410b9a4336e10b90c4e0709a7f2ab129ebe30a0cda1765781199f092baf1de9b

Sharing

Copy URL Twitter E-mail

General

Target

410b9a4336e10b90c4e0709a7f2ab129ebe30a0cda1765781199f092baf1de9b
Size

10.2MB
MD5

bf8098385eb7ec56b322028a84f54c74
SHA1

3078f5bc2860387e263a130e7423a4d5d4c88f60
SHA256

410b9a4336e10b90c4e0709a7f2ab129ebe30a0cda1765781199f092baf1de9b
SHA512

49ff5c529f05ea2fb967ba7f15bdff7aceb82c3583f398595651c96c5002098d94ef0a865341ff8c4c9ecb8e9e9afd0af38426b1a8f69205be662d97c421e2ae
SSDEEP

196608:3LyMJDtiw4RvL0fMpBFwAqs7/X7iJ++Ybr7JIk+r/grpEP:7yMJD5S0kpBeA3/+xWIkG/4e

Score

6^/10

Malware Config

Signatures

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Requests dangerous framework permissions 20 IoCs

description	ioc
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to monitor incoming MMS messages.	android.permission.RECEIVE_MMS
Allows an application to receive WAP push messages.	android.permission.RECEIVE_WAP_PUSH
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows an application to write and read the user's call log data.	android.permission.WRITE_CALL_LOG
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS

Files

410b9a4336e10b90c4e0709a7f2ab129ebe30a0cda1765781199f092baf1de9b
.apk android arch:arm

kvpioneer.cmcc

.ui.SplashActivity

Activities

.ui.SplashActivity

android.intent.action.MAIN

.barcode.CaptureActivity

kvpioneer.cmcc.action.ADD_BARCODE_SHORTCUT_ACTION

.speedup.DesktopWidgetActivity

kvpioneer.cmcc.action.DESDOP_SPEED_SHORTCUT_ACTION
android.intent.action.CREATE_SHORTCUT

cn.sharesdk.framework.ShareSDKUIShell

android.intent.action.VIEW

Permissions

android.permission.CHANGE_COMPONENT_ENABLED_STATE
android.permission.CLEAR_APP_CACHE
android.permission.GET_PACKAGE_SIZE
android.permission.RECEIVE_SMS
android.permission.RECEIVE_MMS
android.permission.RECEIVE_WAP_PUSH
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_APN_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.BLUETOOTH
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.WRITE_SMS
android.permission.CALL_PHONE
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_CONTACTS
android.permission.WRITE_CALL_LOG
android.permission.RECORD_AUDIO
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_CONTACTS
android.permission.PROCESS_OUTGOING_CALLS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.MOUNT_FORMAT_FILESYSTEMS
android.permission.SET_PREFERRED_APPLICATIONS
android.permission.CHANGE_WIFI_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_COARSE_LOCATION
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
android.permission.WRITE_SECURE_SETTINGS
android.permission.WRITE_SETTINGS
android.permission.RESTART_PACKAGES
android.permission.GET_TASKS
android.permission.CAMERA
android.permission.FLASHLIGHT
android.permission.VIBRATE
android.permission.BROADCAST_PACKAGE_REMOVED
com.android.launcher.permission.WRITE_SETTINGS
com.android.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.WRITE_SETTINGS
android.permission.READ_CALL_LOG
android.permission.READ_LOGS
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.REORDER_TASKS
com.android.browser.permission.READ_HISTORY_BOOKMARKS
com.android.browser.permission.WRITE_HISTORY_BOOKMARKS
android.permission.WAKE_LOCK
com.qihoo.antivirus.update.permission
com.qihoo.antivirus.update.permission.clear_sdk
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
com.qihoo.antivirus.update.permission
com.qihoo.antivirus.update.permission.clear_sdk

Receivers

.receiver.ScreenReceiver

android.intent.action.SCREEN_ON
android.intent.action.SCREEN_OFF
kvpioneer.cmcc.action.LOCK_FLOW_DIALOG_ACTION

.receiver.SMSReceiver

android.provider.Telephony.SMS_RECEIVED

.receiver.MmsReceiver

android.provider.Telephony.WAP_PUSH_RECEIVED
android.provider.Telephony.WAP_PUSH_RECEIVED
android.provider.Telephony.WAP_PUSH_RECEIVED

.receiver.PhoneStatReceiver

android.intent.action.PHONE_STATE
android.intent.action.NEW_OUTGOING_CALL

.receiver.IpCallReceiver

android.intent.action.NEW_OUTGOING_CALL

.receiver.TELReceiver

android.intent.action.PHONE_STATE

.receiver.RecevierBoot

android.intent.action.BOOT_COMPLETED

.receiver.DateChangeReceiver

android.intent.action.DATE_CHANGED

.receiver.NetChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

.receiver.ReceiverLocalPrompt

android.intent.action.LocalKill.newPrompt

.receiver.SimReceiver

android.intent.action.SIM_STATE_CHANGED

.giftware.DelGiftNotify

kvpioneer.cmcc.remove.listener

.receiver.InstallReceiver

android.intent.action.PACKAGE_ADDED

.receiver.UninstallReceiver

android.intent.action.PACKAGE_REMOVED
com.htjf.kvpnr.PACKAGE_REMOVED

.receiver.ReceiverShutDown

android.intent.action.ACTION_SHUTDOWN

.receiver.WholeReceiver

android.intent.action.PACKAGE_REMOVED
android.intent.action.PACKAGE_ADDED
android.provider.Telephony.SMS_RECEIVED
android.intent.action.USER_PRESENT

.receiver.PhonesignReceiver

kvpioneer.cmcc.phonesigns

.receiver.DownloadInstallAppsReceiver

kvpioneer.cmcc.download.install

.receiver.AdminReceiver

android.app.action.DEVICE_ADMIN_ENABLED

Services

.power.FirewallSvc

com.htjf.security.service.report

kvpioneer.cmcc.clean.ClearService

com.qihoo360.mobilesafe.service.SYS_CLEAR
com.qihoo360.mobilesafe.service.TRASH_CLEAR
Pickproof.apk
.apk android arch:arm

com.gmcc.pickproof

com.gmcc.pickproof.MainActivity

Activities

com.gmcc.pickproof.MainActivity

android.intent.action.MAIN

Permissions

android.permission.READ_CONTACTS
android.permission.SEND_SMS
android.permission.READ_SMS
android.permission.RECEIVE_SMS
android.permission.READ_PHONE_STATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.RECEIVE_BOOT_COMPLETED

Receivers

com.gmcc.pickproof.receiver.DeviceAdminSampleReceiver

android.app.action.DEVICE_ADMIN_ENABLED

com.gmcc.pickproof.receiver.BootCompletedReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.USER_PRESENT
android.provider.Telephony.SMS_RECEIVED
android.intent.action.SIM_STATE_CHANGED
android.net.conn.CONNECTIVITY_CHANGE

com.gmcc.pickproof.receiver.AppInstallReceiver

android.intent.action.PACKAGE_REMOVED

Services
core.zip
.apk android arch:arm

com.htjf.security.core
felix.configadmin-1.2.8.jar
.apk android
felix.fileinstall-3.1.10.jar
.apk android
felix.log-1.0.1.jar
.apk android
kvcore.impl-android.jar
.apk android
oclt.jar
.apk android
t.jar
.apk android

Android Permissions

410b9a4336e10b90c4e0709a7f2ab129ebe30a0cda1765781199f092baf1de9b

Permissions

android.permission.CHANGE_COMPONENT_ENABLED_STATE

android.permission.CLEAR_APP_CACHE

android.permission.GET_PACKAGE_SIZE

android.permission.RECEIVE_SMS

android.permission.RECEIVE_MMS

android.permission.RECEIVE_WAP_PUSH

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.WRITE_APN_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.BLUETOOTH

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.SEND_SMS

android.permission.READ_SMS

android.permission.WRITE_SMS

android.permission.CALL_PHONE

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_CONTACTS

android.permission.WRITE_CALL_LOG

android.permission.RECORD_AUDIO

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_CONTACTS

android.permission.PROCESS_OUTGOING_CALLS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MOUNT_FORMAT_FILESYSTEMS

android.permission.SET_PREFERRED_APPLICATIONS

android.permission.CHANGE_WIFI_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_COARSE_LOCATION

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

android.permission.WRITE_SECURE_SETTINGS

android.permission.WRITE_SETTINGS

android.permission.RESTART_PACKAGES

android.permission.GET_TASKS

android.permission.CAMERA

android.permission.FLASHLIGHT

android.permission.VIBRATE

android.permission.BROADCAST_PACKAGE_REMOVED

com.android.launcher.permission.WRITE_SETTINGS

com.android.launcher.permission.READ_SETTINGS

com.htc.launcher.permission.READ_SETTINGS

com.htc.launcher.permission.WRITE_SETTINGS

android.permission.READ_CALL_LOG

android.permission.READ_LOGS

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.REORDER_TASKS

com.android.browser.permission.READ_HISTORY_BOOKMARKS

Sharing

General

Malware Config

Signatures

Files

kvpioneer.cmcc

.ui.SplashActivity

Activities

.ui.SplashActivity

.barcode.CaptureActivity

.speedup.DesktopWidgetActivity

cn.sharesdk.framework.ShareSDKUIShell

Permissions

Receivers

.receiver.ScreenReceiver

.receiver.SMSReceiver

.receiver.MmsReceiver

.receiver.PhoneStatReceiver

.receiver.IpCallReceiver

.receiver.TELReceiver

.receiver.RecevierBoot

.receiver.DateChangeReceiver

.receiver.NetChangeReceiver

.receiver.ReceiverLocalPrompt

.receiver.SimReceiver

.giftware.DelGiftNotify

.receiver.InstallReceiver

.receiver.UninstallReceiver

.receiver.ReceiverShutDown

.receiver.WholeReceiver

.receiver.PhonesignReceiver

.receiver.DownloadInstallAppsReceiver

.receiver.AdminReceiver

Services

.power.FirewallSvc

kvpioneer.cmcc.clean.ClearService

com.gmcc.pickproof

com.gmcc.pickproof.MainActivity

Activities

com.gmcc.pickproof.MainActivity

Permissions

Receivers

com.gmcc.pickproof.receiver.DeviceAdminSampleReceiver

com.gmcc.pickproof.receiver.BootCompletedReceiver

com.gmcc.pickproof.receiver.AppInstallReceiver

Services

com.htjf.security.core

Android Permissions

410b9a4336e10b90c4e0709a7f2ab129ebe30a0cda1765781199f092baf1de9b