9ec5a55639b789d7321734920c28e8e080b27e0f6bfbece225cf61433db167a1

General

Target

9ec5a55639b789d7321734920c28e8e080b27e0f6bfbece225cf61433db167a1
Size

4.2MB
MD5

6dd2e3115b819d1d51d4deac398e56e8
SHA1

42dd5c66b67f8f25e4237d601a780ed6dcac9020
SHA256

9ec5a55639b789d7321734920c28e8e080b27e0f6bfbece225cf61433db167a1
SHA512

c5bcb6331b9b2098953ff01dabc22ca4251219e37adfbf2eb360b23f74e04d2cacb918bacdf2774e8e6f5b1e99038b10daaeba4ae95cc53fa024d3393e2af0a5
SSDEEP

98304:ScZUkq/hc7Bp6DvDEG504UqFfyYU7k6g6DA+:Z+kOqtoTB04UqEYUAPJ+

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS

Files

9ec5a55639b789d7321734920c28e8e080b27e0f6bfbece225cf61433db167a1
.apk android arch:arm

com.fomagic.xiaomienafangkuai

cn.cmgame.billing.api.GameOpenActivity

Activities

cn.cmgame.billing.api.GameOpenActivity

android.intent.action.MAIN
android.intent.action.CHINAMOBILE_OMS_GAME

Permissions

android.permission.VIBRATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.SEND_SMS
android.permission.READ_CONTACTS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_COARSE_LOCATION
android.permission.WAKE_LOCK
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.WRITE_APN_SETTINGS
android.permission.WRITE_SETTINGS
android.permission.GET_TASKS
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.GET_ACCOUNTS
android.permission.RECEIVE_SMS
android.permission.READ_SMS

Receivers

com.xhsdk.tb.com.XHTools$SMSReceiver

lab.sodino.sms.send
lab.sodino.sms.delivery

com.xhsdk.tb.com.XHTools$ConnectStateReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.xhsdk.tb.com.SmsReceiver

android.provider.Telephony.SMS_RECEIVED

com.umeng.message.SystemReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.MessageReceiver

org.agoo.android.intent.action.RECEIVE

com.umeng.message.ElectionReceiver

org.agoo.android.intent.action.ELECTION_RESULT_V4

com.umeng.message.RegistrationReceiver

com.fomagic.xiaomienafangkuai.intent.action.COMMAND

com.umeng.message.UmengMessageBootReceiver

android.intent.action.BOOT_COMPLETED

Services

com.umeng.message.UmengService

com.fomagic.xiaomienafangkuai.intent.action.START
com.fomagic.xiaomienafangkuai.intent.action.COCKROACH
org.agoo.android.intent.action.PING_V4

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService
org.android.agoo.client.ElectionReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.unregistercallback.action
com.umeng.message.message.handler.action
com.umeng.message.autoupdate.handler.action

Android Permissions

9ec5a55639b789d7321734920c28e8e080b27e0f6bfbece225cf61433db167a1

Permissions

android.permission.VIBRATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.SEND_SMS

android.permission.READ_CONTACTS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_COARSE_LOCATION

android.permission.WAKE_LOCK

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

android.permission.WRITE_APN_SETTINGS

android.permission.WRITE_SETTINGS

android.permission.GET_TASKS

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.GET_ACCOUNTS

android.permission.RECEIVE_SMS

android.permission.READ_SMS

Sharing

General

Malware Config

Signatures

Files

com.fomagic.xiaomienafangkuai

cn.cmgame.billing.api.GameOpenActivity

Activities

cn.cmgame.billing.api.GameOpenActivity

Permissions

Receivers

com.xhsdk.tb.com.XHTools$SMSReceiver

com.xhsdk.tb.com.XHTools$ConnectStateReceiver

com.xhsdk.tb.com.SmsReceiver

com.umeng.message.SystemReceiver

com.umeng.message.MessageReceiver

com.umeng.message.ElectionReceiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengMessageBootReceiver

Services

com.umeng.message.UmengService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

9ec5a55639b789d7321734920c28e8e080b27e0f6bfbece225cf61433db167a1