1a70768c7126477601029bc16e599013efc1b69309493df667d75ecac2173f46

General

Target

1a70768c7126477601029bc16e599013efc1b69309493df667d75ecac2173f46
Size

16.8MB
MD5

6f5ca616afbdeb37fa7cf9fb48891788
SHA1

f85505ba9c5fe2a47a7a7ec0912afc9de716a4c1
SHA256

1a70768c7126477601029bc16e599013efc1b69309493df667d75ecac2173f46
SHA512

a6aa54efd67246a96770e1b798367147d173a43c94c942b1a1c2350efcc218ab2ac1481a124a076314e73f05e5f8c88eb81d4e929eda768b50b1c9531c57a6dc
SSDEEP

393216:eXus6D8C1iUTc/2fzy2cJkIrrzj9xllm2w:g6D8C1r4/2Krrz1lHw

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 2 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

1a70768c7126477601029bc16e599013efc1b69309493df667d75ecac2173f46
.apk android arch:arm

com.android.hgz.offline

.LoadingActivity

Activities

.LoadingActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS

Services
SpeechService.mp3
.apk android arch:arm

com.iflytek.speechcloud

com.iflytek.speechcloud.SpeechWelcome

Activities

com.iflytek.speechcloud.activity.setting.speaker.SpeakerSetting

com.iflytek.speechcloud.activity.speaker.SpeakerSetting

com.iflytek.speechcloud.activity.setting.asrresdownload.RecognitionResourceDownload

com.iflytek.speechcloud.settings.asr

com.iflytek.speechcloud.activity.more.feedback.SpeechFeedback

com.iflytek.speechcloud.feedback.main

com.iflytek.iatservice.SpeechActivity

android.speech.action.WEB_SEARCH
android.speech.action.RECOGNIZE_SPEECH
android.intent.action.SEARCH_LONG_PRESS
com.iflytek.speech.action.voiceinput
com.iflytek.speech.action.voiceisearch

com.iflytek.speechcloud.Aisound

android.intent.action.START_TTS_ENGINE

com.iflytek.speechcloud.GetSampleText

android.speech.tts.engine.GET_SAMPLE_TEXT

com.iflytek.speechcloud.EngineSettings

android.speech.tts.engine.CONFIGURE_ENGINE

com.iflytek.speechcloud.CheckVoiceData

android.speech.tts.engine.CHECK_TTS_DATA

com.iflytek.speechcloud.SpeechWelcome

android.intent.action.VIEW
android.intent.action.MAIN
com.iflytek.speech.action.launcher
com.iflytek.speechcloud

com.iflytek.speechcloud.activity.main.SpeechMain

com.iflytek.speechcloud.settings.main
com.iflytek.speechcloud.main

Permissions

android.permission.READ_CONTACTS
android.permission.WAKE_LOCK
android.permission.RECORD_AUDIO
android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.WRITE_SETTINGS
android.permission.GET_TASKS
android.permission.READ_LOGS
android.permission.ACCESS_COARSE_LOCATION

Receivers

com.iflytek.business.BootReceiver

android.intent.action.BOOT_COMPLETED
com.iflytek.speechcloud
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.BATTERY_OKAY

com.iflytek.iatservice.SpeechService$SpeechServiceReceiver

com.iflytek.speechservice.create
com.iflytek.speechservice.destory

com.iflytek.speechcloud.wxapi.RegisterReceiver

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

com.iflytek.speechcloud.widget.VoiceSearchBar

android.appwidget.action.APPWIDGET_UPDATE
com.iflytek.speechcloud.widget.mirror
com.iflytek.speechcloud.widget.engname
com.iflytek.speechcloud.widget.result
com.iflytek.speechcloud.widget.clearinformation
com.iflytek.speechcloud.widget.engineactivity
com.iflytek.speechcloud.widget.resultactivity

com.iflytek.speechcloud.util.NetworkBroadcast

android.net.conn.CONNECTIVITY_CHANGE

com.iflytek.speechcloud.activity.more.feedback.PushMessageReceiver

com.baidu.android.pushservice.action.MESSAGE
com.baidu.android.pushservice.action.RECEIVE
com.baidu.android.pushservice.action.notification.CLICK

com.baidu.android.pushservice.PushServiceReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
com.baidu.android.pushservice.action.notification.SHOW
com.baidu.android.pushservice.action.media.CLICK

com.baidu.android.pushservice.RegistrationReceiver

com.baidu.android.pushservice.action.METHOD
com.baidu.android.pushservice.action.BIND_SYNC
android.intent.action.PACKAGE_REMOVED

Services

com.iflytek.business.PlusBusinessService

com.iflytek.business.plusbusinessservice

com.iflytek.iatservice.SpeechService

android.speech.RecognitionService

com.iflytek.speechcloud.binder.BinderService

com.iflytek.component.speechrecognizer
com.iflytek.component.speechsynthesizer
com.iflytek.component.speechunderstander
com.iflytek.component.textunderstander
com.iflytek.component.SpeakerVerifier
com.iflytek.component.speechwakeuper

com.iflytek.speechsuite.binder.SuiteBinderService

com.iflytek.speech.SpeechService

com.iflytek.business.BusinessService

com.iflytek.speechcloud

com.iflytek.business.download.DownloadHandlerService

com.iflytek.speechcloud.download.handler_service

com.iflytek.speechcloud.TtsService

android.intent.action.TTS_SERVICE
plugin-deploy.jar
.apk android

Android Permissions

1a70768c7126477601029bc16e599013efc1b69309493df667d75ecac2173f46

Permissions

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.ACCESS_WIFI_STATE

android.permission.GET_TASKS

Sharing

General

Malware Config

Signatures

Files

com.android.hgz.offline

.LoadingActivity

Activities

.LoadingActivity

Permissions

Services

com.iflytek.speechcloud

com.iflytek.speechcloud.SpeechWelcome

Activities

com.iflytek.speechcloud.activity.setting.speaker.SpeakerSetting

com.iflytek.speechcloud.activity.setting.asrresdownload.RecognitionResourceDownload

com.iflytek.speechcloud.activity.more.feedback.SpeechFeedback

com.iflytek.iatservice.SpeechActivity

com.iflytek.speechcloud.Aisound

com.iflytek.speechcloud.GetSampleText

com.iflytek.speechcloud.EngineSettings

com.iflytek.speechcloud.CheckVoiceData

com.iflytek.speechcloud.SpeechWelcome

com.iflytek.speechcloud.activity.main.SpeechMain

Permissions

Receivers

com.iflytek.business.BootReceiver

com.iflytek.iatservice.SpeechService$SpeechServiceReceiver

com.iflytek.speechcloud.wxapi.RegisterReceiver

com.iflytek.speechcloud.widget.VoiceSearchBar

com.iflytek.speechcloud.util.NetworkBroadcast

com.iflytek.speechcloud.activity.more.feedback.PushMessageReceiver

com.baidu.android.pushservice.PushServiceReceiver

com.baidu.android.pushservice.RegistrationReceiver

Services

com.iflytek.business.PlusBusinessService

com.iflytek.iatservice.SpeechService

com.iflytek.speechcloud.binder.BinderService

com.iflytek.speechsuite.binder.SuiteBinderService

com.iflytek.business.BusinessService

com.iflytek.business.download.DownloadHandlerService

com.iflytek.speechcloud.TtsService

Android Permissions

1a70768c7126477601029bc16e599013efc1b69309493df667d75ecac2173f46