1168c931ad01483c59bafa05cc5a2edc3519956c818c6b6992a8c89d37f7ac57

General

Target

1168c931ad01483c59bafa05cc5a2edc3519956c818c6b6992a8c89d37f7ac57
Size

12.5MB
MD5

197faf0142d73f9561625e1bac2b1b98
SHA1

c2d0ed613b9dfcf0659f5afcebda32611aec2aa3
SHA256

1168c931ad01483c59bafa05cc5a2edc3519956c818c6b6992a8c89d37f7ac57
SHA512

93db92749d2f4859fea11fb1c98ca48e74dda291fd57720b7ea4ed256e45e1a4d947ee767a5d2c429dd7c16116d45bc062752bc6bb20f38ea34e5ed9cd3b9540
SSDEEP

393216:dYTkllH/z4R5gNOYzDdZbhnh1+MBShBBL5RiBLVn:dYY/4urHbhnh1nSh/7GR

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 7 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

1168c931ad01483c59bafa05cc5a2edc3519956c818c6b6992a8c89d37f7ac57
.apk android arch:arm arch:mips arch:x86

com.tataera.xiaoxue

com.tataera.xiaoxue.MainActivity

Activities

com.tataera.xiaoxue.MainActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECEIVE_USER_PRESENT
android.permission.SYSTEM_ALERT_WINDOW
android.permission.WAKE_LOCK
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.RECORD_AUDIO
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
android.permission.VIBRATE

Receivers

com.tencent.mm.sdk.plugin.MMPluginOAuth$Receiver

com.tencent.mm.sdk.plugin.Intent.ACTION_RESPONSE

com.tencent.mm.sdk.channel.MMessage$Receiver

com.tencent.mm.sdk.channel.Intent.ACTION_MESSAGE

com.tataera.xiaoxue.AppRegister

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

com.umeng.message.SystemReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.MessageReceiver

org.agoo.android.intent.action.RECEIVE

com.umeng.message.ElectionReceiver

org.agoo.android.intent.action.ELECTION_RESULT_V4

com.umeng.message.RegistrationReceiver

com.tataera.xiaoxue.intent.action.COMMAND

com.umeng.message.UmengMessageBootReceiver

android.intent.action.BOOT_COMPLETED

Services

com.umeng.message.UmengService

com.tataera.xiaoxue.intent.action.START
com.tataera.xiaoxue.intent.action.COCKROACH
org.agoo.android.intent.action.PING_V4

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService
org.android.agoo.client.ElectionReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.unregistercallback.action
com.umeng.message.message.handler.action
com.umeng.message.autoupdate.handler.action

Android Permissions

1168c931ad01483c59bafa05cc5a2edc3519956c818c6b6992a8c89d37f7ac57

Permissions

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.READ_EXTERNAL_STORAGE

android.permission.RECEIVE_USER_PRESENT

android.permission.SYSTEM_ALERT_WINDOW

android.permission.WAKE_LOCK

android.permission.WRITE_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.RECORD_AUDIO

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.VIBRATE

Sharing

General

Malware Config

Signatures

Files

com.tataera.xiaoxue

com.tataera.xiaoxue.MainActivity

Activities

com.tataera.xiaoxue.MainActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.tencent.mm.sdk.plugin.MMPluginOAuth$Receiver

com.tencent.mm.sdk.channel.MMessage$Receiver

com.tataera.xiaoxue.AppRegister

com.umeng.message.SystemReceiver

com.umeng.message.MessageReceiver

com.umeng.message.ElectionReceiver

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengMessageBootReceiver

Services

com.umeng.message.UmengService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

Android Permissions

1168c931ad01483c59bafa05cc5a2edc3519956c818c6b6992a8c89d37f7ac57