0abf9447c0d6717bd6114aeb2c5859c95af9d6aeb2dcb04def62ca7146b17d56

General

Target

0abf9447c0d6717bd6114aeb2c5859c95af9d6aeb2dcb04def62ca7146b17d56
Size

15.9MB
MD5

3b4d27b287ac8e3f3ebe7b269da46d78
SHA1

55c9144f00a64de4b22669517a023be9cbb7bebb
SHA256

0abf9447c0d6717bd6114aeb2c5859c95af9d6aeb2dcb04def62ca7146b17d56
SHA512

f9d9703c89349ab4b48e9dc7860fe3aabda0c11d43188ad3e7a84d6e9730cbd80c216dde15efbadd617456a99cd89958205823f09f85aa24488f2bca09fc1c41
SSDEEP

393216:rijaMUgkgS4rwHzwgEMUH+403ngwIrgnppUoDZE521k:riuFWrwUg8503ntIUbUkEYk

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 12 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

0abf9447c0d6717bd6114aeb2c5859c95af9d6aeb2dcb04def62ca7146b17d56
.apk android arch:arm

com.qingxintao.uni

io.dcloud.PandoraEntry

Activities

io.dcloud.PandoraEntry

android.intent.action.MAIN
android.intent.action.VIEW

io.dcloud.appstream.StreamAppMainActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.alibaba.alibclinkpartner.smartlink.ALPEntranceActivity

com.alibaba.intent.action.GETWAY

com.alibaba.baichuan.android.trade.ui.AlibcWebViewActivity

COM_TAOBAO_TAE_SDK_TRADE_WEB_VIEW_ACTION

com.alibaba.baichuan.android.trade.ui.AlibcBackActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INSTALL_PACKAGES
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_LOGS
android.permission.READ_PHONE_STATE
android.permission.VIBRATE
android.permission.WAKE_LOCK
android.permission.WRITE_SETTINGS
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.GET_TASKS
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.SYSTEM_ALERT_WINDOW
android.permission.READ_EXTERNAL_STORAGE
getui.permission.GetuiService.com.qingxintao.uni
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
com.qingxintao.uni.permission.MIPUSH_RECEIVE
com.meizu.flyme.push.permission.RECEIVE
com.meizu.c2dm.permission.RECEIVE
com.qingxintao.uni.push.permission.MESSAGE
com.qingxintao.uni.permission.C2D_MESSAGE
com.qingxintao.uni.permission.PROCESS_PUSH_MSG
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
com.asus.msa.SupplementaryDID.ACCESS
com.huawei.android.launcher.permission.CHANGE_BADGE
android.permission.CHANGE_CONFIGURATION
android.permission.RUN_INSTRUMENTATION
android.permission.READ_SETTINGS

Receivers

io.dcloud.feature.unipush.GTNotificationReceiver

android.intent.action.BOOT_COMPLETED
com.qingxintao.uni.__CREATE_NOTIFICATION
com.qingxintao.uni.__REMOVE_NOTIFICATION
com.qingxintao.uni.__CLEAR_NOTIFICATION
com.qingxintao.uni.__CLILK_NOTIFICATION

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.meizu.cloud.pushsdk.SystemReceiver

com.meizu.cloud.pushservice.action.PUSH_SERVICE_START

com.igexin.sdk.FlymePushReceiver

com.meizu.flyme.push.intent.MESSAGE
com.meizu.flyme.push.intent.REGISTER.FEEDBACK
com.meizu.flyme.push.intent.UNREGISTER.FEEDBACK
com.meizu.c2dm.intent.REGISTRATION
com.meizu.c2dm.intent.RECEIVE

com.igexin.sdk.MiuiPushReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.igexin.sdk.HmsPushReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.intent.action.PUSH_DELAY_NOTIFY

com.igexin.sdk.HmsPushSubReceiver

com.huawei.android.push.intent.CLICK
com.huawei.intent.action.PUSH_STATE

com.igexin.sdk.VivoPushMessageReceiver

com.vivo.pushclient.action.RECEIVE

io.dcloud.common.adapter.io.PushReceiver

dcloud.push.broswer

io.dcloud.common.adapter.io.DownloadReceiver

android.intent.action.DOWNLOAD_COMPLETE
android.intent.action.PACKAGE_ADDED

Services

com.igexin.sdk.PushService

com.igexin.sdk.action.service.message

com.igexin.sdk.OppoPushService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE

com.huawei.hms.support.api.push.service.HmsMsgService

com.huawei.push.msg.NOTIFY_MSG
com.huawei.push.msg.PASSBY_MSG

io.dcloud.streamdownload.DownloadService

com.qihoo.life.plugin.streamapp.ACTION_PUSH_TO_PLUGIN

Android Permissions

0abf9447c0d6717bd6114aeb2c5859c95af9d6aeb2dcb04def62ca7146b17d56

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INSTALL_PACKAGES

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.CHANGE_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.READ_LOGS

android.permission.READ_PHONE_STATE

android.permission.VIBRATE

android.permission.WAKE_LOCK

android.permission.WRITE_SETTINGS

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.GET_TASKS

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.SYSTEM_ALERT_WINDOW

android.permission.READ_EXTERNAL_STORAGE

getui.permission.GetuiService.com.qingxintao.uni

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

com.qingxintao.uni.permission.MIPUSH_RECEIVE

com.meizu.flyme.push.permission.RECEIVE

com.meizu.c2dm.permission.RECEIVE

com.qingxintao.uni.push.permission.MESSAGE

com.qingxintao.uni.permission.C2D_MESSAGE

com.qingxintao.uni.permission.PROCESS_PUSH_MSG

com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE

com.asus.msa.SupplementaryDID.ACCESS

com.huawei.android.launcher.permission.CHANGE_BADGE

android.permission.CHANGE_CONFIGURATION

android.permission.RUN_INSTRUMENTATION

android.permission.READ_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.qingxintao.uni

io.dcloud.PandoraEntry

Activities

io.dcloud.PandoraEntry

io.dcloud.appstream.StreamAppMainActivity

com.alibaba.alibclinkpartner.smartlink.ALPEntranceActivity

com.alibaba.baichuan.android.trade.ui.AlibcWebViewActivity

com.alibaba.baichuan.android.trade.ui.AlibcBackActivity

Permissions

Receivers

io.dcloud.feature.unipush.GTNotificationReceiver

com.igexin.sdk.PushReceiver

com.meizu.cloud.pushsdk.SystemReceiver

com.igexin.sdk.FlymePushReceiver

com.igexin.sdk.MiuiPushReceiver

com.igexin.sdk.HmsPushReceiver

com.igexin.sdk.HmsPushSubReceiver

com.igexin.sdk.VivoPushMessageReceiver

io.dcloud.common.adapter.io.PushReceiver

io.dcloud.common.adapter.io.DownloadReceiver

Services

com.igexin.sdk.PushService

com.igexin.sdk.OppoPushService

com.huawei.hms.support.api.push.service.HmsMsgService

io.dcloud.streamdownload.DownloadService

Android Permissions

0abf9447c0d6717bd6114aeb2c5859c95af9d6aeb2dcb04def62ca7146b17d56