125063b38e96d619a43b4aa8f9617a5c50622534c726b15ff279c67fcfa2bffd

General

Target

125063b38e96d619a43b4aa8f9617a5c50622534c726b15ff279c67fcfa2bffd
Size

13.3MB
MD5

8da1f91466650ce0743aa805aa7fe270
SHA1

5838b9ca0c660b2b041882911e3677b6c5f1cab8
SHA256

125063b38e96d619a43b4aa8f9617a5c50622534c726b15ff279c67fcfa2bffd
SHA512

5350535671d06125448bea1aacc1a821f8d63418ecd146c9c1af489a1ddf3eaf583fd3cd66479df9ac2f771331a120a1aa31d0492ef48730603d027db6f0c01e
SSDEEP

393216:qIGlqjvGSotGj7H2xQbFJj2pDz1IzoqUrAGmGr:qIN0G/H2aJUDJIzoqePr

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS
Allows an instant app to create foreground services.	android.permission.INSTANT_APP_FOREGROUND_SERVICE

Files

125063b38e96d619a43b4aa8f9617a5c50622534c726b15ff279c67fcfa2bffd
.apk android arch:arm arch:x86

com.tieniu.lezhuan

com.tieniu.lezhuan.start.ui.SplashActivity

Activities

com.tieniu.lezhuan.start.ui.SplashActivity

android.intent.action.MAIN

com.tieniu.lezhuan.index.ui.MainActivity

android.intent.action.GET_CONTENT

Permissions

android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.VIBRATE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.WRITE_SETTINGS
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.GET_TASKS
android.permission.ACCESS_FINE_LOCATION
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.RESTART_PACKAGES
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.GET_PACKAGE_SIZE
android.permission.PACKAGE_USAGE_STATS
android.permission.FOREGROUND_SERVICE
android.permission.INSTANT_APP_FOREGROUND_SERVICE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
com.asus.msa.SupplementaryDID.ACCESS
android.permission.CHANGE_WIFI_STATE
getui.permission.GetuiService.com.tieniu.lezhuan

Receivers

com.tieniu.lezhuan.game.view.DownLoadReceiver

android.intent.action.DOWNLOAD_COMPLETE
android.intent.action.DOWNLOAD_NOTIFICATION_CLICKED

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

Services

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.ss.android.socialbase.downloader.remote

com.igexin.sdk.PushService

com.igexin.sdk.action.service.message

com.blankj.utilcode.util.MessengerUtils$ServerService

com.tieniu.lezhuan.messenger
gdtadv2.jar
.apk android arch:arm arch:arm64

Android Permissions

125063b38e96d619a43b4aa8f9617a5c50622534c726b15ff279c67fcfa2bffd

Permissions

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.VIBRATE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.WRITE_SETTINGS

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.GET_TASKS

android.permission.ACCESS_FINE_LOCATION

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.RESTART_PACKAGES

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.GET_PACKAGE_SIZE

android.permission.PACKAGE_USAGE_STATS

android.permission.FOREGROUND_SERVICE

android.permission.INSTANT_APP_FOREGROUND_SERVICE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

com.asus.msa.SupplementaryDID.ACCESS

android.permission.CHANGE_WIFI_STATE

getui.permission.GetuiService.com.tieniu.lezhuan

Sharing

General

Malware Config

Signatures

Files

com.tieniu.lezhuan

com.tieniu.lezhuan.start.ui.SplashActivity

Activities

com.tieniu.lezhuan.start.ui.SplashActivity

com.tieniu.lezhuan.index.ui.MainActivity

Permissions

Receivers

com.tieniu.lezhuan.game.view.DownLoadReceiver

com.igexin.sdk.PushReceiver

Services

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.igexin.sdk.PushService

com.blankj.utilcode.util.MessengerUtils$ServerService

Android Permissions

125063b38e96d619a43b4aa8f9617a5c50622534c726b15ff279c67fcfa2bffd