a8afdafaa31dcbb8295cfa8734b79e14ab107c14ef465811c409c35ee30bcba3

General

Target

a8afdafaa31dcbb8295cfa8734b79e14ab107c14ef465811c409c35ee30bcba3
Size

14.0MB
MD5

3470dd0e932381d454004383faa8dfc7
SHA1

8236385944189db44f9e58370aa3a64374296f5f
SHA256

a8afdafaa31dcbb8295cfa8734b79e14ab107c14ef465811c409c35ee30bcba3
SHA512

9ab60ab85093ac08e9c9af1b1cc17ef9eadd5e5d3ee27fc686dda56910e0a08f75a0e39507d37c4ab3b3cfa832402ab36db2d6f2e3a3eb4a4897b9b64621b826
SSDEEP

393216:aaSS8O8CGs+n4HhANNWzZexDkV2mSebpnhQa:SO8CGpnRkdexgsy9hz

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS

Files

a8afdafaa31dcbb8295cfa8734b79e14ab107c14ef465811c409c35ee30bcba3
.apk android arch:arm

laizi.dangbei.tvddz

.WelcomeActivity

Activities

.WelcomeActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.VIBRATE
android.permission.SEND_SMS
android.permission.WRITE_SMS
android.permission.READ_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.CHANGE_WIFI_STATE
alipay_plugin_20120428msp.apk
.apk android

com.alipay.android.app

.Cashier

Activities

.Cashier

android.intent.action.MAIN

.Alerter

android.intent.action.MAIN

.Welcome

android.intent.action.MAIN

.Updater

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.ACCESS_COARSE_LOCATION
com.aliyun.xiaoyunmi.alipay

Receivers

.AlixReceiver

com.aliyun.xiaoyunmi.alipay_exit

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay
laizi_hall.apk
.apk android

com.laizi.hall

com.laizi.main.Main

Activities

com.laizi.main.Main

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.RESTART_PACKAGES
android.permission.SEND_SMS
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.DISABLE_KEYGUARD

Receivers

com.laizi.broadcast.InstallBroadCast

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

Android Permissions

a8afdafaa31dcbb8295cfa8734b79e14ab107c14ef465811c409c35ee30bcba3

Permissions

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.VIBRATE

android.permission.SEND_SMS

android.permission.WRITE_SMS

android.permission.READ_SMS

android.permission.ACCESS_WIFI_STATE

android.permission.GET_TASKS

android.permission.CHANGE_WIFI_STATE

Sharing

General

Malware Config

Signatures

Files

laizi.dangbei.tvddz

.WelcomeActivity

Activities

.WelcomeActivity

Permissions

com.alipay.android.app

.Cashier

Activities

.Cashier

.Alerter

.Welcome

.Updater

Permissions

Receivers

.AlixReceiver

Services

.AlixService

com.laizi.hall

com.laizi.main.Main

Activities

com.laizi.main.Main

Permissions

Receivers

com.laizi.broadcast.InstallBroadCast

Android Permissions

a8afdafaa31dcbb8295cfa8734b79e14ab107c14ef465811c409c35ee30bcba3