78be7905bf1f9d03b5fbcdc08302c88fa5592058661b9d6de63a712a1c06372b

General

Target

78be7905bf1f9d03b5fbcdc08302c88fa5592058661b9d6de63a712a1c06372b
Size

14.6MB
MD5

998d061a190d2916a06509abd1c7963a
SHA1

b1ea2972cba4634b01f5bb3e56881e64fb8872d2
SHA256

78be7905bf1f9d03b5fbcdc08302c88fa5592058661b9d6de63a712a1c06372b
SHA512

cb6ec1f6682d4a13f08d188ba32040555dd476a0f1bd0461dcfaca0a1c0a5ff594fd5395621f09d7696059a13560494a0bdae3d8a0a22b5bb11839226dd6e6e6
SSDEEP

196608:rKjWM7SzwodgVCURR8K+82Iom+B+jMQ0omMlmp95EHcVMje3X64LnlKs2S4IA4lS:rkodFURRNRA9+jNIMUbMje3bT4/F

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to request installing packages.	android.permission.REQUEST_INSTALL_PACKAGES
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

78be7905bf1f9d03b5fbcdc08302c88fa5592058661b9d6de63a712a1c06372b
.apk android arch:arm64 arch:arm arch:x86 arch:x64

com.ircloud.ydh.agents.ydh03000423

com.ircloud.ydh.agents.ui.activity.WelcomeActivity

Activities

com.ircloud.ydh.agents.ui.activity.WelcomeActivity

android.intent.action.MAIN

com.sina.weibo.sdk.share.WbShareTransActivity

com.sina.weibo.sdk.action.ACTION_SDK_REQ_ACTIVITY

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.BLUETOOTH
android.permission.BLUETOOTH_ADMIN
android.permission.CHANGE_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.INTERNET
android.permission.READ_LOGS
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.READ_EXTERNAL_STORAGE
android.permission.REQUEST_INSTALL_PACKAGES
android.permission.ACCESS_FINE_LOCATION
android.permission.ACCESS_COARSE_LOCATION
android.permission.CALL_PHONE
android.permission.CAMERA
android.permission.VIBRATE
android.permission.ACCESS_NETWORK_STATE
android.permission.SYSTEM_ALERT_WINDOW
com.android.alarm.permission.SET_ALARM
android.permission.WAKE_LOCK
android.permission.RECORD_AUDIO
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.RECORD_AUDIO
android.permission.RECORD_VIDEO
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.GET_TASKS
getui.permission.GetuiService.com.ircloud.ydh.agents.ydh03000423

Receivers

com.ircloud.ydh.agents.receiver.PushMsgBroadcastReceiver

push_notification_broadcast

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

Services

com.jxccp.im.chat.JXCoreService

com.jxccp.im.chat.JXCoreService

com.igexin.sdk.PushService

com.igexin.sdk.action.service.message

Android Permissions

78be7905bf1f9d03b5fbcdc08302c88fa5592058661b9d6de63a712a1c06372b

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.BLUETOOTH

android.permission.BLUETOOTH_ADMIN

android.permission.CHANGE_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.INTERNET

android.permission.READ_LOGS

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.READ_EXTERNAL_STORAGE

android.permission.REQUEST_INSTALL_PACKAGES

android.permission.ACCESS_FINE_LOCATION

android.permission.ACCESS_COARSE_LOCATION

android.permission.CALL_PHONE

android.permission.CAMERA

android.permission.VIBRATE

android.permission.ACCESS_NETWORK_STATE

android.permission.SYSTEM_ALERT_WINDOW

com.android.alarm.permission.SET_ALARM

android.permission.WAKE_LOCK

android.permission.RECORD_AUDIO

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.RECORD_AUDIO

android.permission.RECORD_VIDEO

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.GET_TASKS

getui.permission.GetuiService.com.ircloud.ydh.agents.ydh03000423

Sharing

General

Malware Config

Signatures

Files

com.ircloud.ydh.agents.ydh03000423

com.ircloud.ydh.agents.ui.activity.WelcomeActivity

Activities

com.ircloud.ydh.agents.ui.activity.WelcomeActivity

com.sina.weibo.sdk.share.WbShareTransActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.ircloud.ydh.agents.receiver.PushMsgBroadcastReceiver

com.igexin.sdk.PushReceiver

Services

com.jxccp.im.chat.JXCoreService

com.igexin.sdk.PushService

Android Permissions

78be7905bf1f9d03b5fbcdc08302c88fa5592058661b9d6de63a712a1c06372b