6fb18db591bd72cb0e3dcd8a9aaa064c4b780bcbb04121a7200dc24d0137b431

Sharing

Copy URL Twitter E-mail

General

Target

6fb18db591bd72cb0e3dcd8a9aaa064c4b780bcbb04121a7200dc24d0137b431
Size

27.3MB
MD5

ff714202a467ac7d705d4cc4da1fc21d
SHA1

99c8a832f4a9b3b1242cdb4b885e6b9f5519f149
SHA256

6fb18db591bd72cb0e3dcd8a9aaa064c4b780bcbb04121a7200dc24d0137b431
SHA512

90e20684d1f06ff745f4f5776f51493661a9a7e47f29872af963bc990b27725312754197fbf22e3c06bf94e4c5f746645e51d41ab37c36f8574d46748f8bf23e
SSDEEP

786432:ecgIW4lHiykjmtx7aznl8RgaLydaBB7AmPONrE:eLIxdiyttJa7logabVOm

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 11 IoCs

description	ioc
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

6fb18db591bd72cb0e3dcd8a9aaa064c4b780bcbb04121a7200dc24d0137b431
.apk android arch:arm arch:mips

com.zhiniao.bjbus

com.pingan.course.module.startup.activity.LoadingActivity

Activities

com.pingan.course.module.startup.activity.LoadingActivity

android.intent.action.MAIN

com.pingan.zhiniao.module.lead.activity.SchemeAct

android.intent.action.VIEW

com.pingan.zhiniao.module.lead.activity.CMLeadUINew

com.pingan.CMLeadUINew

com.pingan.course.module.login.activity.LoadingUI

com.pingan.LoadingUI

com.ryg.dynamicload.DLProxyActivity

com.ryg.dynamicload.proxy.activity.VIEW

com.ryg.dynamicload.DLProxyFragmentActivity

com.ryg.dynamicload.proxy.fragmentactivity.VIEW

com.ryg.dynamicload.DLProxyActivityLand

com.ryg.dynamicload.proxy.activity.VIEW

com.ryg.dynamicload.DLProxyFragmentActivityLand

com.ryg.dynamicload.proxy.fragmentactivity.VIEW

.wxapi.WXEntryActivity

android.intent.action.VIEW

com.pingan.anydoor.hybrid.activity.CacheableWebViewActivity

android.intent.action.VIEW

com.pingan.anydoor.hybrid.activity.MsgCenterWebviewActivity

android.intent.action.VIEW

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.KILL_BACKGROUND_PROCESSES
com.pingan.xueyuan.permission.JPUSH_MESSAGE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.WAKE_LOCK
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.VIBRATE
android.permission.SYSTEM_ALERT_WINDOW
android.permission.READ_LOGS
android.permission.GET_TASKS
android.permission.BROADCAST_STICKY
android.permission.CAMERA
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.CHANGE_CONFIGURATION
android.permission.FLASHLIGHT
android.permission.RECORD_VIDEO
android.permission.RECORD_AUDIO
android.permission.ACCESS_DOWNLOAD_MANAGER
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.DISABLE_KEYGUARD
android.permission.EXPAND_STATUS_BAR
android.permission.INTERACT_ACROSS_USERS_FULL
android.permission.RECORD_AUDIO
android.permission.READ_EXTERNAL_STORAGE
android.permission.READ_CONTACTS
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.CHANGE_WIFI_STATE

Receivers

com.qihoo.util.CommonReceiver

com.qihoo.commonreceiver.ARRIVED
com.qihoo.commonreceiver.CLEARED

com.pingan.zhiniao.utils.http.NetWorkReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.pingan.zhiniao.utils.baiduyun.receiver.MyPushMessageReceiver

com.baidu.android.pushservice.action.MESSAGE
com.baidu.android.pushservice.action.RECEIVE
com.baidu.android.pushservice.action.notification.CLICK

com.baidu.android.pushservice.PushServiceReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
com.baidu.android.pushservice.action.notification.SHOW
com.baidu.android.pushservice.action.media.CLICK
android.intent.action.MEDIA_MOUNTED
android.intent.action.USER_PRESENT
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.baidu.android.pushservice.RegistrationReceiver

com.baidu.android.pushservice.action.METHOD
com.baidu.android.pushservice.action.BIND_SYNC
android.intent.action.PACKAGE_REMOVED

Services

com.qihoo.util.CommonService

com.qihoo.commonservice.SERVICE

com.baidu.location.f

com.baidu.location.service_v2.2

com.baidu.android.pushservice.PushService

com.baidu.android.pushservice.action.PUSH_SERVICE
M_ChartsPlugin.apk
.apk android

com.zhiniao.plugin.charts

.ChartsActivity

Activities

.ChartsActivity

android.intent.action.MAIN
M_CourseFilter.apk
.apk android

com.zhiniao.plugin.filter

.CourseFilterActivity

Activities

.CourseFilterActivity

android.intent.action.MAIN
discuss.apk
.apk android

com.example.test_discuss

com.example.test_discuss.MainActivity

Activities

com.example.test_discuss.MainActivity

android.intent.action.MAIN
paanydoor_resource_3.5.0.26.png
.apk android

com.pingan.anydoor

com.pingan.anydoor.hybrid.activity.CacheableWebViewActivity

Activities

Permissions

android.permission.SYSTEM_ALERT_WINDOW
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.VIBRATE
android.permission.DOWNLOAD_WITHOUT_NOTIFICATION
android.permission.RECORD_AUDIO
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.READ_PHONE_STATE
android.permission.READ_CONTACTS
android.permission.CAMERA
android.permission.CAMERA
android.permission.VIBRATE
android.permission.FLASHLIGHT
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.VIBRATE
android.permission.FLASHLIGHT
android.permission.SYSTEM_OVERLAY_WINDOW
android.permission.GET_TASKS
required_course.apk
.apk android

com.pingan.required_course

com.pingan.required_course.MainActivity

Activities

com.pingan.required_course.MainActivity

android.intent.action.MAIN
zxingplugin.apk
.apk android

com.pingan.zhiniao.module.zxing.plugin

com.pingan.zhiniao.module.zxing.plugin.activity.CaptureActivity

Activities

com.pingan.zhiniao.module.zxing.plugin.activity.CaptureActivity

android.intent.action.MAIN

Permissions

android.permission.CAMERA

Android Permissions

6fb18db591bd72cb0e3dcd8a9aaa064c4b780bcbb04121a7200dc24d0137b431

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.KILL_BACKGROUND_PROCESSES

com.pingan.xueyuan.permission.JPUSH_MESSAGE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.WAKE_LOCK

android.permission.WRITE_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.VIBRATE

android.permission.SYSTEM_ALERT_WINDOW

android.permission.READ_LOGS

android.permission.GET_TASKS

android.permission.BROADCAST_STICKY

android.permission.CAMERA

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.CHANGE_CONFIGURATION

android.permission.FLASHLIGHT

android.permission.RECORD_VIDEO

android.permission.RECORD_AUDIO

android.permission.ACCESS_DOWNLOAD_MANAGER

android.permission.DOWNLOAD_WITHOUT_NOTIFICATION

android.permission.DISABLE_KEYGUARD

android.permission.EXPAND_STATUS_BAR

android.permission.INTERACT_ACROSS_USERS_FULL

android.permission.RECORD_AUDIO

android.permission.READ_EXTERNAL_STORAGE

android.permission.READ_CONTACTS

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.CHANGE_WIFI_STATE

Sharing

General

Malware Config

Signatures

Files

com.zhiniao.bjbus

com.pingan.course.module.startup.activity.LoadingActivity

Activities

com.pingan.course.module.startup.activity.LoadingActivity

com.pingan.zhiniao.module.lead.activity.SchemeAct

com.pingan.zhiniao.module.lead.activity.CMLeadUINew

com.pingan.course.module.login.activity.LoadingUI

com.ryg.dynamicload.DLProxyActivity

com.ryg.dynamicload.DLProxyFragmentActivity

com.ryg.dynamicload.DLProxyActivityLand

com.ryg.dynamicload.DLProxyFragmentActivityLand

.wxapi.WXEntryActivity

com.pingan.anydoor.hybrid.activity.CacheableWebViewActivity

com.pingan.anydoor.hybrid.activity.MsgCenterWebviewActivity

Permissions

Receivers

com.qihoo.util.CommonReceiver

com.pingan.zhiniao.utils.http.NetWorkReceiver

com.pingan.zhiniao.utils.baiduyun.receiver.MyPushMessageReceiver

com.baidu.android.pushservice.PushServiceReceiver

com.baidu.android.pushservice.RegistrationReceiver

Services

com.qihoo.util.CommonService

com.baidu.location.f

com.baidu.android.pushservice.PushService

com.zhiniao.plugin.charts

.ChartsActivity

Activities

.ChartsActivity

com.zhiniao.plugin.filter

.CourseFilterActivity

Activities

.CourseFilterActivity

com.example.test_discuss

com.example.test_discuss.MainActivity

Activities

com.example.test_discuss.MainActivity

com.pingan.anydoor

com.pingan.anydoor.hybrid.activity.CacheableWebViewActivity

Activities

Permissions

com.pingan.required_course

com.pingan.required_course.MainActivity

Activities

com.pingan.required_course.MainActivity

com.pingan.zhiniao.module.zxing.plugin

com.pingan.zhiniao.module.zxing.plugin.activity.CaptureActivity

Activities

com.pingan.zhiniao.module.zxing.plugin.activity.CaptureActivity

Permissions

Android Permissions

6fb18db591bd72cb0e3dcd8a9aaa064c4b780bcbb04121a7200dc24d0137b431