624297960355ad020cf97e7c80e5e1ff8a50eb863e308d69991269507dd1f563

General

Target

624297960355ad020cf97e7c80e5e1ff8a50eb863e308d69991269507dd1f563
Size

11.3MB
MD5

b2a1a895265f20e540ca25eba94a99a5
SHA1

44fb825a04e21c69fd655dcb99f08360ebcc8701
SHA256

624297960355ad020cf97e7c80e5e1ff8a50eb863e308d69991269507dd1f563
SHA512

41303c132bbc6c547387dc896027745dd3ac2ec16a2a7edc8e93278376ad8100fda39777b7dd3e52f74b7e6d09e1948cdbeaafd07d0915f9e1a1166cdbc4eb64
SSDEEP

196608:bI0C3c/2X5GPKK5BYrpkgM7igQAoHoRNhYHyCOP:VCKJR5p7HYoRNhY+P

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to send SMS messages.	android.permission.SEND_SMS

Files

624297960355ad020cf97e7c80e5e1ff8a50eb863e308d69991269507dd1f563
.apk android arch:arm

com.xz.bird.mm

com.gameframework.xz.framework_xz

Activities

com.gameframework.xz.framework_xz

android.intent.action.MAIN

mm.purchasesdk.iapservice.BillingLayoutActivity

com.xz.bird.mm.com.mmiap.activity

safiap.framework.ui.UpdateHintActivity

safiap.framework.ACTION_TO_INSTALL
safiap.framework.ACTION_TO_INSTALL_IAP
safiap.framework.ACTION_NETWORK_ERROR_IAP
safiap.framework.ACTION_NETWORK_ERROR_FRAMEWORK

Permissions

android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.ACCESS_WIFI_STATE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.SEND_SMS
android.permission.GET_TASKS

Receivers

com.gameframework.xz.BootCompletedBroadCast

android.intent.action.BOOT_COMPLETED

safiap.framework.CheckUpdateReceiver

safiap.framework.ACTION_CANCEL_NOTIFICATION
safiap.GET_SHARED_DATA
safiap.framework.ACTION_SET_TIMER

Services

mm.purchasesdk.iapservice.PurchaseService

com.aspire.purchaseservice.BIND
com.xz.bird.mm.purchaseservice.BIND
android.intent.action.MAIN

safiap.framework.SafFrameworkManager

safiap.framework.sdk.ISAFFramework
safiap.framework.ACTION_START_DOWNLOAD
safiap.framework.ACTION_CHECK_UPDATE
alipay_plugin223_0309.apk
.apk android

com.alipay.android.app

.Cashier

Activities

.Cashier

android.intent.action.MAIN

.Alerter

android.intent.action.MAIN

.Welcome

android.intent.action.MAIN

.Updater

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.SEND_SMS
android.permission.ACCESS_COARSE_LOCATION

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

Android Permissions

624297960355ad020cf97e7c80e5e1ff8a50eb863e308d69991269507dd1f563

Permissions

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.ACCESS_WIFI_STATE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.VIBRATE

android.permission.SEND_SMS

android.permission.GET_TASKS

Sharing

General

Malware Config

Signatures

Files

com.xz.bird.mm

com.gameframework.xz.framework_xz

Activities

com.gameframework.xz.framework_xz

mm.purchasesdk.iapservice.BillingLayoutActivity

safiap.framework.ui.UpdateHintActivity

Permissions

Receivers

com.gameframework.xz.BootCompletedBroadCast

safiap.framework.CheckUpdateReceiver

Services

mm.purchasesdk.iapservice.PurchaseService

safiap.framework.SafFrameworkManager

com.alipay.android.app

.Cashier

Activities

.Cashier

.Alerter

.Welcome

.Updater

Permissions

Services

.AlixService

Android Permissions

624297960355ad020cf97e7c80e5e1ff8a50eb863e308d69991269507dd1f563