9be03df399bc9269bf8a2414e7e32aec6139a432ed4c619f0c312cb3eacdaeb8

General

Target

9be03df399bc9269bf8a2414e7e32aec6139a432ed4c619f0c312cb3eacdaeb8
Size

7.4MB
MD5

af911cafba9d29596e51a60669935461
SHA1

75e58d9072b0203f9f2c6044c233cb4dee5b93fa
SHA256

9be03df399bc9269bf8a2414e7e32aec6139a432ed4c619f0c312cb3eacdaeb8
SHA512

159367bfe2488ffa53638aff491c531d6a6c391a5ee0bc560aa4c4d6916ba6975d3258aa5ffade5bf2e0834df0d749270cad747eae286115540967a43f69df58
SSDEEP

196608:z/YM/AFef5K4751F5LEfTOEUTKyjcdSgUp27fw55KcQl6PtnnJAZdcj/x7WKC3a5:zw8AFeBK4fEfTOEbyjgSgYqg5KcYOtnX

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

9be03df399bc9269bf8a2414e7e32aec6139a432ed4c619f0c312cb3eacdaeb8
.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

com.vivo.doctors

com.vivo.doctors.MainActivity

Activities

com.vivo.doctors.MainActivity

android.intent.action.MAIN
android.appwidget.action.APPWIDGET_UPDATE

com.vivo.remoteassistance.activity.RemoteHelpActivity

com.vivo.RemoteAssistance.REQUEST_HELP

com.vivo.remoteassistance.ControlActivity

com.vivo.RemoteAssistance.CONTROL

com.vivo.remoteassistance.activity.ChatActivity

com.vivo.remoteassistance.CHAT

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.WRITE_MEDIA_STORAGE
android.permission.READ_PHONE_STATE
android.permission.GET_PACKAGE_SIZE
android.permission.INTERNET
android.permission.BATTERY_STATS
android.permission.GET_TASKS
android.permission.DELETE_CACHE_FILES
android.permission.DELETE_PACKAGES
android.permission.FORCE_STOP_PACKAGES
android.permission.MASTER_CLEAR
android.permission.WRITE_SETTINGS
android.permission.WAKE_LOCK
android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.DUMP
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_ALL_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_SUPERUSER
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_SURFACE_FLINGER
android.permission.READ_FRAME_BUFFER
android.permission.INJECT_EVENTS
android.permission.READ_LOGS
android.permission.READ_CONTACTS
android.permission.WRITE_SECURE_SETTINGS
android.permission.READ_SETTINGS
android.permission.SET_ORIENTATION
android.permission.MANAGE_DOCUMENTS

Receivers

com.vivo.doctors.ActiveHelperReceiver

vivo.intent.action.ACTIVEORSTARTHELPER

com.vivo.remoteassistance.StartServiceAtBootReceiver

android.intent.action.BOOT_COMPLETED

Services

com.vivo.doctors.securedaemonservice.KillAppsService

com.vivo.doctors.KILL_APPS_SERVICE

com.vivo.uplog.UpLogService

com.vivo.uplog.MainService.START

com.vivo.remoteassistance.ServerManager

com.vivo.RemoteAssistance.ServerManager

com.vivo.remoteassistance.service.ControlKeepAliveService

com.vivo.RemoteAssistance.service.ControlKeepAliveService

Android Permissions

9be03df399bc9269bf8a2414e7e32aec6139a432ed4c619f0c312cb3eacdaeb8

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.WRITE_MEDIA_STORAGE

android.permission.READ_PHONE_STATE

android.permission.GET_PACKAGE_SIZE

android.permission.INTERNET

android.permission.BATTERY_STATS

android.permission.GET_TASKS

android.permission.DELETE_CACHE_FILES

android.permission.DELETE_PACKAGES

android.permission.FORCE_STOP_PACKAGES

android.permission.MASTER_CLEAR

android.permission.WRITE_SETTINGS

android.permission.WAKE_LOCK

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.DUMP

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_ALL_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_SUPERUSER

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_SURFACE_FLINGER

android.permission.READ_FRAME_BUFFER

android.permission.INJECT_EVENTS

android.permission.READ_LOGS

android.permission.READ_CONTACTS

android.permission.WRITE_SECURE_SETTINGS

android.permission.READ_SETTINGS

android.permission.SET_ORIENTATION

android.permission.MANAGE_DOCUMENTS

Sharing

General

Malware Config

Signatures

Files

com.vivo.doctors

com.vivo.doctors.MainActivity

Activities

com.vivo.doctors.MainActivity

com.vivo.remoteassistance.activity.RemoteHelpActivity

com.vivo.remoteassistance.ControlActivity

com.vivo.remoteassistance.activity.ChatActivity

Permissions

Receivers

com.vivo.doctors.ActiveHelperReceiver

com.vivo.remoteassistance.StartServiceAtBootReceiver

Services

com.vivo.doctors.securedaemonservice.KillAppsService

com.vivo.uplog.UpLogService

com.vivo.remoteassistance.ServerManager

com.vivo.remoteassistance.service.ControlKeepAliveService

Android Permissions

9be03df399bc9269bf8a2414e7e32aec6139a432ed4c619f0c312cb3eacdaeb8