6356b65a10283cfc8e9552e08ea9c6eab0ce9ca22281536c33b8b99d4c2acc8a

General

Target

6356b65a10283cfc8e9552e08ea9c6eab0ce9ca22281536c33b8b99d4c2acc8a
Size

19.6MB
MD5

f1c64d752db5144152ea5a79da0f12aa
SHA1

f0d9cbda195edc2a7d2989cf16ecba642cc47eee
SHA256

6356b65a10283cfc8e9552e08ea9c6eab0ce9ca22281536c33b8b99d4c2acc8a
SHA512

71c65f5feb0d01ed8d069cd6e67a525197fbed7accf1869abe86965dff3374870f5fdbccd275dbb027e37c856f4296b2ab3fa052e9b1613a7d15a121d88e741b
SSDEEP

393216:zuERjMGq+ZQlc/Nvfd6hXp8gQk0PbNrTSRH53SPI8TkG2Kty/QjeFJ:FNZWqNXdUp8gQk0T8L3SgyVtdsJ

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 22 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to see the number being dialed during an outgoing call with the option to redirect the call to a different number or abort the call altogether.	android.permission.PROCESS_OUTGOING_CALLS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE

Files

6356b65a10283cfc8e9552e08ea9c6eab0ce9ca22281536c33b8b99d4c2acc8a
.apk android arch:arm

cn.weli.novel

cn.weli.novel.module.SplashActivity

Activities

cn.weli.novel.module.SplashActivity

android.intent.action.MAIN

cn.weli.novel.module.linkme.UriSchemeProcessActivity

android.intent.action.VIEW
android.intent.action.VIEW

cn.weli.novel.module.webview.WebViewActivity

cn.weli.novel.module.webview.WebViewActivity

cn.weli.novel.module.webview.SchemeActivity

cn.weli.novel.module.webview.SchemeActivity

cn.weli.novel.module.reader.ReadActivity

cn.weli.novel.module.reader.ReadActivity

cn.weli.novel.module.mine.BindPhoneActivity

cn.weli.novel.module.mine.BindPhoneActivity

cn.weli.novel.module.bookcity.MessageCategoryActivity

cn.weli.novel.tst..module.bookcity.MessageCategoryActivity

cn.weli.novel.module.audio.AudioPlayActivity

cn.weli.novel.module.audio.AudioPlayActivity

cn.weli.novel.module.message.customer.RedPacketCreateActivity

cn.weli.novel.module.message.customer.RedPacketCreateActivity

com.pingplusplus.android.PaymentActivity

android.intent.action.VIEW

cn.weli.novel.module.push.ThirdPushActivity

android.intent.action.oppopush

cn.weli.novel.module.personal.PersonalCenterActivity

cn.weli.novel.module.personal.PersonalCenterActivity

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_LOCATION_EXTRA_COMMANDS
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_SETTINGS
android.permission.GET_TASKS
android.permission.READ_LOGS
android.permission.INTERNET
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.GET_TASKS
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.SYSTEM_ALERT_WINDOW
getui.permission.GetuiService.cn.weli.novel
android.permission.WRITE_SETTINGS
com.meizu.flyme.push.permission.RECEIVE
com.meizu.c2dm.permission.RECEIVE
cn.weli.novel.push.permission.MESSAGE
cn.weli.novel.permission.C2D_MESSAGE
android.permission.BROADCAST_PACKAGE_ADDED
android.permission.BROADCAST_PACKAGE_CHANGED
android.permission.BROADCAST_PACKAGE_INSTALL
android.permission.BROADCAST_PACKAGE_REPLACED
android.permission.RESTART_PACKAGES
android.permission.CHANGE_NETWORK_STATE
cn.weli.novel.permission.MIPUSH_RECEIVE
com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.ACCESS_FINE_LOCATION
android.permission.WAKE_LOCK
android.permission.SYSTEM_ALERT_WINDOW
android.permission.PROCESS_OUTGOING_CALLS
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.FLASHLIGHT
android.permission.VIBRATE
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.FOREGROUND_SERVICE
android.permission.CAMERA
android.permission.RECORD_AUDIO
android.permission.READ_PHONE_STATE
cn.weli.novel.permission.RECEIVE_MSG
com.asus.msa.SupplementaryDID.ACCESS
com.sec.android.provider.badge.permission.READ
com.sec.android.provider.badge.permission.WRITE
com.htc.launcher.permission.READ_SETTINGS
com.htc.launcher.permission.UPDATE_SHORTCUT
com.sonyericsson.home.permission.BROADCAST_BADGE
com.sonymobile.home.permission.PROVIDER_INSERT_BADGE
com.anddoes.launcher.permission.UPDATE_COUNT
com.majeur.launcher.permission.UPDATE_BADGE
com.huawei.android.launcher.permission.CHANGE_BADGE
com.huawei.android.launcher.permission.READ_SETTINGS
com.huawei.android.launcher.permission.WRITE_SETTINGS
android.permission.READ_APP_BADGE
com.oppo.launcher.permission.READ_SETTINGS
com.oppo.launcher.permission.WRITE_SETTINGS
me.everything.badger.permission.BADGE_COUNT_READ
me.everything.badger.permission.BADGE_COUNT_WRITE

Receivers

cn.psea.sdk.PeacockManager$PeacockReveiver

cn.weli.novel.PEACOCKBROADCAST

cn.weli.novel.basecomponent.download.DownLoadMarketReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REPLACED
android.intent.action.PACKAGE_INSTALL
android.intent.action.PACKAGE_CHANGED

cn.weli.novel.module.audio.MusicIntentReceiver

android.media.AUDIO_BECOMING_NOISY
cn.weli.novelCN.WEILI.NOVEL.AUDIO.PLAY
cn.weli.novelCN.WEILI.NOVEL.AUDIO.PRE
cn.weli.novelCN.WEILI.NOVEL.AUDIO.NEXT
cn.weli.novelCN.WEILI.NOVEL.AUDIO.CANCLE

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.meizu.cloud.pushsdk.SystemReceiver

com.meizu.cloud.pushservice.action.PUSH_SERVICE_START

com.igexin.sdk.FlymePushReceiver

com.meizu.flyme.push.intent.MESSAGE
com.meizu.flyme.push.intent.REGISTER.FEEDBACK
com.meizu.flyme.push.intent.UNREGISTER.FEEDBACK
com.meizu.c2dm.intent.REGISTRATION
com.meizu.c2dm.intent.RECEIVE

com.igexin.sdk.MiuiPushReceiver

com.xiaomi.mipush.RECEIVE_MESSAGE
com.xiaomi.mipush.MESSAGE_ARRIVED
com.xiaomi.mipush.ERROR

com.igexin.sdk.HmsPushReceiver

com.huawei.android.push.intent.REGISTRATION
com.huawei.android.push.intent.RECEIVE
com.huawei.android.push.intent.CLICK
com.huawei.intent.action.PUSH_STATE

com.huawei.hms.support.api.push.PushEventReceiver

com.huawei.intent.action.PUSH

com.netease.nimlib.service.NimReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE

Services

com.igexin.sdk.PushService

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.igexin.sdk.OppoPushService

com.coloros.mcs.action.RECEIVE_MCS_MESSAGE

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.ss.android.socialbase.downloader.remote

com.getui.gtc.GtcService

com.getui.gtc.sdk.service.action
gdtadv2.jar
.apk android arch:arm64 arch:arm

Android Permissions

6356b65a10283cfc8e9552e08ea9c6eab0ce9ca22281536c33b8b99d4c2acc8a

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.SYSTEM_OVERLAY_WINDOW

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_LOCATION_EXTRA_COMMANDS

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_SETTINGS

android.permission.GET_TASKS

android.permission.READ_LOGS

android.permission.INTERNET

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.GET_TASKS

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.SYSTEM_ALERT_WINDOW

getui.permission.GetuiService.cn.weli.novel

android.permission.WRITE_SETTINGS

com.meizu.flyme.push.permission.RECEIVE

com.meizu.c2dm.permission.RECEIVE

cn.weli.novel.push.permission.MESSAGE

cn.weli.novel.permission.C2D_MESSAGE

android.permission.BROADCAST_PACKAGE_ADDED

android.permission.BROADCAST_PACKAGE_CHANGED

android.permission.BROADCAST_PACKAGE_INSTALL

android.permission.BROADCAST_PACKAGE_REPLACED

android.permission.RESTART_PACKAGES

android.permission.CHANGE_NETWORK_STATE

cn.weli.novel.permission.MIPUSH_RECEIVE

com.coloros.mcs.permission.RECIEVE_MCS_MESSAGE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.ACCESS_FINE_LOCATION

android.permission.WAKE_LOCK

android.permission.SYSTEM_ALERT_WINDOW

android.permission.PROCESS_OUTGOING_CALLS

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.FLASHLIGHT

Sharing

General

Malware Config

Signatures

Files

cn.weli.novel

cn.weli.novel.module.SplashActivity

Activities

cn.weli.novel.module.SplashActivity

cn.weli.novel.module.linkme.UriSchemeProcessActivity

cn.weli.novel.module.webview.WebViewActivity

cn.weli.novel.module.webview.SchemeActivity

cn.weli.novel.module.reader.ReadActivity

cn.weli.novel.module.mine.BindPhoneActivity

cn.weli.novel.module.bookcity.MessageCategoryActivity

cn.weli.novel.module.audio.AudioPlayActivity

cn.weli.novel.module.message.customer.RedPacketCreateActivity

com.pingplusplus.android.PaymentActivity

cn.weli.novel.module.push.ThirdPushActivity

cn.weli.novel.module.personal.PersonalCenterActivity

Permissions

Receivers

cn.psea.sdk.PeacockManager$PeacockReveiver

cn.weli.novel.basecomponent.download.DownLoadMarketReceiver

cn.weli.novel.module.audio.MusicIntentReceiver

com.igexin.sdk.PushReceiver

com.meizu.cloud.pushsdk.SystemReceiver

com.igexin.sdk.FlymePushReceiver

com.igexin.sdk.MiuiPushReceiver

com.igexin.sdk.HmsPushReceiver

com.huawei.hms.support.api.push.PushEventReceiver

com.netease.nimlib.service.NimReceiver

Services

com.igexin.sdk.PushService

com.igexin.sdk.OppoPushService

com.ss.android.socialbase.downloader.downloader.IndependentProcessDownloadService

com.getui.gtc.GtcService

Android Permissions

6356b65a10283cfc8e9552e08ea9c6eab0ce9ca22281536c33b8b99d4c2acc8a