96c58757d620f467732e504e7761062567a823325b8619658f8cf4e94a5f4c18

General

Target

96c58757d620f467732e504e7761062567a823325b8619658f8cf4e94a5f4c18
Size

21.8MB
MD5

9d577483b6c063e99e76c71d2d48b0e1
SHA1

5a3bf4e4d9daa3654b6348b3e6782bf1be57e2f8
SHA256

96c58757d620f467732e504e7761062567a823325b8619658f8cf4e94a5f4c18
SHA512

a6d0948e156f62142b723b6c5b98cfa355c02106b05b48d9b389ddb13156b2bf37db920994f88885374a3469242bc18c937d5e525fd5c50d774b1b57502a87ec
SSDEEP

393216:oR2yvbZFNpFCNre544Lj7rLC49V2Shlcx/xeyeHAmDu3WsJSI917MEoCaJUONr9r:obvtF0oy4L7Lz/hlcx/xeyhmqbSA7Dgz

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Required to be able to access the camera device.	android.permission.CAMERA

Files

96c58757d620f467732e504e7761062567a823325b8619658f8cf4e94a5f4c18
.apk android arch:arm arch:x86

com.itings.myradio

com.kaolafm.home.FlashActivity

Activities

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

com.kaolafm.home.FlashActivity

android.intent.action.VIEW
android.intent.action.MAIN

com.kaolafm.home.HomeActivity

android.intent.action.MAIN
com.baidu.carlife.platform.ak7f09dca065
com.kaolafm.vehicle.action.NEU

com.kaolafm.home.DispatchActivity

android.intent.action.MAIN

com.kaolafm.alarmclock.HandleSetAlarm

android.intent.action.SET_ALARM

Permissions

com.itings.myradio.permission.JPUSH_MESSAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WRITE_SETTINGS
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_COARSE_UPDATES
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.CHANGE_NETWORK_STATE
android.permission.GET_TASKS
com.android.launcher.permission.READ_SETTINGS
android.permission.CALL_PHONE
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher2.permission.READ_SETTINGS
com.android.launcher2.permission.WRITE_SETTINGS
com.android.launcher3.permission.READ_SETTINGS
com.android.launcher3.permission.WRITE_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.WRITE_SETTINGS
org.adw.launcher.permission.READ_SETTINGS
org.adw.launcher.permission.WRITE_SETTINGS
com.qihoo360.launcher.permission.READ_SETTINGS
com.qihoo360.launcher.permission.WRITE_SETTINGS
com.lge.launcher.permission.READ_SETTINGS
com.lge.launcher.permission.WRITE_SETTINGS
net.qihoo.launcher.permission.READ_SETTINGS
net.qihoo.launcher.permission.WRITE_SETTINGS
org.adwfreak.launcher.permission.READ_SETTINGS
org.adwfreak.launcher.permission.WRITE_SETTINGS
org.adw.launcher_donut.permission.READ_SETTINGS
org.adw.launcher_donut.permission.WRITE_SETTINGS
com.huawei.launcher3.permission.READ_SETTINGS
com.huawei.launcher3.permission.WRITE_SETTINGS
com.fede.launcher.permission.READ_SETTINGS
com.fede.launcher.permission.WRITE_SETTINGS
com.sec.android.app.twlauncher.settings.READ_SETTINGS
com.sec.android.app.twlauncher.settings.WRITE_SETTINGS
com.anddoes.launcher.permission.READ_SETTINGS
com.anddoes.launcher.permission.WRITE_SETTINGS
com.tencent.qqlauncher.permission.READ_SETTINGS
com.tencent.qqlauncher.permission.WRITE_SETTINGS
com.huawei.launcher2.permission.READ_SETTINGS
com.huawei.launcher2.permission.WRITE_SETTINGS
com.android.mylauncher.permission.READ_SETTINGS
com.android.mylauncher.permission.WRITE_SETTINGS
com.ebproductions.android.launcher.permission.READ_SETTINGS
com.ebproductions.android.launcher.permission.WRITE_SETTINGS
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
telecom.mdesk.permission.READ_SETTINGS
telecom.mdesk.permission.WRITE_SETTINGS
dianxin.permission.ACCESS_LAUNCHER_DATA
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.DISABLE_KEYGUARD
android.permission.RECORD_AUDIO
android.permission.PROCESS_OUTGOING_CALLS
android.permission.CHANGE_CONFIGURATION
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.FLASHLIGHT
android.permission.CAMERA
com.itings.myradio.permission.RECEIVE_MSG
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.READ_LOGS

Receivers

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

cn.jpush.android.service.AlarmReceiver

com.cn.daming.deskclock.ALARM_ALERT
alarm_killed
cancel_snooze

com.kaolafm.receiver.JpushReceiver

cn.jpush.android.intent.REGISTRATION
cn.jpush.android.intent.MESSAGE_RECEIVED
cn.jpush.android.intent.NOTIFICATION_RECEIVED
cn.jpush.android.intent.NOTIFICATION_OPENED
cn.jpush.android.intent.ACTION_RICHPUSH_CALLBACK
cn.jpush.android.intent.CONNECTION

com.kaolafm.receiver.UpateSystemDateReceiver

android.intent.action.DATE_CHANGED
android.intent.action.TIME_SET

com.kaolafm.traffic.TrafficBindReceiver

com.kaolafm.traffic.REBIND_DEVICE
com.kaolafm.traffic.REBIND_SIM

com.kaolafm.alarmclock.AlarmInitReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED
android.intent.action.LOCALE_CHANGED

com.kaolafm.alarmclock.AlarmReceiver

com.cn.daming.deskclock.ALARM_ALERT
alarm_killed
cancel_snooze

com.kaolafm.receiver.MyRemoteControlEventReceiver

android.intent.action.MEDIA_BUTTON

com.itings.myradio.auto.plugin.AutoDownloadAppSuccessReceiver

android.intent.action.DOWNLOAD_COMPLETE

com.itings.myradio.wxapi.AppRegister

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

com.auto.kaolafm.BlueToothReceiver

android.bluetooth.device.action.ACL_DISCONNECTED
android.bluetooth.device.action.ACL_CONNECTED

com.netease.nimlib.service.NimReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE

Services

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

cn.jpush.android.service.DaemonService

cn.jpush.android.intent.DaemonService

com.kaolafm.alarmclock.AlarmKlaxon

com.cn.daming.deskclock.ALARM_ALERT

com.itings.myradio.auto.plugin.CarLifeService

com.baidu.carlife.platform.ak7f09dca065

com.auto.ford.FordService

com.itings.myradio.ford.action
com.itings.myradio.ford.close

com.itings.myradio.neu.NeuService

com.itings.myradio.neu.action
com.itings.myradio.neu.close
com.vehicle.action.playerneu.client
libcom_itings_myradio_ford_104.so
.apk android

com.itings.myradio.ford

com.auto.ford.MainActivity

Activities

com.auto.ford.MainActivity

android.intent.action.MAIN

Permissions

android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WAKE_LOCK

Receivers

com.auto.ford.SyncReceiver

android.bluetooth.device.action.ACL_DISCONNECTED
android.bluetooth.device.action.ACL_CONNECTED

Services

com.auto.ford.FordService

com.itings.myradio.ford.action
com.itings.myradio.ford.close
libcom_itings_myradio_neu_104.so
.apk android arch:arm

com.itings.myradio.neu

com.itings.myradio.neu.MainActivity

Activities

com.itings.myradio.neu.MainActivity

android.intent.action.MAIN

com.cong.cly.koalafmjar.MainActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WAKE_LOCK

Services

com.itings.myradio.neu.NeuService

com.itings.myradio.neu.action
com.vehicle.action.playerneu.client

Android Permissions

96c58757d620f467732e504e7761062567a823325b8619658f8cf4e94a5f4c18

Permissions

com.itings.myradio.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_NETWORK_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WRITE_SETTINGS

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_COARSE_UPDATES

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.CHANGE_NETWORK_STATE

android.permission.GET_TASKS

com.android.launcher.permission.READ_SETTINGS

android.permission.CALL_PHONE

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.WRITE_SETTINGS

com.android.launcher2.permission.READ_SETTINGS

com.android.launcher2.permission.WRITE_SETTINGS

com.android.launcher3.permission.READ_SETTINGS

com.android.launcher3.permission.WRITE_SETTINGS

com.htc.launcher.permission.READ_SETTINGS

com.htc.launcher.permission.WRITE_SETTINGS

org.adw.launcher.permission.READ_SETTINGS

org.adw.launcher.permission.WRITE_SETTINGS

com.qihoo360.launcher.permission.READ_SETTINGS

com.qihoo360.launcher.permission.WRITE_SETTINGS

com.lge.launcher.permission.READ_SETTINGS

com.lge.launcher.permission.WRITE_SETTINGS

net.qihoo.launcher.permission.READ_SETTINGS

net.qihoo.launcher.permission.WRITE_SETTINGS

org.adwfreak.launcher.permission.READ_SETTINGS

org.adwfreak.launcher.permission.WRITE_SETTINGS

org.adw.launcher_donut.permission.READ_SETTINGS

org.adw.launcher_donut.permission.WRITE_SETTINGS

com.huawei.launcher3.permission.READ_SETTINGS

com.huawei.launcher3.permission.WRITE_SETTINGS

com.fede.launcher.permission.READ_SETTINGS

com.fede.launcher.permission.WRITE_SETTINGS

com.sec.android.app.twlauncher.settings.READ_SETTINGS

com.sec.android.app.twlauncher.settings.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.itings.myradio

com.kaolafm.home.FlashActivity

Activities

com.tencent.tauth.AuthActivity

cn.jpush.android.ui.PushActivity

com.kaolafm.home.FlashActivity

com.kaolafm.home.HomeActivity

com.kaolafm.home.DispatchActivity

com.kaolafm.alarmclock.HandleSetAlarm

Permissions

Receivers

cn.jpush.android.service.PushReceiver

cn.jpush.android.service.AlarmReceiver

com.kaolafm.receiver.JpushReceiver

com.kaolafm.receiver.UpateSystemDateReceiver

com.kaolafm.traffic.TrafficBindReceiver

com.kaolafm.alarmclock.AlarmInitReceiver

com.kaolafm.alarmclock.AlarmReceiver

com.kaolafm.receiver.MyRemoteControlEventReceiver

com.itings.myradio.auto.plugin.AutoDownloadAppSuccessReceiver

com.itings.myradio.wxapi.AppRegister

com.auto.kaolafm.BlueToothReceiver

com.netease.nimlib.service.NimReceiver

Services

cn.jpush.android.service.PushService

cn.jpush.android.service.DaemonService

com.kaolafm.alarmclock.AlarmKlaxon

com.itings.myradio.auto.plugin.CarLifeService

com.auto.ford.FordService

com.itings.myradio.neu.NeuService

com.itings.myradio.ford

com.auto.ford.MainActivity

Activities

com.auto.ford.MainActivity

Permissions

Receivers

com.auto.ford.SyncReceiver

Services

com.auto.ford.FordService

com.itings.myradio.neu

com.itings.myradio.neu.MainActivity

Activities

com.itings.myradio.neu.MainActivity

com.cong.cly.koalafmjar.MainActivity

Permissions

Services

com.itings.myradio.neu.NeuService

Android Permissions

96c58757d620f467732e504e7761062567a823325b8619658f8cf4e94a5f4c18