4ef84cc38c3866bcc141dc55ca546cc61065780816e6fd102e1f0bb70edf42a8

Sharing

Copy URL Twitter E-mail

General

Target

4ef84cc38c3866bcc141dc55ca546cc61065780816e6fd102e1f0bb70edf42a8
Size

14.7MB
MD5

d71ff11537fd41bdd8d06977e8bfa788
SHA1

93738bb69dd55c12edadfa82a6317af305d6725c
SHA256

4ef84cc38c3866bcc141dc55ca546cc61065780816e6fd102e1f0bb70edf42a8
SHA512

948f4fec7f09613645b7e5048d5914f2aad0f2ffd9b5182375ec27bd657fa0a9bafa594aa38ef6399b21ac6333aa91e5d7bb2e68b37bed689352ebb9cc8dbafc
SSDEEP

196608:gljnX8NX47urh8VkEUpGM3bRG7cL1OGddJPUjd9xMF3llBIQSgiGzSuaZUd9iIaH:glrY2q8VIt3Qc5q0F3lagiOhZ5aINh2

Score

6^/10

Malware Config

Signatures

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Requests dangerous framework permissions 19 IoCs

description	ioc
Allows an application to collect component usage statistics.	android.permission.PACKAGE_USAGE_STATS
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read SMS messages.	android.permission.READ_SMS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to write the user's calendar data.	android.permission.WRITE_CALENDAR
Allows an application to write the user's contacts data.	android.permission.WRITE_CONTACTS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read the user's call log.	android.permission.READ_CALL_LOG
Allows an application to write and read the user's call log data.	android.permission.WRITE_CALL_LOG
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS

Files

4ef84cc38c3866bcc141dc55ca546cc61065780816e6fd102e1f0bb70edf42a8
.apk android arch:mips arch:arm arch:x86

org.antivirus.tablet

com.antivirus.ui.main.AntivirusMainScreen

Activities

com.antivirus.ui.main.AntivirusMainScreen

android.intent.action.MAIN

com.antivirus.ui.scan.ScanBeforeInstallActivity

android.intent.action.VIEW

com.antivirus.marketing.DeepLinkCatcherActivity

android.intent.action.VIEW

Permissions

org.antivirus.tablet.permission.C2D_MESSAGE
org.antivirus.tablet.PAYMENT_BROADCAST_PERMISSION
com.android.browser.permission.READ_HISTORY_BOOKMARKS
android.permission.PACKAGE_USAGE_STATS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_COARSE_UPDATES
android.permission.ACCESS_FINE_LOCATION
android.permission.BATTERY_STATS
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.CALL_PHONE
android.permission.CAMERA
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.CLEAR_APP_CACHE
android.permission.DISABLE_KEYGUARD
android.permission.GET_PACKAGE_SIZE
android.permission.GET_TASKS
android.permission.KILL_BACKGROUND_PROCESSES
android.permission.MANAGE_ACCOUNTS
android.permission.READ_CONTACTS
android.permission.READ_LOGS
android.permission.READ_PHONE_STATE
android.permission.READ_SMS
android.permission.READ_SYNC_SETTINGS
android.permission.RECEIVE_SMS
android.permission.RESTART_PACKAGES
android.permission.SUBSCRIBED_FEEDS_WRITE
android.permission.SEND_SMS
android.permission.VIBRATE
android.permission.WRITE_CALENDAR
android.permission.WRITE_CONTACTS
android.permission.WRITE_OWNER_DATA
android.permission.WRITE_SMS
android.permission.WRITE_SYNC_SETTINGS
android.permission.WRITE_USER_DICTIONARY
android.permission.WRITE_EXTERNAL_STORAGE
com.sec.android.provider.logsprovider.permission.READ_LOGS
com.sec.android.provider.logsprovider.permission.WRITE_LOGS
com.android.browser.permission.WRITE_HISTORY_BOOKMARKS
com.android.launcher.permission.INSTALL_SHORTCUT
com.android.launcher.permission.UNINSTALL_SHORTCUT
com.android.launcher.permission.WRITE_SETTINGS
com.htc.launcher.permission.WRITE_SETTINGS
com.sonyericsson.homescreen.permission.READ_SETTINGS
com.sonyericsson.homescreen.permission.WRITE_SETTINGS
android.permission.SYSTEM_ALERT_WINDOW
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_CALL_LOG
android.permission.WRITE_CALL_LOG
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
com.android.vending.BILLING
android.permission.AUTHENTICATE_ACCOUNTS
android.permission.WRITE_SETTINGS
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.GET_ACCOUNTS
android.permission.WAKE_LOCK
com.google.android.c2dm.permission.RECEIVE

Receivers

com.avg.toolkit.gcm.TKGCMReceiver

com.google.android.c2dm.intent.RECEIVE

com.antivirus.widget.AvWidgetProvider

android.appwidget.action.APPWIDGET_UPDATE

com.avg.billing.fortumo.FortumoPaymentReciver

mp.info.PAYMENT_STATUS_CHANGED

com.antivirus.zen.ZENLoginReceiver

com.avg.zen.loginreceiver

com.avg.ui.badge.BadgeAlarmReceiver

INCREASE_BADGE_ACTION
ACTIVATE_ALARM_ACTION

com.antivirus.errors.LG

com.antivirus.LG

com.antivirus.callmessagefilter.callblocker.IncomingCallReceiver

android.intent.action.PHONE_STATE

com.antivirus.callmessagefilter.smsblocker.SMSReceiver

android.provider.Telephony.SMS_RECEIVED

com.antivirus.zen.ZenInvitationReceiver

android.provider.Telephony.SMS_RECEIVED
com.avg.zen.loginreceiver

com.antivirus.callmessagefilter.callblocker.CellNetworkReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.antivirus.applocker.LocaleChangeReceiver

android.intent.action.LOCALE_CHANGED

com.antivirus.tuneup.ShutDownReceiver

android.intent.action.ACTION_SHUTDOWN
android.intent.action.QUICKBOOT_POWEROFF

com.antivirus.tuneup.ConnectivityReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.antivirus.ui.privacy.PrivacyAlarmReceiver

privacy_notification_delete_call_log_action

com.antivirus.privacy.ClearClipboardReceiver

privacy_notification_clear_clipboard_action

com.antitheft.sms.IncomingSmsReceiver

android.provider.Telephony.SMS_RECEIVED

com.antitheft.receiver.SimChangeReceiver

android.intent.action.SIM_STATE_CHANGED

com.antitheft.receiver.ConnectivityChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.avg.antitheft.AnthitheftDeviceAdminReceiver

android.app.action.DEVICE_ADMIN_ENABLED

com.antivirus.core.receivers.PackageAddReceiver

android.intent.action.PACKAGE_ADDED

com.antivirus.core.receivers.PackageRemovedReceiver

android.intent.action.PACKAGE_REMOVED

com.antivirus.core.apploader.AppLoaderAlarmReceiver

com.droidsec.apploaderalarm

com.antitheft.sms.IncomingSmsReceiver

android.provider.Telephony.SMS_RECEIVED

com.antitheft.receiver.SimChangeReceiver

android.intent.action.SIM_STATE_CHANGED

com.antitheft.receiver.ConnectivityChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

mp.MpSMSReceiver

android.provider.Telephony.SMS_RECEIVED

com.avg.billing.SimChangedReceiver

android.intent.action.SIM_STATE_CHANGED

com.avg.toolkit.recurringTasks.BootReceiver

android.intent.action.BOOT_COMPLETED

com.avg.toolkit.marketing.MarketReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.avg.toolkit.uid.SharedIdReceiver

com.avg.action.send_your_id
com.avg.action.take_id

com.avg.toolkit.ads.ocm.OcmAlarmReceiver

com.avg.action.ocm_alarm

com.avg.toolkit.zen.ZENConnectivityReciever

android.net.conn.CONNECTIVITY_CHANGE

com.avg.toolkit.zen.GlobalLoginReceiver

com.avg.zen.action.GLOBAL_LOGIN_STATUS_CHANGE

com.google.android.gms.measurement.AppMeasurementReceiver

com.google.android.gms.measurement.UPLOAD

com.exacttarget.etpushsdk.ETPushReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_SHUTDOWN
android.intent.action.AIRPLANE_MODE
com.google.android.c2dm.intent.RECEIVE
com.exacttarget.etpushsdk.SEND_REGISTRATION
org.antivirus.tablet.MESSAGE_OPENED
android.intent.action.PACKAGE_REPLACED

org.altbeacon.beacon.startup.StartupBroadcastReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

Services

com.exacttarget.etpushsdk.ETPushService

com.google.android.c2dm.intent.RECEIVE

com.antivirus.AVService

com.avg.toolkit.TKS_ACTION

com.avg.ui.accountmanager.AccountAuthService

android.accounts.AccountAuthenticator

com.exacttarget.etpushsdk.ETInstanceIdListenerService

com.google.android.gms.iid.InstanceID

Android Permissions

4ef84cc38c3866bcc141dc55ca546cc61065780816e6fd102e1f0bb70edf42a8

Permissions

org.antivirus.tablet.permission.C2D_MESSAGE

org.antivirus.tablet.PAYMENT_BROADCAST_PERMISSION

com.android.browser.permission.READ_HISTORY_BOOKMARKS

android.permission.PACKAGE_USAGE_STATS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_COARSE_UPDATES

android.permission.ACCESS_FINE_LOCATION

android.permission.BATTERY_STATS

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.CALL_PHONE

android.permission.CAMERA

android.permission.ACCESS_WIFI_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.CLEAR_APP_CACHE

android.permission.DISABLE_KEYGUARD

android.permission.GET_PACKAGE_SIZE

android.permission.GET_TASKS

android.permission.KILL_BACKGROUND_PROCESSES

android.permission.MANAGE_ACCOUNTS

android.permission.READ_CONTACTS

android.permission.READ_LOGS

android.permission.READ_PHONE_STATE

android.permission.READ_SMS

android.permission.READ_SYNC_SETTINGS

android.permission.RECEIVE_SMS

android.permission.RESTART_PACKAGES

android.permission.SUBSCRIBED_FEEDS_WRITE

android.permission.SEND_SMS

android.permission.VIBRATE

android.permission.WRITE_CALENDAR

android.permission.WRITE_CONTACTS

android.permission.WRITE_OWNER_DATA

android.permission.WRITE_SMS

android.permission.WRITE_SYNC_SETTINGS

android.permission.WRITE_USER_DICTIONARY

android.permission.WRITE_EXTERNAL_STORAGE

com.sec.android.provider.logsprovider.permission.READ_LOGS

com.sec.android.provider.logsprovider.permission.WRITE_LOGS

com.android.browser.permission.WRITE_HISTORY_BOOKMARKS

com.android.launcher.permission.INSTALL_SHORTCUT

com.android.launcher.permission.UNINSTALL_SHORTCUT

com.android.launcher.permission.WRITE_SETTINGS

com.htc.launcher.permission.WRITE_SETTINGS

com.sonyericsson.homescreen.permission.READ_SETTINGS

com.sonyericsson.homescreen.permission.WRITE_SETTINGS

android.permission.SYSTEM_ALERT_WINDOW

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_CALL_LOG

Sharing

General

Malware Config

Signatures

Files

org.antivirus.tablet

com.antivirus.ui.main.AntivirusMainScreen

Activities

com.antivirus.ui.main.AntivirusMainScreen

com.antivirus.ui.scan.ScanBeforeInstallActivity

com.antivirus.marketing.DeepLinkCatcherActivity

Permissions

Receivers

com.avg.toolkit.gcm.TKGCMReceiver

com.antivirus.widget.AvWidgetProvider

com.avg.billing.fortumo.FortumoPaymentReciver

com.antivirus.zen.ZENLoginReceiver

com.avg.ui.badge.BadgeAlarmReceiver

com.antivirus.errors.LG

com.antivirus.callmessagefilter.callblocker.IncomingCallReceiver

com.antivirus.callmessagefilter.smsblocker.SMSReceiver

com.antivirus.zen.ZenInvitationReceiver

com.antivirus.callmessagefilter.callblocker.CellNetworkReceiver

com.antivirus.applocker.LocaleChangeReceiver

com.antivirus.tuneup.ShutDownReceiver

com.antivirus.tuneup.ConnectivityReceiver

com.antivirus.ui.privacy.PrivacyAlarmReceiver

com.antivirus.privacy.ClearClipboardReceiver

com.antitheft.sms.IncomingSmsReceiver

com.antitheft.receiver.SimChangeReceiver

com.antitheft.receiver.ConnectivityChangeReceiver

com.avg.antitheft.AnthitheftDeviceAdminReceiver

com.antivirus.core.receivers.PackageAddReceiver

com.antivirus.core.receivers.PackageRemovedReceiver

com.antivirus.core.apploader.AppLoaderAlarmReceiver

com.antitheft.sms.IncomingSmsReceiver

com.antitheft.receiver.SimChangeReceiver

com.antitheft.receiver.ConnectivityChangeReceiver

mp.MpSMSReceiver

com.avg.billing.SimChangedReceiver

com.avg.toolkit.recurringTasks.BootReceiver

com.avg.toolkit.marketing.MarketReferrerReceiver

com.avg.toolkit.uid.SharedIdReceiver

com.avg.toolkit.ads.ocm.OcmAlarmReceiver

com.avg.toolkit.zen.ZENConnectivityReciever

com.avg.toolkit.zen.GlobalLoginReceiver

com.google.android.gms.measurement.AppMeasurementReceiver

com.exacttarget.etpushsdk.ETPushReceiver

org.altbeacon.beacon.startup.StartupBroadcastReceiver

Services

com.exacttarget.etpushsdk.ETPushService

com.antivirus.AVService

com.avg.ui.accountmanager.AccountAuthService

com.exacttarget.etpushsdk.ETInstanceIdListenerService

Android Permissions

4ef84cc38c3866bcc141dc55ca546cc61065780816e6fd102e1f0bb70edf42a8