35a95e6ee32e749c7cd486910b23ccd9be85383532299ef80268653c5a5f45ff

General

Target

35a95e6ee32e749c7cd486910b23ccd9be85383532299ef80268653c5a5f45ff
Size

15.6MB
MD5

9f08b1b9c6a62360433ed418ff2b999a
SHA1

490a2ca2224b821c8689ba3105b1251aa89a3a43
SHA256

35a95e6ee32e749c7cd486910b23ccd9be85383532299ef80268653c5a5f45ff
SHA512

e37a7d9972af2a63949d98e2dde4b4fa75c350909dd009820c7eecd8114f16ae17a6b3b546d6f80e2f9e68ca444fffb1bc63eb33656b793bfad5bac193d83c2b
SSDEEP

196608:HL4mVv2cEfdZMGtaKAvRKfRLBU5sDxPymL//Oo5nfvvEbUuIjn6PSsob4MZRpryT:RcZHA5KJLBZxbj/1vEghjnQ8b4MZDyL/

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 5 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE

Files

35a95e6ee32e749c7cd486910b23ccd9be85383532299ef80268653c5a5f45ff
.apk .ps1 android arch:arm polyglot

com.rcplatform.tw

com.rcplatform.tw.activity.SplashActivity

Activities

com.rcplatform.tw.activity.MainActivity

android.media.action.IMAGE_CAPTURE

com.rcplatform.tw.activity.SplashActivity

android.intent.action.MAIN

com.rcplatform.tw.LockScreen.LockScreenActivity

android.intent.action.VIEW
intetn.bestme.lockscreen

com.rcplatform.tw.activity.AlbumSendIntentActivity

android.intent.action.SEND

com.rcplatform.selfiecamera.activity.IsActivity

android.intent.action.MAIN

Permissions

android.permission.GET_TASKS
android.permission.SYSTEM_ALERT_WINDOW
com.android.launcher.permission.INSTALL_SHORTCUT
android.permission.VIBRATE
android.permission.READ_PHONE_STATE
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WAKE_LOCK
android.permission.INTERNET
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
com.android.vending.BILLING
android.permission.RECEIVE_BOOT_COMPLETED
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
com.google.android.c2dm.permission.RECEIVE
com.rcplatform.tw.permission.C2D_MESSAGE

Receivers

com.rcplatform.tw.LockScreen.DeviceRebootReceiver

android.intent.action.BOOT_COMPLETED

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.rcplatform.selfiecamera.activity.Biz

android.intent.action.PACKAGE_ADDED

Services

com.rcplatform.rcfcmlibrary.fcm.RcFirebaseInstanceIDService

com.google.firebase.INSTANCE_ID_EVENT

com.rcplatform.rcfcmlibrary.fcm.RcFirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.google.firebase.iid.FirebaseInstanceIdService

com.google.firebase.INSTANCE_ID_EVENT

Android Permissions

35a95e6ee32e749c7cd486910b23ccd9be85383532299ef80268653c5a5f45ff

Permissions

android.permission.GET_TASKS

android.permission.SYSTEM_ALERT_WINDOW

com.android.launcher.permission.INSTALL_SHORTCUT

android.permission.VIBRATE

android.permission.READ_PHONE_STATE

android.permission.CAMERA

android.permission.FLASHLIGHT

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.WAKE_LOCK

android.permission.INTERNET

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

com.android.vending.BILLING

android.permission.RECEIVE_BOOT_COMPLETED

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

com.google.android.c2dm.permission.RECEIVE

com.rcplatform.tw.permission.C2D_MESSAGE

Sharing

General

Malware Config

Signatures

Files

com.rcplatform.tw

com.rcplatform.tw.activity.SplashActivity

Activities

com.rcplatform.tw.activity.MainActivity

com.rcplatform.tw.activity.SplashActivity

com.rcplatform.tw.LockScreen.LockScreenActivity

com.rcplatform.tw.activity.AlbumSendIntentActivity

com.rcplatform.selfiecamera.activity.IsActivity

Permissions

Receivers

com.rcplatform.tw.LockScreen.DeviceRebootReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.rcplatform.selfiecamera.activity.Biz

Services

com.rcplatform.rcfcmlibrary.fcm.RcFirebaseInstanceIDService

com.rcplatform.rcfcmlibrary.fcm.RcFirebaseMessagingService

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.iid.FirebaseInstanceIdService

Android Permissions

35a95e6ee32e749c7cd486910b23ccd9be85383532299ef80268653c5a5f45ff