Overview

overview

8

Static

static

8

995f85a74b...1e.apk

 

amap_resou..._0.apk

 

amap_resou..._0.apk

android-10-x64

amap_resou..._0.apk

android-11-x64

Sharing

Copy URL Twitter E-mail

General

  • Target

    995f85a74b8bc22c39716f72a698413178a36511a3ef890f05ba04f52a05011e

  • Size

    24.6MB

  • MD5

    2d1e678a21acecb09d9f586bbc086e4b

  • SHA1

    dea2b947c544fce96c8094cc0b279a3cc97896d4

  • SHA256

    995f85a74b8bc22c39716f72a698413178a36511a3ef890f05ba04f52a05011e

  • SHA512

    18274126bdc12ef1548d9fed84ea759958bab650e1a0bf95c1fe1d599e1ab9223bdd06d66d4b7544e75678fb0839b5880c3c659855fb6dfa2e13b4eb5b5c0e28

  • SSDEEP

    786432:HmeOKq0waHL5rcQIARWB+n4Sks9ARWBBn4S1l+PQU:HmeOcwGl9JRln4ztRSn4O0QU

Score
8/10
upx

Malware Config

Signatures

  • Patched UPX-packed file 2 IoCs

    Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Requests dangerous framework permissions 14 IoCs

Files

  • 995f85a74b8bc22c39716f72a698413178a36511a3ef890f05ba04f52a05011e
    .apk android arch:arm

    com.jxsx.yiqi

    com.jxps.yiqi.activity.LauncherActivity


  • amap_resource1_0_0.png
    .apk android

    com.amap.api.map3d


Android Permissions

995f85a74b8bc22c39716f72a698413178a36511a3ef890f05ba04f52a05011e

Permissions

android.permission.ACCESS_COARSE_LOCATION

android.permission.CAMERA

android.permission.READ_CONTACTS

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.GET_TASKS

android.permission.ACCESS_FINE_LOCATION

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.RECORD_AUDIO

com.jxps.yiqi.permission.JPUSH_MESSAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_SETTINGS

android.permission.ACCESS_WIFI_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.CHANGE_NETWORK_STATE

android.permission.READ_CALENDAR

android.permission.WRITE_CALENDAR

com.jxsx.yiqi.permission.JPUSH_MESSAGE

android.permission.FLASHLIGHT