0e27b4c232b667c916e0af1f1f8c2ea117eeb032ecfc0a745e1d1e89fd8c55b6

General

Target

0e27b4c232b667c916e0af1f1f8c2ea117eeb032ecfc0a745e1d1e89fd8c55b6
Size

15.3MB
MD5

9130481710397670bc8b3133cdb2b375
SHA1

149e7eecce04572bab2688004d22b8b944863cbe
SHA256

0e27b4c232b667c916e0af1f1f8c2ea117eeb032ecfc0a745e1d1e89fd8c55b6
SHA512

612b3840903e2d62fcf424f0c82055d405834e98f48fdb30aeaaaa31821605a3432e8c2d27c93bd66ae78cf778fe84ee4b6c2e767b5416fdd2a4b18b1739fd25
SSDEEP

393216:8sAvmKVCK0O/uZI4J0kNj0XILz1fcZoEHa0hcIUkuX:8sAvmKVpuZIlkNjsIFapPhcIc

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 13 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

0e27b4c232b667c916e0af1f1f8c2ea117eeb032ecfc0a745e1d1e89fd8c55b6
.apk android arch:arm64 arch:arm arch:mips arch:mips64 arch:x86 arch:x64

cn.yiya.shiji

cn.yiya.shiji.activity.SplashActivity

Activities

cn.yiya.shiji.activity.SplashActivity

android.intent.action.MAIN

com.mob.tools.MobUIShell

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.SYSTEM_ALERT_WINDOW
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.RECORD_AUDIO
android.permission.GET_TASKS
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
getui.permission.GetuiService.cn.yiya.shiji
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.CAMERA
android.permission.SET_DEBUG_APP
android.permission.MEDIA_CONTENT_CONTROL
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.RECEIVE_SMS
android.permission.READ_SMS
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.FLASHLIGHT
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_EXTERNAL_STORAGE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION

Receivers

cn.yiya.shiji.receiver.PushReceiver

com.igexin.sdk.action.Q4FwAJ6sEpAPdcNVmqbTb2

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.igexin.sdk.PushManagerReceiver

com.igexin.sdk.action.pushmanager

com.igexin.download.DownloadReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.igexin.getuiext.service.PayloadReceiver

com.igexin.sdk.action.7fjUl2Z3LH6xYy7NQK4ni4
com.igexin.sdk.action.Q4FwAJ6sEpAPdcNVmqbTb2

cn.yiya.shiji.receiver.AppInstallReceiver

android.intent.action.PACKAGE_REPLACED

Services

cn.yiya.shiji.services.PushService

cn.yiya.shiji.services.PushService
android.intent.action.BOOT_COMPLETED

com.baidu.location.f

com.baidu.location.service_v2.2

Android Permissions

0e27b4c232b667c916e0af1f1f8c2ea117eeb032ecfc0a745e1d1e89fd8c55b6

Permissions

android.permission.INTERNET

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.RECORD_AUDIO

android.permission.GET_TASKS

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.VIBRATE

getui.permission.GetuiService.cn.yiya.shiji

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.CAMERA

android.permission.SET_DEBUG_APP

android.permission.MEDIA_CONTENT_CONTROL

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.RECEIVE_SMS

android.permission.READ_SMS

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.FLASHLIGHT

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_EXTERNAL_STORAGE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

Sharing

General

Malware Config

Signatures

Files

cn.yiya.shiji

cn.yiya.shiji.activity.SplashActivity

Activities

cn.yiya.shiji.activity.SplashActivity

com.mob.tools.MobUIShell

Permissions

Receivers

cn.yiya.shiji.receiver.PushReceiver

com.igexin.sdk.PushReceiver

com.igexin.sdk.PushManagerReceiver

com.igexin.download.DownloadReceiver

com.igexin.getuiext.service.PayloadReceiver

cn.yiya.shiji.receiver.AppInstallReceiver

Services

cn.yiya.shiji.services.PushService

com.baidu.location.f

Android Permissions

0e27b4c232b667c916e0af1f1f8c2ea117eeb032ecfc0a745e1d1e89fd8c55b6