099d3c2ea344eb80bb83a56013cb8cb582bc7e2fed5ea6965824a1ee562e76d2

General

Target

099d3c2ea344eb80bb83a56013cb8cb582bc7e2fed5ea6965824a1ee562e76d2
Size

13.0MB
MD5

d938de02940a33e1878a22a5095a5144
SHA1

15c31cdf3f942199f52c5c5450ca451c7a2b94ce
SHA256

099d3c2ea344eb80bb83a56013cb8cb582bc7e2fed5ea6965824a1ee562e76d2
SHA512

e118ac732fe01bb81ac29f3d14639ce1a549c27fd824700c1d14c12ffbe4b52ac18b69a2ed3dc10aeae245df919f0ecd177c23082f502bd1eecc64df40d1e26d
SSDEEP

393216:zZhud71BZYJeTeTGf4JL13ID4Vr9AJHyrM4vD21YnJbCHn:mh1zYSe9NmJHyDL213Hn

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 24 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Required to be able to access the camera device.	android.permission.CAMERA

Files

099d3c2ea344eb80bb83a56013cb8cb582bc7e2fed5ea6965824a1ee562e76d2
.apk android arch:arm arch:mips arch:x86

cgtz.com.cgtz

cgtz.com.cgtz.ui.StartActivity

Activities

cgtz.com.cgtz.ui.StartActivity

android.intent.action.MAIN
android.intent.action.VIEW
android.intent.action.VIEW

cgtz.com.cgtz.ui.MainActivity

cgtz.MainAt

cn.jpush.android.ui.PushActivity

cn.jpush.android.ui.PushActivity

com.mob.tools.MobUIShell

android.intent.action.VIEW
com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

Permissions

android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.GET_TASKS
android.permission.SEND_SMS
android.permission.UPDATE_APP_OPS_STATS
cgtz.com.cgtz.permission.JPUSH_MESSAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.BROADCAST_STICKY
android.permission.WRITE_SETTINGS
android.permission.VIBRATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.DISABLE_KEYGUARD
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_CONFIGURATION
android.permission.READ_CONTACTS
android.permission.WAKE_LOCK
android.permission.CHANGE_NETWORK_STATE
com.xisue.zhoumo.permission.MIPUSH_RECEIVE
android.permission.RECEIVE_USER_PRESENT
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_COARSE_UPDATES
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.ACCESS_FINE_LOCATION
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.CLEAR_APP_CACHE
android.permission.BLUETOOTH
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.READ_LOGS
android.permission.CALL_PHONE
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.GET_TASKS
android.permission.SET_DEBUG_APP
android.permission.SYSTEM_ALERT_WINDOW
android.permission.GET_ACCOUNTS
android.permission.USE_CREDENTIALS
android.permission.MANAGE_ACCOUNTS
android.permission.RESTART_PACKAGES
cgtz.com.cgtz.permission.PUSH_SERVICE
android.permission.GET_TASKS
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.READ_CONTACTS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.CAMERA

Receivers

cgtz.com.cgtz.receiver.Provinces_Observer

provinces

cgtz.com.cgtz.receiver.NetWorkReceiver

android.net.conn.CONNECTIVITY_CHANGE

cn.jpush.android.service.PushReceiver

cn.jpush.android.intent.NOTIFICATION_RECEIVED_PROXY
android.intent.action.USER_PRESENT
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

cgtz.com.cgtz.receiver.MyJPushReceiver

cn.jpush.android.intent.REGISTRATION
cn.jpush.android.intent.UNREGISTRATION
cn.jpush.android.intent.MESSAGE_RECEIVED
cn.jpush.android.intent.NOTIFICATION_RECEIVED
cn.jpush.android.intent.NOTIFICATION_OPENED
cn.jpush.android.intent.ACTION_RICHPUSH_CALLBACK
cn.jpush.android.intent.CONNECTION

Services

cn.jpush.android.service.PushService

cn.jpush.android.intent.REGISTER
cn.jpush.android.intent.REPORT
cn.jpush.android.intent.PushService
cn.jpush.android.intent.PUSH_TIME

Android Permissions

099d3c2ea344eb80bb83a56013cb8cb582bc7e2fed5ea6965824a1ee562e76d2

Permissions

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.GET_TASKS

android.permission.SEND_SMS

android.permission.UPDATE_APP_OPS_STATS

cgtz.com.cgtz.permission.JPUSH_MESSAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.BROADCAST_STICKY

android.permission.WRITE_SETTINGS

android.permission.VIBRATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.DISABLE_KEYGUARD

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_CONFIGURATION

android.permission.READ_CONTACTS

android.permission.WAKE_LOCK

android.permission.CHANGE_NETWORK_STATE

com.xisue.zhoumo.permission.MIPUSH_RECEIVE

android.permission.RECEIVE_USER_PRESENT

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_COARSE_UPDATES

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.ACCESS_FINE_LOCATION

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.CLEAR_APP_CACHE

android.permission.BLUETOOTH

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.READ_LOGS

android.permission.CALL_PHONE

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.GET_TASKS

android.permission.SET_DEBUG_APP

android.permission.SYSTEM_ALERT_WINDOW

android.permission.GET_ACCOUNTS

android.permission.USE_CREDENTIALS

android.permission.MANAGE_ACCOUNTS

android.permission.RESTART_PACKAGES

cgtz.com.cgtz.permission.PUSH_SERVICE

Sharing

General

Malware Config

Signatures

Files

cgtz.com.cgtz

cgtz.com.cgtz.ui.StartActivity

Activities

cgtz.com.cgtz.ui.StartActivity

cgtz.com.cgtz.ui.MainActivity

cn.jpush.android.ui.PushActivity

com.mob.tools.MobUIShell

Permissions

Receivers

cgtz.com.cgtz.receiver.Provinces_Observer

cgtz.com.cgtz.receiver.NetWorkReceiver

cn.jpush.android.service.PushReceiver

cgtz.com.cgtz.receiver.MyJPushReceiver

Services

cn.jpush.android.service.PushService

Android Permissions

099d3c2ea344eb80bb83a56013cb8cb582bc7e2fed5ea6965824a1ee562e76d2