04cfd105255808928a668f169312e7d213cd6b12b37f46ddada12ee5c3727ae5

General

Target

04cfd105255808928a668f169312e7d213cd6b12b37f46ddada12ee5c3727ae5
Size

15.4MB
MD5

dac68cd2b45efd5903b80345f0f258a6
SHA1

fde78b815b4a4b3a1f311d814aa47ce5e573a6f1
SHA256

04cfd105255808928a668f169312e7d213cd6b12b37f46ddada12ee5c3727ae5
SHA512

4b5db30f95b7da328073fd6e28e694c91f3b40b5bae232f78a975def8bb13fcab03f56ba24214d1a731bb372c582b491d51b2456500d0fd0e20e9b45e5d39f11
SSDEEP

393216:HuW7QVhyvIufg0WD8D7FA8BsQlTos51CgEI:HHQV0vIeYD8DKGTosr

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

04cfd105255808928a668f169312e7d213cd6b12b37f46ddada12ee5c3727ae5
.apk android arch:arm

cn.limsam.gswz

cn.limsam.gswz.LSGame

Activities

cn.limsam.gswz.LSGame

android.intent.action.MAIN

mm.purchasesdk.iapservice.BillingLayoutActivity

cn.limsam.gswz.com.mmiap.activity

safiap.framework.ui.UpdateHintActivity

safiap.framework.ACTION_TO_INSTALL
safiap.framework.ACTION_TO_INSTALL_IAP
safiap.framework.ACTION_NETWORK_ERROR

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WAKE_LOCK
android.permission.READ_PHONE_STATE
android.permission.VIBRATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.READ_LOGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INSTALL_PACKAGES
android.permission.GET_TASKS
android.permission.KILL_BACKGROUND_PROCESSES
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.CALL_PHONE
android.permission.SEND_SMS
android.permission.RECEIVE_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_SETTINGS
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.DISABLE_KEYGUARD

Receivers

safiap.framework.CheckUpdateReceiver

safiap.framework.ACTION_CANCEL_NOTIFICATION
safiap.GET_SHARED_DATA
safiap.framework.ACTION_SET_TIMER

org.cocos2dx.lib.MyPushMessageReceiver

com.baidu.android.pushservice.action.MESSAGE
com.baidu.android.pushservice.action.RECEIVE
com.baidu.android.pushservice.action.notification.CLICK

com.baidu.android.pushservice.PushServiceReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
com.baidu.android.pushservice.action.notification.SHOW
com.baidu.android.pushservice.action.media.CLICK

com.baidu.android.pushservice.RegistrationReceiver

com.baidu.android.pushservice.action.METHOD
com.baidu.android.pushservice.action.BIND_SYNC
android.intent.action.PACKAGE_REMOVED

Services

mm.purchasesdk.iapservice.PurchaseService

com.aspire.purchaseservice.BIND
android.intent.action.MAIN

safiap.framework.SafFrameworkManager

safiap.framework.sdk.ISAFFramework
safiap.framework.ACTION_START_DOWNLOAD
safiap.framework.ACTION_CHECK_UPDATE

com.baidu.android.pushservice.PushService

com.baidu.android.pushservice.action.PUSH_SERVICE
alipay_msp.apk
.apk android arch:arm arch:x86

com.alipay.android.app

com.alipay.android.app.pay.MainActivity

Activities

com.alipay.android.app.pay.MainActivity

android.intent.action.MAIN

com.alipay.android.app.pay.TransContainer

android.intent.action.MAIN

com.alipay.android.app.pay.HyperlinkActivity

android.intent.action.MAIN

com.alipay.android.app.pay.PageForBrowser

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.RECEIVE_USER_PRESENT
android.permission.VIBRATE
android.permission.CHANGE_NETWORK_STATE
com.alipay.android.app.gphone.SHARE

Receivers

Services

com.alipay.android.app.MspService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay
plugin-deploy.jar
.apk android

Android Permissions

04cfd105255808928a668f169312e7d213cd6b12b37f46ddada12ee5c3727ae5

Permissions

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.VIBRATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.READ_LOGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INSTALL_PACKAGES

android.permission.GET_TASKS

android.permission.KILL_BACKGROUND_PROCESSES

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.CALL_PHONE

android.permission.SEND_SMS

android.permission.RECEIVE_SMS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_SETTINGS

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.DISABLE_KEYGUARD

Sharing

General

Malware Config

Signatures

Files

cn.limsam.gswz

cn.limsam.gswz.LSGame

Activities

cn.limsam.gswz.LSGame

mm.purchasesdk.iapservice.BillingLayoutActivity

safiap.framework.ui.UpdateHintActivity

Permissions

Receivers

safiap.framework.CheckUpdateReceiver

org.cocos2dx.lib.MyPushMessageReceiver

com.baidu.android.pushservice.PushServiceReceiver

com.baidu.android.pushservice.RegistrationReceiver

Services

mm.purchasesdk.iapservice.PurchaseService

safiap.framework.SafFrameworkManager

com.baidu.android.pushservice.PushService

com.alipay.android.app

com.alipay.android.app.pay.MainActivity

Activities

com.alipay.android.app.pay.MainActivity

com.alipay.android.app.pay.TransContainer

com.alipay.android.app.pay.HyperlinkActivity

com.alipay.android.app.pay.PageForBrowser

Permissions

Receivers

Services

com.alipay.android.app.MspService

Android Permissions

04cfd105255808928a668f169312e7d213cd6b12b37f46ddada12ee5c3727ae5