5641b6178eab0d4cf225bca7154c1fc7d62e1651e6b3cfa2dfb59a46af43304d

Sharing

Copy URL Twitter E-mail

General

Target

5641b6178eab0d4cf225bca7154c1fc7d62e1651e6b3cfa2dfb59a46af43304d
Size

28.5MB
MD5

e067e4f5aaaab50e4d9e2ebc7988dd8c
SHA1

41bc44eecbe5cbe924f0613413f01f97a8773433
SHA256

5641b6178eab0d4cf225bca7154c1fc7d62e1651e6b3cfa2dfb59a46af43304d
SHA512

6900f723508bad356f7935b573d86478ec55a8267b309b0013e1a4c4a39bb6ad2ba072b518f21a9e70196f87f7bf4cbe6cca629661e31994cda46c4e78b893d8
SSDEEP

786432:qhCDDtkj1qk3l/7I3FhBIIVb+5o9nEz4brcXh0X6it5FBjcA:dtkj73lDUFhBRMW9nEsXcxuXjcA

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES

Files

5641b6178eab0d4cf225bca7154c1fc7d62e1651e6b3cfa2dfb59a46af43304d
.apk android arch:arm64 arch:arm arch:x86

com.myxianwen.nanguozaobao

com.iimedianets.iimedianewsapp.activity.InitialActivity

Activities

com.iimedianets.iimedianewsapp.activity.InitialActivity

android.intent.action.MAIN
android.intent.action.VIEW

com.iimedianets.iimedianewsapp.MainActivity

com.myxianwen.nanguozaobao.MainActivity

com.iimedianets.iimedianewsapp.activity.NewsContectActivity

com.myxianwen.nanguozaobao.NewsContectActivity

com.iimedianets.iimedianewsapp.activity.NotificationDetailActivity

android.intent.action.VIEW

com.iimedianets.iimedianewsapp.activity.LoginActivity

com.myxianwen.nanguozaobao.LoginActivity

com.iimedianets.iimedianewsapp.activity.VideoActivity

com.myxianwen.nanguozaobao.VideoActivity

com.iimedianets.iimedianewsapp.activity.UploadAvatarActivity

com.myxianwen.nanguozaobao.UploadAvatarActivity

com.iimedianets.iimedianewsapp.activity.JiJianActivity

com.myxianwen.nanguozaobao.JiJianActivity

com.iimedianets.iimedianewsapp.activity.UgcChannelDetailActivity

com.myxianwen.nanguozaobao.UgcChannelDetailActivity

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

com.myxianwen.ngzb.SplashActivity

com.myxianwen.nanguozaobao.SplashActivity
android.intent.action.VIEW

com.myxianwen.ngzb.NanguoActivity

com.myxianwen.nanguozaobao.NanguoActivity

com.myxianwen.ngzb.activity.CalendarActivity

com.myxianwen.nanguozaobao.CalendarActivity

com.myxianwen.ngzb.activity.ChannelActivity

com.myxianwen.nanguozaobao.ChannelActivity

com.myxianwen.ngzb.activity.SearchActivity

com.myxianwen.nanguozaobao.SearchActivity

com.myxianwen.ngzb.activity.AboutActivity

com.myxianwen.nanguozaobao.AboutActivity

com.myxianwen.ngzb.AdvertisementActivity

com.myxianwen.nanguozaobao.AdvertisementActivity

com.myxianwen.video.VideoDetailActivity

com.myxianwen.nanguozaobao.VideoDetailActivity

com.myxianwen.xwplayer.RichtextLiveActivity

com.myxianwen.nanguozaobao.RichtextLiveActivity

com.myxianwen.xwplayer.RichtextLiveUserActivity

com.myxianwen.nanguozaobao.RichtextLiveUserActivity

com.myxianwen.mine.LoginActivity

com.myxianwen.nanguozaobao.LoginActivityType2

com.myxianwen.mine.ExposeActivity

com.myxianwen.nanguozaobao.ExposeActivity

com.myxianwen.mine.CommentExposeActivity

com.myxianwen.nanguozaobao.CommentExposeActivity

com.myxianwen.channel.ChannelPushSettingActivity

com.myxianwen.nanguozaobao.ChannelPushSettingActivity

com.myxianwen.ugc.MoreChannelActivity

com.myxianwen.nanguozaobao.MoreChannelActivity

com.myxianwen.ugc.UgcDetailActivity

com.myxianwen.nanguozaobao.UgcDetailActivity

com.myxianwen.ugc.UgcFoundActivity

com.myxianwen.nanguozaobao.UgcFoundActivity

com.myxianwen.ugc.UgcListActivity

com.myxianwen.nanguozaobao.UgcListActivity

com.myxianwen.news.NewsDetailActivity

com.myxianwen.nanguozaobao.NewsDetailActivity

com.myxianwen.news.ElectronicNewspaperActivity

com.myxianwen.nanguozaobao.ElectronicNewspaperActivity

com.myxianwen.news.NewsImageActivity

com.myxianwen.nanguozaobao.NewsImageActivity

com.myxianwen.news.NewsHistoryActivity

com.myxianwen.nanguozaobao.NewsHistoryActivity

com.myxianwen.news.NewsTopicActivity

com.myxianwen.nanguozaobao.NewsTopicActivity

com.myxianwen.news.NewsWebActivity

com.myxianwen.nanguozaobao.NewsWebActivity

com.myxianwen.news.SimpleNewsActivity

com.myxianwen.nanguozaobao.SimpleNewsActivity

com.myxianwen.comment.CommentListActivity

com.myxianwen.nanguozaobao.CommentListActivity

com.myxianwen.comment.CommentListActivity2

com.myxianwen.nanguozaobao.CommentListActivity2

com.myxianwen.comment.CommentListActivity3

com.myxianwen.nanguozaobao.CommentListActivity3

com.myxianwen.xwreporter.ReporterMainActivity

com.myxianwen.nanguozaobao.ReporterMainActivity

com.myxianwen.xwreporter.ReporterListActivity

com.myxianwen.nanguozaobao.ReporterListActivity

com.myxianwen.xwreporter.ReporterDetailActivity

com.myxianwen.nanguozaobao.ReporterDetailActivity

com.myxianwen.xwreporter.PictureDetailActivity

com.myxianwen.nanguozaobao.PictureDetailActivity

com.myxianwen.xwlive.views.HomeActivity

com.myxianwen.nanguozaobao.HomeActivity

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.VIBRATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.GET_TASKS
android.permission.READ_PHONE_STATE
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS
android.permission.READ_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.CAMERA
com.android.launcher.permission.READ_SETTINGS
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CHANGE_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.READ_SETTINGS
android.permission.WRITE_SETTINGS
android.permission.DISABLE_KEYGUARD
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.EXPAND_STATUS_BAR
baidu.push.permission.WRITE_PUSHINFOPROVIDER.com.myxianwen.nanguozaobao
android.permission.READ_LOGS
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
android.permission.CHANGE_NETWORK_STATE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECORD_AUDIO
android.permission.WAKE_LOCK
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.BROADCAST_STICKY
android.permission.SYSTEM_ALERT_WINDOW
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.GET_TOP_ACTIVITY_INFO
android.permission.REORDER_TASKS
android.permission.REQUEST_INSTALL_PACKAGES
com.myxianwen.nanguozaobao.permission.MIPUSH_RECEIVE

Receivers

com.iimedianets.iimedianewsapp.receiver.LockScreenReceiver

com.myxianwen.nanguozaobao.INTENTFILTER_LOCK_SCREEN_NEWS

com.iimedianets.iimedianewsapp.receiver.AssistantReceiver

com.myxianwen.nanguozaobao.INTENTFILTER_PUSH_ASSISTANT
android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.net.wifi.RSSI_CHANGED
android.net.wifi.STATE_CHANGE
android.net.wifi.WIFI_STATE_CHANGED
android.intent.action.MEDIA_UNMOUNTED
android.intent.action.MEDIA_MOUNTED
android.intent.action.MEDIA_REMOVED
android.intent.action.MEDIA_CHECKING
android.intent.action.MEDIA_EJECT
android.intent.action.USER_PRESENT
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.taobao.accs.EventReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.USER_PRESENT

com.taobao.accs.ServiceReceiver

com.taobao.accs.intent.action.COMMAND
com.taobao.accs.intent.action.START_FROM_AGOO

com.taobao.agoo.AgooCommondReceiver

com.myxianwen.nanguozaobao.intent.action.COMMAND
android.intent.action.PACKAGE_REMOVED

org.android.agoo.huawei.HuaWeiReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.intent.action.PUSH
com.huawei.intent.action.PUSH_STATE

org.android.agoo.xiaomi.MiPushBroadcastReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.ERROR

Services

com.iimedianets.iimedianewsapp.service.DownloadIntentService

com.myxianwen.nanguozaobao.INTENTFILTER_DOWNLOAD_IMAGE

com.taobao.accs.ChannelService

com.taobao.accs.intent.action.SERVICE
com.taobao.accs.intent.action.ELECTION

com.taobao.accs.data.MsgDistributeService

com.taobao.accs.intent.action.RECEIVE

org.android.agoo.accs.AgooService

com.taobao.accs.intent.action.RECEIVE

com.umeng.message.UmengIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.XiaomiIntentService

org.agoo.android.intent.action.RECEIVE

com.umeng.message.UmengMessageIntentReceiverService

org.android.agoo.client.MessageReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.umeng.messge.registercallback.action
com.umeng.message.enablecallback.action
com.umeng.message.disablecallback.action
com.umeng.message.message.handler.action
com.umeng.message.message.sendmessage.action

com.coloros.mcssdk.PushService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE
gdtadv2.jar
.apk android

Android Permissions

5641b6178eab0d4cf225bca7154c1fc7d62e1651e6b3cfa2dfb59a46af43304d

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.VIBRATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.GET_TASKS

android.permission.READ_PHONE_STATE

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

android.permission.READ_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.CAMERA

com.android.launcher.permission.READ_SETTINGS

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.CHANGE_WIFI_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.READ_SETTINGS

android.permission.WRITE_SETTINGS

android.permission.DISABLE_KEYGUARD

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.EXPAND_STATUS_BAR

baidu.push.permission.WRITE_PUSHINFOPROVIDER.com.myxianwen.nanguozaobao

android.permission.READ_LOGS

com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE

android.permission.CHANGE_NETWORK_STATE

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.RECORD_AUDIO

android.permission.WAKE_LOCK

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.BROADCAST_STICKY

android.permission.SYSTEM_ALERT_WINDOW

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.GET_TOP_ACTIVITY_INFO

android.permission.REORDER_TASKS

android.permission.REQUEST_INSTALL_PACKAGES

com.myxianwen.nanguozaobao.permission.MIPUSH_RECEIVE

Sharing

General

Malware Config

Signatures

Files

com.myxianwen.nanguozaobao

com.iimedianets.iimedianewsapp.activity.InitialActivity

Activities

com.iimedianets.iimedianewsapp.activity.InitialActivity

com.iimedianets.iimedianewsapp.MainActivity

com.iimedianets.iimedianewsapp.activity.NewsContectActivity

com.iimedianets.iimedianewsapp.activity.NotificationDetailActivity

com.iimedianets.iimedianewsapp.activity.LoginActivity

com.iimedianets.iimedianewsapp.activity.VideoActivity

com.iimedianets.iimedianewsapp.activity.UploadAvatarActivity

com.iimedianets.iimedianewsapp.activity.JiJianActivity

com.iimedianets.iimedianewsapp.activity.UgcChannelDetailActivity

com.tencent.tauth.AuthActivity

com.myxianwen.ngzb.SplashActivity

com.myxianwen.ngzb.NanguoActivity

com.myxianwen.ngzb.activity.CalendarActivity

com.myxianwen.ngzb.activity.ChannelActivity

com.myxianwen.ngzb.activity.SearchActivity

com.myxianwen.ngzb.activity.AboutActivity

com.myxianwen.ngzb.AdvertisementActivity

com.myxianwen.video.VideoDetailActivity

com.myxianwen.xwplayer.RichtextLiveActivity

com.myxianwen.xwplayer.RichtextLiveUserActivity

com.myxianwen.mine.LoginActivity

com.myxianwen.mine.ExposeActivity

com.myxianwen.mine.CommentExposeActivity

com.myxianwen.channel.ChannelPushSettingActivity

com.myxianwen.ugc.MoreChannelActivity

com.myxianwen.ugc.UgcDetailActivity

com.myxianwen.ugc.UgcFoundActivity

com.myxianwen.ugc.UgcListActivity

com.myxianwen.news.NewsDetailActivity

com.myxianwen.news.ElectronicNewspaperActivity

com.myxianwen.news.NewsImageActivity

com.myxianwen.news.NewsHistoryActivity

com.myxianwen.news.NewsTopicActivity

com.myxianwen.news.NewsWebActivity

com.myxianwen.news.SimpleNewsActivity

com.myxianwen.comment.CommentListActivity

com.myxianwen.comment.CommentListActivity2

com.myxianwen.comment.CommentListActivity3

com.myxianwen.xwreporter.ReporterMainActivity

com.myxianwen.xwreporter.ReporterListActivity

com.myxianwen.xwreporter.ReporterDetailActivity

com.myxianwen.xwreporter.PictureDetailActivity

com.myxianwen.xwlive.views.HomeActivity

Permissions

Receivers

com.iimedianets.iimedianewsapp.receiver.LockScreenReceiver

com.iimedianets.iimedianewsapp.receiver.AssistantReceiver

com.taobao.accs.EventReceiver

com.taobao.accs.ServiceReceiver

com.taobao.agoo.AgooCommondReceiver

org.android.agoo.huawei.HuaWeiReceiver

org.android.agoo.xiaomi.MiPushBroadcastReceiver

Services

com.iimedianets.iimedianewsapp.service.DownloadIntentService

com.taobao.accs.ChannelService

com.taobao.accs.data.MsgDistributeService

org.android.agoo.accs.AgooService

com.umeng.message.UmengIntentService

com.umeng.message.XiaomiIntentService

com.umeng.message.UmengMessageIntentReceiverService

com.umeng.message.UmengMessageCallbackHandlerService

com.coloros.mcssdk.PushService

Android Permissions

5641b6178eab0d4cf225bca7154c1fc7d62e1651e6b3cfa2dfb59a46af43304d