6cfc051be94e0c97d12507bb5545c5fc

General

Target

6cfc051be94e0c97d12507bb5545c5fc
Size

13.8MB
MD5

6cfc051be94e0c97d12507bb5545c5fc
SHA1

131a0f0b52f3b4e35c2c5145a6039813c12c2fec
SHA256

9b3130cfbfc650d603b185fb980bfae2c65579bbac051042629c3b7c8f85e6bd
SHA512

db7d9995e5664c1f46274845f4975c72eaddd5a667914d91dd58ec15ec2a0fdb8babd7a73f40d959b424f7d74c01dab7900141660f82dcac4e3944b9acd43c08
SSDEEP

393216:fLUWm/jRafzrhSIrp46FHk0gptJW19WqWh0p:fLUWmrsf3sIFbdAJW19WqWup

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

6cfc051be94e0c97d12507bb5545c5fc
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.ruiyitisv

com.qihoo.util.StartActivity

Activities

com.ruiyitisv.activity.SpalshActivity

android.intent.action.MAIN

com.qihoo.util.StartActivity

android.intent.action.MAIN

Permissions

android.permission.SYSTEM_ALERT_WINDOW
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CLOUDPOS_PINPAD
android.permission.CLOUDPOS_PRINTER
android.permission.CLOUDPOS_CONTACTLESS_CARD
android.permission.CLOUDPOS_MSR
android.permission.CLOUDPOS_LED
android.permission.CLOUDPOS_SAFE_MODULE
android.permission.CLOUDPOS_SMARTCARD
android.permission.CLOUDPOS_PIN_GET_PIN_BLOCK
android.permission.CLOUDPOS_PIN_MAC
android.permission.CLOUDPOS_PIN_ENCRYPT_DATA
android.permission.CLOUDPOS_PIN_UPDATE_USER_KEY
android.permission.CLOUDPOS_PIN_UPDATE_MASTER_KEY
android.permission.CLOUDPOS_EMV
android.permission.CUSTOM_APP
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_LOGS

Receivers

Services

Android Permissions

6cfc051be94e0c97d12507bb5545c5fc

Permissions

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CLOUDPOS_PINPAD

android.permission.CLOUDPOS_PRINTER

android.permission.CLOUDPOS_CONTACTLESS_CARD

android.permission.CLOUDPOS_MSR

android.permission.CLOUDPOS_LED

android.permission.CLOUDPOS_SAFE_MODULE

android.permission.CLOUDPOS_SMARTCARD

android.permission.CLOUDPOS_PIN_GET_PIN_BLOCK

android.permission.CLOUDPOS_PIN_MAC

android.permission.CLOUDPOS_PIN_ENCRYPT_DATA

android.permission.CLOUDPOS_PIN_UPDATE_USER_KEY

android.permission.CLOUDPOS_PIN_UPDATE_MASTER_KEY

android.permission.CLOUDPOS_EMV

android.permission.CUSTOM_APP

android.permission.CAMERA

android.permission.FLASHLIGHT

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.READ_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_LOGS

Sharing

General

Malware Config

Signatures

Files

com.ruiyitisv

com.qihoo.util.StartActivity

Activities

com.ruiyitisv.activity.SpalshActivity

com.qihoo.util.StartActivity

Permissions

Receivers

Services

Android Permissions

6cfc051be94e0c97d12507bb5545c5fc