132b93bcd9ee444f0bd68dc7c8c7408e1b4441f6774a10747143123388f951d9

Sharing

Copy URL

Twitter E-mail

General

Target

132b93bcd9ee444f0bd68dc7c8c7408e1b4441f6774a10747143123388f951d9
Size

11.9MB
MD5

0836ecdb2fd907095258ad32d2106a41
SHA1

e22f85d5d8eaa48dc404c8a71a787b6992b3222a
SHA256

132b93bcd9ee444f0bd68dc7c8c7408e1b4441f6774a10747143123388f951d9
SHA512

16138d70f19d0009b8ae41bde5c4799e560c6d3a19bcbdb3789cbcc07b8d7e9fbf3f6d4a17284afd980d9cc897181c6c7063e6510c125ab262f661af93d4bdbc
SSDEEP

196608:H8Ib1RI15raimP1Ibqy5LEASqZTHg+o453iM+tponqufr+3FsTMmk6k2:L7I1BaimP1ZL45dquaF8

Score

8^/10

upx

Malware Config

Signatures

Patched UPX-packed file 2 IoCs

Sample is packed with UPX but required header fields are zeroed out to prevent unpacking with the default UPX tool.

resource	yara_rule
static1/unpack001/PandaHome2.mp3	patched_upx
static1/unpack001/PandaHome2.mp3	patched_upx

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

upx

resource	yara_rule
static1/unpack001/PandaHome2.mp3	upx
static1/unpack001/PandaHome2.mp3	upx

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

132b93bcd9ee444f0bd68dc7c8c7408e1b4441f6774a10747143123388f951d9
.apk android

com.nd.android.pandatheme.p_shiguangrenran20161012

com.nd.android.pandatheme.PandaThemeActivity

Activities

com.nd.android.pandatheme.PandaThemeActivity

android.intent.action.MAIN
com.nd.android.pandahome.theme
mobi.bbase.ahome.THEME
com.betterandroid.launcher2.skins

Permissions

android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE

Receivers

com.nd.android.pandatheme.LauncherInstallReceiver

android.intent.action.PACKAGE_ADDED

Services
PandaHome2.mp3
.apk android arch:arm arch:x86

com.nd.android.pandahome2

com.nd.hilauncherdev.launcher.Launcher

Activities

com.nd.hilauncherdev.launcher.Launcher

android.intent.action.MAIN

com.nd.hilauncherdev.app.activity.X5Launcher

com.nd.hilauncherdev.app.activity.X5Launcher

com.nd.hilauncherdev.kitset.crop.CropImageActivity

com.nd.hilauncherdev.myphone.wallpaper.wallpaper_crop
android.intent.action.ATTACH_DATA

com.nd.hilauncherdev.myphone.myring.online.OnLineRingActivity

android.intent.action.RINGTONE_PICKER

com.nd.hilauncherdev.myphone.mywallpaper.WallPaperActivity

android.intent.action.SET_WALLPAPER

com.nd.hilauncherdev.myphone.swapwallpaper.SwapWallpaperSettingActivity

com.nd.hilauncherdev.action.SWAP_WALLPAPER_SETTING

com.nd.hilauncherdev.settings.DefaultActivity

android.intent.action.MAIN
android.intent.action.MAIN

com.nd.hilauncherdev.theme.localtheme.LocalThemeManagerActivity

nd.pandahome.THEME_MANAGE_ACTION

com.nd.android.pandahome2.manage.shop.ThemeShopMainActivity

nd.pandahome.THEME_MARKET_ACTION
android.intent.action.MAIN

com.nd.hilauncherdev.shop.weixin.OpenURLActivity

android.intent.action.VIEW

com.nd.hilauncherdev.uri.UriDeliveryActivity

android.intent.action.VIEW

com.nd.weather.widget.UI.weather.UIWeatherFragmentAty

com.nd.android.pandahome.widget.category

com.nd.weather.widget.UI.weather.UIWeatherSetAty

android.intent.action.VIEW

com.nd.hilauncherdev.menu.personal.AllDownloadManagerActivity

com.nd.android.pandahome2.downloadmanager.SHOW

com.nd.hilauncherdev.widget.baidu.zxing.CaptureResultActivity

com.nd.android.pandahome2.zxing.CaptureResultActivity

com.nd.hilauncherdev.wifi.WifiSetMainActivity

com.nd.android.pandahome2.SETTING_WIFI_ONEKEY

com.nd.android.pandahome2.wxapi.SendToWXActivity

com.nd.android.pandahome2.wxapi.SendToWXActivity

com.nd.hilauncherdev.theme.localtheme.ThemeSeriesTips

android.intent.action.MAIN

com.nd.hilauncherdev.safecenter.SafeCenterTempActivity

android.intent.action.MAIN

com.baidu91.account.login.CommonLoginActivity

com.baidu91.account.login.CommonLoginActivity

com.baidu91.account.login.BaiduLoginActivity

com.baidu91.account.login.BaiduLoginActivity

com.baidu91.account.login.Dian91LoginActivity

com.baidu91.account.login.Dian91LoginActivity

com.sohu.android.plugin.app.ProxyActivity

android.intent.action.MAIN

Permissions

android.permission.EXPAND_STATUS_BAR
android.permission.GET_TASKS
android.permission.SET_WALLPAPER
android.permission.SET_WALLPAPER_HINTS
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.BIND_APPWIDGET
com.nd.android.pandahome2.permission.READ_SETTINGS
com.nd.android.pandahome2.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.CHANGE_WIFI_STATE
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.READ_SYNC_SETTINGS
android.permission.WRITE_SYNC_SETTINGS
android.permission.ACCESS_WIFI_STATE
android.permission.MODIFY_PHONE_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_APN_SETTINGS
android.permission.BATTERY_STATS
android.permission.READ_EXTERNAL_STORAGE
com.android.ContactWidget.permission.READ_SETTINGS
com.android.ContactWidget.permission.WRITE_SETTINGS
android.permission.ACCESS_WEATHERCLOCK_PROVIDER
android.permission.READ_SMS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.CALL_PHONE
android.permission.SEND_SMS
android.permission.WAKE_LOCK
android.permission.RESTART_PACKAGES
android.permission.KILL_BACKGROUND_PROCESSES
com.android.browser.permission.READ_HISTORY_BOOKMARKS
android.permission.GET_PACKAGE_SIZE
android.permission.CLEAR_APP_CACHE
com.android.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
com.lge.launcher.permission.READ_SETTINGS
com.fede.launcher.permission.READ_SETTINGS
org.adw.launcher.permission.READ_SETTINGS
org.adwfreak.launcher.permission.READ_SETTINGS
org.adw.launcher_donut.permission.READ_SETTINGS
com.tencent.qqlauncher.permission.READ_SETTINGS
com.android.mylauncher.permission.READ_SETTINGS
com.huawei.launcher2.permission.READ_SETTINGS
net.qihoo.launcher.permission.READ_SETTINGS
com.dianxinos.dxhome.permission.READ_SETTINGS
android.permission.PERSISTENT_ACTIVITY
com.huawei.android.launcher.permission.READ_SETTINGS
com.qihoo360.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.READ_SETTINGS
com.bbk.launcher2.permission.READ_SETTINGS
com.bbk.launcher2.permission.WRITE_SETTINGS
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_LOGS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.PROCESS_OUTGOING_CALLS
android.permission.RECEIVE_SMS
android.permission.RECORD_AUDIO
android.permission.SET_ACTIVITY_WATCHER
android.permission.BROADCAST_STICKY
android.permission.INSTALL_PACKAGES
android.permission.DELETE_PACKAGES
android.permission.CHANGE_COMPONENT_ENABLED_STATE
android.permission.RECEIVE_SMS
com.baidu.permission.SHARE
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

Receivers

com.nd.hilauncherdev.launcher.InstallAppFromWidgetReceiver

nd.panda.custom.widget.install.action

com.nd.hilauncherdev.launcher.broadcast.InstallShortcutReceiver

com.android.launcher.action.INSTALL_SHORTCUT
com.nd.pandahome.install_shortcut

com.nd.hilauncherdev.launcher.broadcast.UninstallShortcutReceiver

com.android.launcher.action.UNINSTALL_SHORTCUT

com.nd.hilauncherdev.datamodel.ApplicationChangeReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_CHANGED

com.nd.hilauncherdev.plugin.ThemeManageReceiver

com.nd.android.pandahome.manage_theme2

com.nd.hilauncherdev.theme.receiver.PandaSpaceThemeReceiver

com.nd.android.pandadesktop2.install_theme

com.nd.hilauncherdev.theme.receiver.PandaThemeAskReceiver

com.nd.android.pandahome.ASK_THEME

com.nd.hilauncherdev.theme.receiver.OnlineThemeOperateAssit

nd.pandahome.request.theme.apt.install
nd.pandahome.request.theme.apk.install_apply
nd.pandahome.request.theme.apply
nd.pandahome.request.theme.module.apply
nd.pandahome.request.module.apply
nd.pandahome.request.theme.delete

com.nd.hilauncherdev.shop.shop3.ThemeShopV3LauncherExAPI

nd.pandahome.request.theme.delete.downlog
nd.pandahome.response.theme.apt.install
nd.pandahome.THEME_MARKET_EXIT_ACTION

com.nd.hilauncherdev.myphone.battery.receiver.BootBroadcastReceiver

android.intent.action.BOOT_COMPLETED

com.nd.hilauncherdev.safecenter.receiver.BootTimeReceiver

android.intent.action.BOOT_COMPLETED

com.nd.weather.widget.StartupReceiver

android.net.conn.CONNECTIVITY_CHANGE
nd.pandahome.weather.request

com.nd.weather.widget.BootReceiver

android.intent.action.USER_PRESENT

com.nd.weather.widget.PandaHome.Receiver.InstallReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_REPLACED

com.nd.hilauncherdev.myphone.nettraffic.FlowMonitoringHelper

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.PACKAGE_REMOVED

com.nd.hilauncherdev.dynamic.DyanmicWidgetReceiver

com.baidu.android.action.DYNAMIC_WIDGET_ENABLE
com.baidu.android.action.RECEIVE_NOTIFICATION

com.nd.hilauncherdev.datamodel.NetworkChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.nd.hilauncherdev.datamodel.PowerConnectedReceiver

android.intent.action.ACTION_POWER_CONNECTED

com.baidu.sapi2.share.ShareReceiver

baidu.intent.action.SHARE_V6

Services

com.nd.hilauncherdev.uri.UriDeliveryService

android.intent.action.VIEW

com.nd.hilauncherdev.webconnect.downloadmanage.model.PluginDownloadForwardService

com.nd.android.pandahome2.FORWARD_SERVICE

com.nd.hilauncherdev.export.ExportService

com.nd.hilauncherdev.export.ExportService

com.nd.hilauncherdev.myphone.appmanager.AppManagerService

com.nd.hilauncherdev.myphone.appmanager.AppManagerService

com.nd.hilauncherdev.myphone.myfont.FontService

com.nd.hilauncherdev.myphone.myfont.FontService

com.nd.hilauncherdev.menu.personal.icompaign.CompaignService

com.nd.hilauncherdev.menu.personal.icompaign.CompaignService

com.baidu.sapi2.share.ShareService

baidu.intent.action.account.SHARE_SERVICE

com.wireless.pandahome.present.PresentService

com.wireless.pandahome.present.PresentService

com.sohu.android.plugin.service.PluginCoreService

com.sohu.plugin.action.CORE_SERVICE
com.nd.android.widget.pandahome.flashlight
.apk android

com.nd.android.widget.pandahome.flashlight

com.nd.android.widget.pandahome.flashlight.uninstallfeedback.RecommendOtherLauncherActivity

Activities

.FlashLightWidgetChoose

com.nd.android.pandahome.widget.category

com.nd.android.widget.pandahome.flashlight.TranActivity

com.nd.hilauncherdev.export.flashLight.start

com.nd.android.widget.pandahome.ionekeyoffscreen.OffScreenChoose

com.nd.android.pandahome.widget.category

com.nd.android.widget.pandahome.zxing.CaptureActivity

com.nd.android.widget.pandahome.zxing.CaptureActivity

com.nd.android.widget.pandahome.flashlight.uninstallfeedback.RecommendOtherLauncherActivity

android.intent.action.MAIN

com.nd.android.backup.sysdata.SysBackupMainActivity

android.intent.action.MAIN

com.nd.android.widget.pandahome.flashlight.autolock.AutoLockScreenActivity

com.nd.hilauncherdev.export.autolockscreen.start

Permissions

android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.WAKE_LOCK
android.permission.WRITE_SETTINGS
android.permission.DEVICE_POWER
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.VIBRATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_CONTACTS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.WRITE_CONTACTS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_WIFI_STATE

Receivers

com.nd.android.widget.pandahome.flashlight.FlashLightReceiver

com.nd.hilauncherdev.export.flashLight

com.nd.android.widget.pandahome.ionekeyoffscreen.LockScreenReceiver

com.nd.android.ihome.export.lockscreen

com.nd.android.widget.pandahome.ionekeyoffscreen.DeviceAdmin

android.app.action.DEVICE_ADMIN_ENABLED

com.nd.android.widget.pandahome.flashlight.uninstallfeedback.SendChooseBroadcast

android.net.conn.CONNECTIVITY_CHANGE

com.nd.android.widget.pandahome.flashlight.ApplicationsChangeReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_CHANGED

com.nd.android.widget.pandahome.flashlight.uninstallfeedback.LauncehrUninstallReceiver

com.nd.android.pandahome2.NotifyFlashLight
com.nd.hilauncherdev.plugin.navigation_V_22_M_9faf7075e08033fcfcfea572ac0548ba.jar
.apk android

com.nd.hilauncherdev.plugin.navigation

com.nd.hilauncherdev.plugin.navigation.activity.MainActivity

Activities

com.nd.hilauncherdev.plugin.navigation.activity.MainActivity

android.intent.action.MAIN

com.sohu.android.plugin.app.ProxyActivity

android.intent.action.MAIN

Permissions

android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.CHANGE_WIFI_STATE
android.permission.WRITE_SETTINGS
com.nd.android.pandahome2.permission.WRITE_SETTINGS
com.nd.android.pandahome2.permission.READ_SETTINGS
com.android.launcher.permission.READ_SETTINGS

Receivers

Services

com.sohu.android.plugin.service.PluginCoreService

com.sohu.plugin.action.CORE_SERVICE
nd.jar
.apk android

Android Permissions

132b93bcd9ee444f0bd68dc7c8c7408e1b4441f6774a10747143123388f951d9

Permissions

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

Sharing

General

Malware Config

Signatures

Files

com.nd.android.pandatheme.p_shiguangrenran20161012

com.nd.android.pandatheme.PandaThemeActivity

Activities

com.nd.android.pandatheme.PandaThemeActivity

Permissions

Receivers

com.nd.android.pandatheme.LauncherInstallReceiver

Services

com.nd.android.pandahome2

com.nd.hilauncherdev.launcher.Launcher

Activities

com.nd.hilauncherdev.launcher.Launcher

com.nd.hilauncherdev.app.activity.X5Launcher

com.nd.hilauncherdev.kitset.crop.CropImageActivity

com.nd.hilauncherdev.myphone.myring.online.OnLineRingActivity

com.nd.hilauncherdev.myphone.mywallpaper.WallPaperActivity

com.nd.hilauncherdev.myphone.swapwallpaper.SwapWallpaperSettingActivity

com.nd.hilauncherdev.settings.DefaultActivity

com.nd.hilauncherdev.theme.localtheme.LocalThemeManagerActivity

com.nd.android.pandahome2.manage.shop.ThemeShopMainActivity

com.nd.hilauncherdev.shop.weixin.OpenURLActivity

com.nd.hilauncherdev.uri.UriDeliveryActivity

com.nd.weather.widget.UI.weather.UIWeatherFragmentAty

com.nd.weather.widget.UI.weather.UIWeatherSetAty

com.nd.hilauncherdev.menu.personal.AllDownloadManagerActivity

com.nd.hilauncherdev.widget.baidu.zxing.CaptureResultActivity

com.nd.hilauncherdev.wifi.WifiSetMainActivity

com.nd.android.pandahome2.wxapi.SendToWXActivity

com.nd.hilauncherdev.theme.localtheme.ThemeSeriesTips

com.nd.hilauncherdev.safecenter.SafeCenterTempActivity

com.baidu91.account.login.CommonLoginActivity

com.baidu91.account.login.BaiduLoginActivity

com.baidu91.account.login.Dian91LoginActivity

com.sohu.android.plugin.app.ProxyActivity

Permissions

Receivers

com.nd.hilauncherdev.launcher.InstallAppFromWidgetReceiver

com.nd.hilauncherdev.launcher.broadcast.InstallShortcutReceiver

com.nd.hilauncherdev.launcher.broadcast.UninstallShortcutReceiver

com.nd.hilauncherdev.datamodel.ApplicationChangeReceiver

com.nd.hilauncherdev.plugin.ThemeManageReceiver

com.nd.hilauncherdev.theme.receiver.PandaSpaceThemeReceiver

com.nd.hilauncherdev.theme.receiver.PandaThemeAskReceiver

com.nd.hilauncherdev.theme.receiver.OnlineThemeOperateAssit

com.nd.hilauncherdev.shop.shop3.ThemeShopV3LauncherExAPI

com.nd.hilauncherdev.myphone.battery.receiver.BootBroadcastReceiver

com.nd.hilauncherdev.safecenter.receiver.BootTimeReceiver

com.nd.weather.widget.StartupReceiver

com.nd.weather.widget.BootReceiver

com.nd.weather.widget.PandaHome.Receiver.InstallReceiver

com.nd.hilauncherdev.myphone.nettraffic.FlowMonitoringHelper

com.nd.hilauncherdev.dynamic.DyanmicWidgetReceiver

com.nd.hilauncherdev.datamodel.NetworkChangeReceiver

com.nd.hilauncherdev.datamodel.PowerConnectedReceiver

com.baidu.sapi2.share.ShareReceiver

Services

com.nd.hilauncherdev.uri.UriDeliveryService

com.nd.hilauncherdev.webconnect.downloadmanage.model.PluginDownloadForwardService

com.nd.hilauncherdev.export.ExportService

com.nd.hilauncherdev.myphone.appmanager.AppManagerService

com.nd.hilauncherdev.myphone.myfont.FontService

com.nd.hilauncherdev.menu.personal.icompaign.CompaignService

com.baidu.sapi2.share.ShareService

com.wireless.pandahome.present.PresentService

com.sohu.android.plugin.service.PluginCoreService

com.nd.android.widget.pandahome.flashlight

com.nd.android.widget.pandahome.flashlight.uninstallfeedback.RecommendOtherLauncherActivity

Activities

.FlashLightWidgetChoose

com.nd.android.widget.pandahome.flashlight.TranActivity

com.nd.android.widget.pandahome.ionekeyoffscreen.OffScreenChoose

com.nd.android.widget.pandahome.zxing.CaptureActivity

com.nd.android.widget.pandahome.flashlight.uninstallfeedback.RecommendOtherLauncherActivity

com.nd.android.backup.sysdata.SysBackupMainActivity

com.nd.android.widget.pandahome.flashlight.autolock.AutoLockScreenActivity