51d01c12e0da09bc8c13431b48acd2c8c5979b46e2d27002437d0dd95a530725

Sharing

Copy URL Twitter E-mail

General

Target

51d01c12e0da09bc8c13431b48acd2c8c5979b46e2d27002437d0dd95a530725
Size

5.0MB
MD5

63ce601477a98e50d09aa5ee48dd350f
SHA1

2c6031017769cef18267310647a6ddee3dcf2522
SHA256

51d01c12e0da09bc8c13431b48acd2c8c5979b46e2d27002437d0dd95a530725
SHA512

d2fda02975c91a0fbe14b75cb7e5b4ef7a19d33fd1a747d6a17c97b2258c284a17e6a988b62fed86ca21fadaf0d2c5667b0a76428fb080eb27e7ef7912a96ecb
SSDEEP

98304:hCFCbI53SFl1AJNJoghwQB0XObveAY623uMgjcdIt8dqzm05SejJeaMS3kgBK9Zc:hCNBvmWmJepMS5UZoIK7L

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows an application to send SMS messages.	android.permission.SEND_SMS
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to receive SMS messages.	android.permission.RECEIVE_SMS

Files

51d01c12e0da09bc8c13431b48acd2c8c5979b46e2d27002437d0dd95a530725
.apk android arch:arm arch:mips arch:x86

com.urming.pkuie

.ui.SplashActivity

Activities

.ui.SplashActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.VIBRATE
android.permission.CAMERA
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CHANGE_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.READ_LOGS
android.permission.CALL_PHONE
android.permission.SEND_SMS
android.permission.CHANGE_CONFIGURATION
android.permission.RECORD_AUDIO
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_SETTINGS
android.permission.DISABLE_KEYGUARD
android.permission.RECEIVE_SMS
android.permission.GET_TASKS
com.android.launcher.permission.INSTALL_SHORTCUT
com.urming.service.permission.MMOAUTH_CALLBACK
com.urming.service.permission.MM_MESSAGE

Receivers

.receiver.PushMessageReceiver

com.baidu.android.pushservice.action.MESSAGE
com.baidu.android.pushservice.action.RECEIVE
com.baidu.android.pushservice.action.notification.CLICK

com.tencent.mm.sdk.plugin.MMPluginOAuth$Receiver

com.tencent.mm.sdk.plugin.Intent.ACTION_RESPONSE

com.tencent.mm.sdk.channel.MMessage$Receiver

com.tencent.mm.sdk.channel.Intent.ACTION_MESSAGE

com.baidu.android.pushservice.PushServiceReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
com.baidu.android.pushservice.action.notification.SHOW
com.baidu.android.pushservice.action.media.CLICK

com.baidu.android.pushservice.RegistrationReceiver

com.baidu.android.pushservice.action.METHOD
com.baidu.android.pushservice.action.BIND_SYNC
android.intent.action.PACKAGE_REMOVED

Services

com.baidu.android.pushservice.PushService

com.baidu.android.pushservice.action.PUSH_SERVICE
alipay_plugin_20120428msp.apk
.apk android

com.alipay.android.app

.Cashier

Activities

.Cashier

android.intent.action.MAIN

.Alerter

android.intent.action.MAIN

.Welcome

android.intent.action.MAIN

.Updater

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.ACCESS_COARSE_LOCATION
com.aliyun.xiaoyunmi.alipay

Receivers

.AlixReceiver

com.aliyun.xiaoyunmi.alipay_exit

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay
plugin-deploy.jar
.apk android

Android Permissions

51d01c12e0da09bc8c13431b48acd2c8c5979b46e2d27002437d0dd95a530725

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.VIBRATE

android.permission.CAMERA

android.permission.READ_PHONE_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.CHANGE_WIFI_STATE

android.permission.CHANGE_NETWORK_STATE

android.permission.READ_LOGS

android.permission.CALL_PHONE

android.permission.SEND_SMS

android.permission.CHANGE_CONFIGURATION

android.permission.RECORD_AUDIO

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_SETTINGS

android.permission.DISABLE_KEYGUARD

android.permission.RECEIVE_SMS

android.permission.GET_TASKS

com.android.launcher.permission.INSTALL_SHORTCUT

com.urming.service.permission.MMOAUTH_CALLBACK

com.urming.service.permission.MM_MESSAGE

Sharing

General

Malware Config

Signatures

Files

com.urming.pkuie

.ui.SplashActivity

Activities

.ui.SplashActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

.receiver.PushMessageReceiver

com.tencent.mm.sdk.plugin.MMPluginOAuth$Receiver

com.tencent.mm.sdk.channel.MMessage$Receiver

com.baidu.android.pushservice.PushServiceReceiver

com.baidu.android.pushservice.RegistrationReceiver

Services

com.baidu.android.pushservice.PushService

com.alipay.android.app

.Cashier

Activities

.Cashier

.Alerter

.Welcome

.Updater

Permissions

Receivers

.AlixReceiver

Services

.AlixService

Android Permissions

51d01c12e0da09bc8c13431b48acd2c8c5979b46e2d27002437d0dd95a530725