13a47a3ddbb0077971cd250bad41e5ac766639f98538a80435ac08dea1d8463a

General

Target

13a47a3ddbb0077971cd250bad41e5ac766639f98538a80435ac08dea1d8463a
Size

24.9MB
MD5

600345a3c5fb496e885492cceef082fd
SHA1

3a383370e5eedb8d46eca57ba85461d263d5e356
SHA256

13a47a3ddbb0077971cd250bad41e5ac766639f98538a80435ac08dea1d8463a
SHA512

10b56b628ee2fe31f810338da11c79d95ecc7e81a604c9997476bf05cc99694d301f67ce9aaf972c8b270569942563c29cb5cf21cf89567541781e634d7e3e4c
SSDEEP

786432:FD71gT68DGqF8iIMox8gQMu20npnz11RHii9n35DKQdhVwFQn:FHCG6misaMknzzRpOSh7

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 15 IoCs

description	ioc
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION

Files

13a47a3ddbb0077971cd250bad41e5ac766639f98538a80435ac08dea1d8463a
.apk android arch:arm64 arch:arm arch:x86

com.aizuiju.bbc

com.aipai.android.activity.AipaiSplashActivity

Activities

com.aipai.android.activity.AipaiSplashActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.aipai.android.activity.MainActivity

android.intent.action.VIEW
android.intent.action.VIEW
android.intent.action.VIEW

com.aipai.android.activity.LieyouActivity

android.intent.action.VIEW

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

io.rong.voipkit.activity.CallSideActivity

android.intent.action.VIEW

io.rong.voipkit.activity.CalledSideActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_COARSE_UPDATES
android.permission.READ_LOGS
android.permission.WAKE_LOCK
android.permission.VIBRATE
android.permission.WRITE_SETTINGS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.KILL_BACKGROUND_PROCESSES
org.agoo.android.permission.MESSAGE
android.permission.ACCESS_FINE_LOCATION
android.permission.CAMERA
android.permission.GET_TASKS
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_SMS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.UPDATE_APP_OPS_STATS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION

Receivers

com.umeng.message.RegistrationReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
com.aipai.android.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

com.umeng.message.BootBroadcastReceiver

android.intent.action.BOOT_COMPLETED

com.aipai.android.receiver.DownloadOnCompleteReceiver

android.intent.action.DOWNLOAD_COMPLETE

io.rong.push.PushReceiver

io.rong.imlib.action.push.heartbeat
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.BOOT_COMPLETED
android.intent.action.USER_PRESENT
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED
android.intent.action.PACKAGE_REMOVED
io.rong.push.HeartBeat

io.rong.imlib.ipc.PushMessageReceiver

io.rong.push.message

Services

com.umeng.message.UmengService

com.aipai.android.intent.action.START
com.aipai.android.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2

io.rong.push.PushService

io.rong.push

io.rong.push.CommandService

io.rong.command

Android Permissions

13a47a3ddbb0077971cd250bad41e5ac766639f98538a80435ac08dea1d8463a

Permissions

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_COARSE_UPDATES

android.permission.READ_LOGS

android.permission.WAKE_LOCK

android.permission.VIBRATE

android.permission.WRITE_SETTINGS

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.RECORD_AUDIO

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.KILL_BACKGROUND_PROCESSES

org.agoo.android.permission.MESSAGE

android.permission.ACCESS_FINE_LOCATION

android.permission.CAMERA

android.permission.GET_TASKS

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_SMS

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.RECEIVE_SMS

android.permission.UPDATE_APP_OPS_STATS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

Sharing

General

Malware Config

Signatures

Files

com.aizuiju.bbc

com.aipai.android.activity.AipaiSplashActivity

Activities

com.aipai.android.activity.AipaiSplashActivity

com.aipai.android.activity.MainActivity

com.aipai.android.activity.LieyouActivity

com.tencent.tauth.AuthActivity

io.rong.voipkit.activity.CallSideActivity

io.rong.voipkit.activity.CalledSideActivity

Permissions

Receivers

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

com.umeng.message.BootBroadcastReceiver

com.aipai.android.receiver.DownloadOnCompleteReceiver

io.rong.push.PushReceiver

io.rong.imlib.ipc.PushMessageReceiver

Services

com.umeng.message.UmengService

org.android.agoo.service.ElectionService

io.rong.push.PushService

io.rong.push.CommandService

Android Permissions

13a47a3ddbb0077971cd250bad41e5ac766639f98538a80435ac08dea1d8463a