5d9dfc1a78f739c1258513da3c5943635bf6808239509d53d8a626a677c50665

General

Target

5d9dfc1a78f739c1258513da3c5943635bf6808239509d53d8a626a677c50665
Size

1.7MB
MD5

85dc2d7f41f695f18c7447e295c6fde3
SHA1

54985c4258c84709230f50a3d0a1ba30f457c7bc
SHA256

5d9dfc1a78f739c1258513da3c5943635bf6808239509d53d8a626a677c50665
SHA512

25816f5cc440fe7f56da7cfaf9b39bf448fb92e8e8cee64c1322575b3369294af64ead5d7365a54e43b85be50ebb707f07213e64ae00b785a506d2632927e06f
SSDEEP

49152:gCFyb4rEM4nmKYUYZJiVmlnM+SFhzQOtWSPFsE9dyBXCScNshN/Kk:gayb4rEMcmKeZJ3nbItuE9dyBX1cNshD

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 3 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE

Files

5d9dfc1a78f739c1258513da3c5943635bf6808239509d53d8a626a677c50665
.apk android arch:arm

com.heimali.calculator

.MainProxyActivity

Activities

.MainProxyActivity

android.intent.action.MAIN

.ext.discount.DiscountActivity

com.heimali.calculator.EXT.DISCOUNT

.ext.tax.TaxActivity

com.heimali.calculator.EXT.TAX

.ext.lifetime.LifetimeActivity

com.heimali.calculator.EXT.LIFETIME

.ext.bmi.BMIActivity

com.heimali.calculator.EXT.BMI

.ext.litigation.LitigationActivity

com.heimali.calculator.EXT.LITIGATION

.ext.houseloan.HouseLoanActivity

com.heimali.calculator.EXT.HOUSELOAN

.ext.deposits.DepositsActivity

com.heimali.calculator.EXT.DEPOSITS

.ext.mbti.MBTIActivity

com.heimali.calculator.EXT.MBTI

.ext.forex.ForexActivity

com.heimali.calculator.EXT.FOREX

.ext.au.AuActivity

com.heimali.calculator.EXT.AU

.ext.kin.KinActivity

com.heimali.calculator.EXT.KIN

Permissions

android.permission.READ_LOGS
android.permission.VIBRATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.WRITE_SETTINGS
android.permission.WRITE_EXTERNAL_STORAGE
com.android.launcher.permission.INSTALL_SHORTCUT

Receivers

.wxapi.AppRegister

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

Services
com.heimali.calculator.theme.t1
.apk android

com.heimali.calculator.theme.t1

Android Permissions

5d9dfc1a78f739c1258513da3c5943635bf6808239509d53d8a626a677c50665

Permissions

android.permission.READ_LOGS

android.permission.VIBRATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.WRITE_SETTINGS

android.permission.WRITE_EXTERNAL_STORAGE

com.android.launcher.permission.INSTALL_SHORTCUT

Sharing

General

Malware Config

Signatures

Files

com.heimali.calculator

.MainProxyActivity

Activities

.MainProxyActivity

.ext.discount.DiscountActivity

.ext.tax.TaxActivity

.ext.lifetime.LifetimeActivity

.ext.bmi.BMIActivity

.ext.litigation.LitigationActivity

.ext.houseloan.HouseLoanActivity

.ext.deposits.DepositsActivity

.ext.mbti.MBTIActivity

.ext.forex.ForexActivity

.ext.au.AuActivity

.ext.kin.KinActivity

Permissions

Receivers

.wxapi.AppRegister

Services

com.heimali.calculator.theme.t1

Android Permissions

5d9dfc1a78f739c1258513da3c5943635bf6808239509d53d8a626a677c50665