intent.action.VIEW

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.GET_TASKS
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_CONTACTS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.RECEIVE_USER_PRESENT
android.permission.WRITE_SETTINGS
android.permission.CALL_PHONE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_PHONE_STATE
android.permission.GET_TASKS
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CAMERA
android.permission.RECORD_AUDIO
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.WRITE_SETTINGS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.GET_TASKS
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.SYSTEM_ALERT_WINDOW
getui.permission.GetuiService.com.weimi.mzg
android.permission.READ_EXTERNAL_STORAGE

Receivers

com.zwb.getuilib.GeTuiPushReceiver

com.igexin.sdk.action.ZkTgZLtUMW7wYNOZsUcu96

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.igexin.sdk.PushManagerReceiver

com.igexin.sdk.action.pushmanager

com.igexin.download.DownloadReceiver

com.igexin.sdk.action.7fjUl2Z3LH6xYy7NQK4ni4
com.igexin.sdk.action.ZkTgZLtUMW7wYNOZsUcu96

com.igexin.getuiext.service.PayloadReceiver

com.igexin.sdk.action.7fjUl2Z3LH6xYy7NQK4ni4
com.igexin.sdk.action.ZkTgZLtUMW7wYNOZsUcu96

io.rong.imlib.ipc.PushMessageReceiver

io.rong.push.message

io.rong.push.PushReceiver

io.rong.imlib.action.push.heartbeat
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.BOOT_COMPLETED

Services

io.rong.push.PushService

io.rong.push

io.rong.push.CommandService

io.rong.command

Android Permissions

9af5b565a074900bf960f4677b25ab9efbbc1ef82f633d2b18d82e9f93419465

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.GET_TASKS

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_CONTACTS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.RECEIVE_USER_PRESENT

android.permission.WRITE_SETTINGS

android.permission.CALL_PHONE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_PHONE_STATE

android.permission.GET_TASKS

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CAMERA

android.permission.RECORD_AUDIO

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.WRITE_SETTINGS

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.GET_TASKS

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.SYSTEM_ALERT_WINDOW

getui.permission.GetuiService.com.weimi.mzg

android.permission.READ_EXTERNAL_STORAGE

Sharing

General

Malware Config

Signatures

Files

com.weimi.mzg

com.weimi.md.ui.login.SplashActivity

Activities

com.weimi.md.ui.login.SplashActivity

com.tencent.tauth.AuthActivity

com.weimi.md.ui.chat.ConversationActivity

com.weimi.md.ui.chat.ListConversationActivity

Permissions

Receivers

com.zwb.getuilib.GeTuiPushReceiver

com.igexin.sdk.PushReceiver

com.igexin.sdk.PushManagerReceiver

com.igexin.download.DownloadReceiver

com.igexin.getuiext.service.PayloadReceiver

io.rong.imlib.ipc.PushMessageReceiver

io.rong.push.PushReceiver

Services

io.rong.push.PushService

io.rong.push.CommandService

Android Permissions

9af5b565a074900bf960f4677b25ab9efbbc1ef82f633d2b18d82e9f93419465