9f0557064030e0db041ebff5fdbdfc15dcc43ce5d55b8e7bf9903a1e7e178bc3

General

Target

9f0557064030e0db041ebff5fdbdfc15dcc43ce5d55b8e7bf9903a1e7e178bc3
Size

8.6MB
MD5

f43d5600db0519d3adee8bba26620f92
SHA1

a4ce28bc4afb331d4c7fd19a2b83e74c41727b0d
SHA256

9f0557064030e0db041ebff5fdbdfc15dcc43ce5d55b8e7bf9903a1e7e178bc3
SHA512

1ecb2a0bf1df4aeac9d4fb6a5a611d40e88a5be2f4d5a71e74609ce513eb4a0d40da0eb5aa8aed33b43825b6b2fd95f477d9984a0100dd8366937edb92fab3b8
SSDEEP

196608:zSaI2vpEL+C1711NGLEel6l7qAxvvN6bKWIadpF1FH8+fdftq7E:RbQELz6l7qABjW3dpukFtiE

Score

6^/10

Malware Config

Signatures

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW

Files

9f0557064030e0db041ebff5fdbdfc15dcc43ce5d55b8e7bf9903a1e7e178bc3
.apk android arch:arm

com.truedian.dragon

com.truedian.dragon.activity.LaunchActivity

Activities

com.truedian.dragon.activity.LaunchActivity

android.intent.action.MAIN

com.truedian.dragon.activity.TBSWebviewActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.WEB_SEARCH

com.truedian.dragon.activity.ShareActivity

android.intent.action.SEND
android.intent.action.SEND_MULTIPLE

com.truedian.dragon.activity.MiActivity

com.truedian.dragon.intent.test

com.truedian.dragon.WBShareActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.GET_TASKS
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.CHANGE_WIFI_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.CAMERA
android.permission.RECORD_AUDIO
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_LOGS
android.permission.CALL_PHONE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.SET_DEBUG_APP
android.permission.SYSTEM_ALERT_WINDOW
android.permission.USE_CREDENTIALS
android.permission.VIBRATE
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
android.permission.READ_APP_BADGE
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
me.everything.badger.permission.BADGE_COUNT_READ
me.everything.badger.permission.BADGE_COUNT_WRITE
android.permission.WAKE_LOCK
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CHANGE_NETWORK_STATE

Receivers

com.tencent.msdk.dns.HttpDnsCache$ConnectivityChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

com.truedian.dragon.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

Services

com.truedian.dragon.service.SaveThemesService

com.truedian.dragon.service.SaveThemesService

com.truedian.dragon.service.AutoPasteService

android.accessibilityservice.AccessibilityService

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action
com.umeng.message.message.sendmessage.action
1
.apk android
9
.apk android

Android Permissions

9f0557064030e0db041ebff5fdbdfc15dcc43ce5d55b8e7bf9903a1e7e178bc3

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.GET_TASKS

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.CHANGE_WIFI_STATE

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.CAMERA

android.permission.RECORD_AUDIO

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_LOGS

android.permission.CALL_PHONE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.SET_DEBUG_APP

android.permission.SYSTEM_ALERT_WINDOW

android.permission.USE_CREDENTIALS

android.permission.VIBRATE

com.sec.android.provider.badge.permission.READ

com.sec.android.provider.badge.permission.WRITE

com.htc.launcher.permission.READ_SETTINGS

com.htc.launcher.permission.UPDATE_SHORTCUT

com.sonyericsson.home.permission.BROADCAST_BADGE

com.sonymobile.home.permission.PROVIDER_INSERT_BADGE

com.anddoes.launcher.permission.UPDATE_COUNT

com.majeur.launcher.permission.UPDATE_BADGE

com.huawei.android.launcher.permission.CHANGE_BADGE

com.huawei.android.launcher.permission.READ_SETTINGS

com.huawei.android.launcher.permission.WRITE_SETTINGS

android.permission.READ_APP_BADGE

com.oppo.launcher.permission.READ_SETTINGS

com.oppo.launcher.permission.WRITE_SETTINGS

me.everything.badger.permission.BADGE_COUNT_READ

me.everything.badger.permission.BADGE_COUNT_WRITE

android.permission.WAKE_LOCK

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.CHANGE_NETWORK_STATE

Sharing

General

Malware Config

Signatures

Files

com.truedian.dragon

com.truedian.dragon.activity.LaunchActivity

Activities

com.truedian.dragon.activity.LaunchActivity

com.truedian.dragon.activity.TBSWebviewActivity

com.truedian.dragon.activity.ShareActivity

com.truedian.dragon.activity.MiActivity

com.truedian.dragon.WBShareActivity

Permissions

Receivers

com.tencent.msdk.dns.HttpDnsCache$ConnectivityChangeReceiver

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

Services

com.truedian.dragon.service.SaveThemesService

com.truedian.dragon.service.AutoPasteService

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

9f0557064030e0db041ebff5fdbdfc15dcc43ce5d55b8e7bf9903a1e7e178bc3