95725facaf132bc9f128b45a87388caf1a95f5e24d8577f7386067d884f27c74

General

Target

95725facaf132bc9f128b45a87388caf1a95f5e24d8577f7386067d884f27c74
Size

4.8MB
MD5

b70e96dec0d0177f0d8fc292a204cb1a
SHA1

24dd7f197d5657a124cb4ffc89dcd5d15c612a97
SHA256

95725facaf132bc9f128b45a87388caf1a95f5e24d8577f7386067d884f27c74
SHA512

5a6d2f6e2e51911b79420f4467c3f7c62125a84e2c75da92b205121c648c5ffba9181b7400484011dfcaedaa7bf0c09f174dc728bde8099c16b5bbfee8d4ed38
SSDEEP

98304:4rsULiHPuJe9cs7idtpZ+jdPTS+hRswysAOOwD0nFe1K9+v67UOG/04i7XNowU:GiHP+sMtp4jdPTXsZOOrFep6IdH

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

95725facaf132bc9f128b45a87388caf1a95f5e24d8577f7386067d884f27c74
.apk android arch:arm

com.wzgftb.xk

com.androlua.Welcome

Activities

com.androlua.Main

android.intent.action.VIEW
android.intent.action.EDIT
android.intent.action.VIEW
android.intent.action.EDIT
android.intent.action.VIEW
android.intent.action.EDIT
android.intent.action.VIEW
android.intent.action.EDIT

com.androlua.LuaActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.EDIT
android.intent.action.VIEW
android.intent.action.EDIT
android.intent.action.VIEW
android.intent.action.VIEW

com.androlua.Welcome

android.intent.action.MAIN

Permissions

android.permission.UNKNOWN
android.permission.READ_PHONE_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.ACCESS_NETWORK_STATE
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN
android.permission.UNKNOWN

Services

com.androlua.LuaAccessibilityService

android.accessibilityservice.AccessibilityService

Android Permissions

95725facaf132bc9f128b45a87388caf1a95f5e24d8577f7386067d884f27c74

Permissions

android.permission.UNKNOWN

android.permission.READ_PHONE_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.UNKNOWN

android.permission.ACCESS_NETWORK_STATE

android.permission.UNKNOWN

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.UNKNOWN

Sharing

General

Malware Config

Signatures

Files

com.wzgftb.xk

com.androlua.Welcome

Activities

com.androlua.Main

com.androlua.LuaActivity

com.androlua.Welcome

Permissions

Services

com.androlua.LuaAccessibilityService

Android Permissions

95725facaf132bc9f128b45a87388caf1a95f5e24d8577f7386067d884f27c74