a837b54a269a159986e23c9a3fc5f6547029ce227895db482b9fa9530a218860

General

Target

a837b54a269a159986e23c9a3fc5f6547029ce227895db482b9fa9530a218860
Size

23.7MB
MD5

ec7d32ca386367ba15ec0dfce4a291df
SHA1

9e5b2c8e5e3fb6342534b6dbc608f9b8bcbd92d8
SHA256

a837b54a269a159986e23c9a3fc5f6547029ce227895db482b9fa9530a218860
SHA512

419c0c90595387777d5d63c500e96249f8469652e51cef29f8b09a6e2d3d770876c2b40bdb5590a2e028e24503cec73f120f73a4a5816f9fd52790353a8a152d
SSDEEP

393216:K5P6MQRlWWGVlqgX8Q6e1usAF3P+UktsEGSO3mmlMbDeoUazxz8q4JhSQCFSVN9d:3MiJGL/879sICtTGT3lMbqoUazxQq4yo

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

a837b54a269a159986e23c9a3fc5f6547029ce227895db482b9fa9530a218860
.apk android arch:arm

com.yifeng.bowmanstay

com.yifeng.LoginActivity

Activities

com.yifeng.LoginActivity

android.intent.action.MAIN

Permissions

android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_WIFI_STATE
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.DISABLE_KEYGUARD
android.permission.CHANGE_CONFIGURATION
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.RUN_INSTRUMENTATION
android.permission.GET_TASKS
android.permission.MODIFY_AUDIO_SETTINGS
android.webkit.permission.PLUGIN
android.permission.READ_LOGS
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.REORDER_TASKS
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

Services
gdtadv2.jar
.apk android arch:arm arch:arm64

Android Permissions

a837b54a269a159986e23c9a3fc5f6547029ce227895db482b9fa9530a218860

Permissions

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_WIFI_STATE

android.permission.AUTHENTICATE_ACCOUNTS

android.permission.READ_EXTERNAL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.DISABLE_KEYGUARD

android.permission.CHANGE_CONFIGURATION

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.RUN_INSTRUMENTATION

android.permission.GET_TASKS

android.permission.MODIFY_AUDIO_SETTINGS

android.webkit.permission.PLUGIN

android.permission.READ_LOGS

android.permission.VIBRATE

android.permission.WRITE_SETTINGS

android.permission.REORDER_TASKS

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

Sharing

General

Malware Config

Signatures

Files

com.yifeng.bowmanstay

com.yifeng.LoginActivity

Activities

com.yifeng.LoginActivity

Permissions

Services

Android Permissions

a837b54a269a159986e23c9a3fc5f6547029ce227895db482b9fa9530a218860