9d5aca86d1bf39d7d0d8b2c4c1e4ff380a05cf7e1be5ebf5946e0f951ea1f8b7

General

Target

9d5aca86d1bf39d7d0d8b2c4c1e4ff380a05cf7e1be5ebf5946e0f951ea1f8b7
Size

24.5MB
MD5

f1a3014568171d46ead26c503d7abdf9
SHA1

13e7f1b3f8dbf5dea5d85db8eca29f8216016640
SHA256

9d5aca86d1bf39d7d0d8b2c4c1e4ff380a05cf7e1be5ebf5946e0f951ea1f8b7
SHA512

04d8bfb0f537ff16791334f1207cf715e8f811775da572eb705567d3bf709ff84fed0ca156bd033f35d7354708b4f07ad92d5f3a28f7152333b32c7c3f733c4d
SSDEEP

786432:ntYpw0dqWOSy5ed24OFKVMpjuujdEcJ6eltHXtL6pEvV5B3:n+pPry5eeFKV4utpYdLlvVf3

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Required to be able to access the camera device.	android.permission.CAMERA
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

9d5aca86d1bf39d7d0d8b2c4c1e4ff380a05cf7e1be5ebf5946e0f951ea1f8b7
.apk android arch:arm arch:x86

net.duohuo.magapp.ashajj

net.duohuo.magappx.main.WelcomeActivity

Activities

net.duohuo.magappx.main.WelcomeActivity

android.intent.action.MAIN

net.duohuo.magappx.main.IndexTabActivity

android.intent.action.VIEW

com.umeng.qq.tencent.AuthActivity

android.intent.action.VIEW

net.duohuo.magapp.WBShareActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

net.duohuo.magappx.common.activity.YouzanActivity

android.intent.action.VIEW

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.RESTART_PACKAGES
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_PHONE_STATE
android.permission.READ_LOGS
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.Manifest.permission.STATUS_BAR
android.Manifest.permission.EXPAND_STATUS_BAR
android.Manifest.permission.STATUS_BAR_SERVICE
android.permission.GET_TASKS
android.permission.WAKE_LOCK
android.permission.RECEIVE_USER_PRESENT
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.AUTHENTICATE_ACCOUNTS
com.android.launcher.permission.READ_SETTINGS
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.BROADCAST_STICKY
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.CHANGE_NETWORK_STATE
android.permission.READ_SETTINGS
android.permission.READ_CONTACTS
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT

Receivers

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

net.duohuo.magapp.ashajj.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

com.alibaba.tcms.gcm.GCMBroadcastReceiver

com.alibaba.gcm.MSG_BROADCAST

com.alibaba.tcms.mipush.MiPushBroadcastReceiver

com.alibaba.mipush.MSG_BROADCAST

com.alibaba.tcms.hwpush.HWBroadcastReceiver

com.alibaba.hwpush.action_token
com.alibaba.hwpush.action_msg

Services

com.baidu.location.f

com.baidu.location.service_v2.4

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action

Android Permissions

9d5aca86d1bf39d7d0d8b2c4c1e4ff380a05cf7e1be5ebf5946e0f951ea1f8b7

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.RESTART_PACKAGES

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_PHONE_STATE

android.permission.READ_LOGS

android.permission.RECORD_AUDIO

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.Manifest.permission.STATUS_BAR

android.Manifest.permission.EXPAND_STATUS_BAR

android.Manifest.permission.STATUS_BAR_SERVICE

android.permission.GET_TASKS

android.permission.WAKE_LOCK

android.permission.RECEIVE_USER_PRESENT

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.CAMERA

android.permission.FLASHLIGHT

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.AUTHENTICATE_ACCOUNTS

com.android.launcher.permission.READ_SETTINGS

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.BROADCAST_STICKY

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.CHANGE_NETWORK_STATE

android.permission.READ_SETTINGS

android.permission.READ_CONTACTS

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

Sharing

General

Malware Config

Signatures

Files

net.duohuo.magapp.ashajj

net.duohuo.magappx.main.WelcomeActivity

Activities

net.duohuo.magappx.main.WelcomeActivity

net.duohuo.magappx.main.IndexTabActivity

com.umeng.qq.tencent.AuthActivity

net.duohuo.magapp.WBShareActivity

net.duohuo.magappx.common.activity.YouzanActivity

Permissions

Receivers

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

com.alibaba.tcms.gcm.GCMBroadcastReceiver

com.alibaba.tcms.mipush.MiPushBroadcastReceiver

com.alibaba.tcms.hwpush.HWBroadcastReceiver

Services

com.baidu.location.f

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

9d5aca86d1bf39d7d0d8b2c4c1e4ff380a05cf7e1be5ebf5946e0f951ea1f8b7