9b20e62c1707ea136361fb63ee8cdb7b06e03be2086230612c5cb5c12d52b420

General

Target

9b20e62c1707ea136361fb63ee8cdb7b06e03be2086230612c5cb5c12d52b420
Size

8.9MB
MD5

2eaf9799092a46eb048d62d834e1ad0c
SHA1

bc039e2155e1cc1fa46ebb729de8dfccb4972021
SHA256

9b20e62c1707ea136361fb63ee8cdb7b06e03be2086230612c5cb5c12d52b420
SHA512

043efb179fabb1e167671143b044a07f6fa786eb92f92c8ed2ef0f4bd0df5ad0fdedd867accfe201abcf1a8914294d77d1e4e188085835776f4160c3557809f0
SSDEEP

196608:d5ZylfliHXOL/3XLOOLiGHTf+q2kLVewFq/57Kw0SEXgA1vXv5y:d5Mdi3O7XLOgiGH6q2kBU5GBSc1hy

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

9b20e62c1707ea136361fb63ee8cdb7b06e03be2086230612c5cb5c12d52b420
.apk android arch:arm

com.tsf.shell

.Home

Activities

.Home

android.intent.action.MAIN

.ShellWallpaperSelector

android.intent.action.SET_WALLPAPER

Permissions

android.permission.EXPAND_STATUS_BAR
android.permission.CALL_PHONE
android.permission.READ_LOGS
com.android.vending.CHECK_LICENSE
android.permission.READ_CONTACTS
android.permission.PERSISTENT_ACTIVITY
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
com.android.browser.permission.READ_HISTORY_BOOKMARKS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RESTART_PACKAGES
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.SET_WALLPAPER
android.permission.SET_WALLPAPER_HINTS
android.permission.ACCESS_NETWORK_STATE
android.permission.BIND_APPWIDGET

Services

.services.ForegroundService

com.tsf.shell.services.FOREGROUND
shell_widget_resize_complete_button.png
.png .apk android polyglot

Android Permissions

9b20e62c1707ea136361fb63ee8cdb7b06e03be2086230612c5cb5c12d52b420

Permissions

android.permission.EXPAND_STATUS_BAR

android.permission.CALL_PHONE

android.permission.READ_LOGS

com.android.vending.CHECK_LICENSE

android.permission.READ_CONTACTS

android.permission.PERSISTENT_ACTIVITY

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.VIBRATE

android.permission.WRITE_SETTINGS

com.android.browser.permission.READ_HISTORY_BOOKMARKS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.RESTART_PACKAGES

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.SET_WALLPAPER

android.permission.SET_WALLPAPER_HINTS

android.permission.ACCESS_NETWORK_STATE

android.permission.BIND_APPWIDGET

Sharing

General

Malware Config

Signatures

Files

com.tsf.shell

.Home

Activities

.Home

.ShellWallpaperSelector

Permissions

Services

.services.ForegroundService

Android Permissions

9b20e62c1707ea136361fb63ee8cdb7b06e03be2086230612c5cb5c12d52b420