87ce35d5b8211513f6aa1c02433fc21531b06ec0e865533db702b9a9a75a9817

General

Target

87ce35d5b8211513f6aa1c02433fc21531b06ec0e865533db702b9a9a75a9817
Size

9.2MB
MD5

62275b256a116ddeeccbba13e4b80051
SHA1

952b6f1815ab8beb7eb261929351051df283e834
SHA256

87ce35d5b8211513f6aa1c02433fc21531b06ec0e865533db702b9a9a75a9817
SHA512

2d0574683a076bde7d2ba2e45a3c8de777c2d12d3d4b656002c669e41c41ada4efb30a83d6dcb6ba7dc1a8f9692dd02a6e57065e54c46f4af2858323ead69e9b
SSDEEP

196608:zUow5XpvzHt6AHzRcTlK7vPXlDrzhI9G5U51s8nAMnPsOKv:4ow1pvzzRQlK7vPJ0GS5TDnPDKv

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 6 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to initiate a phone call without going through the Dialer user interface for the user to confirm the call.	android.permission.CALL_PHONE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read the user's contacts data.	android.permission.READ_CONTACTS

Files

87ce35d5b8211513f6aa1c02433fc21531b06ec0e865533db702b9a9a75a9817
.apk android arch:arm

com.xzsec.service

com.xzsec.service.Activity.QcSplashActivity

Activities

com.xzsec.service.Activity.QcSplashActivity

android.intent.action.MAIN
com.xzsec.service.main

.Activity.QcPayTypeActivity

com.xzsec.service.pay.bank

com.unionpay.upomp.lthj.plugin.ui.SplashActivity

com.unionpay.upomp.lthj.android.plugin.init

com.unionpay.upomp.lthj.plugin.ui.IndexActivityGroup

com.unionpay.upomp.lthj.android.plugin.index

lthj.exchangestock.FlashGridActv

com.lthjxct.android.appstock.stock.2nd.tx

Permissions

android.permission.ACCESS_WIFI_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_LOGS
android.permission.CALL_PHONE
android.permission.INTERNET
android.permission.VIBRATE
android.permission.READ_PHONE_STATE
android.permission.CHANGE_CONFIGURATION
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.RESTART_PACKAGES
android.permission.READ_CONTACTS
com.android.launcher.permission.INSTALL_SHORTCUT

Receivers

phonestock.share.tencent.mm.AppRegister

com.tencent.mm.plugin.openapi.Intent.ACTION_REFRESH_WXAPP

phonestock.skin.SkinBootReceiver

android.intent.action.PACKAGE_ADDED
android.intent.action.PACKAGE_REMOVED

com.xzsec.service.Util.apns.APNSBroadcastReceiver

com.apns.APNService.NOTIFICATION
com.apns.APNService.STOPPED

com.xzsec.service.Util.sysBroadcast.NetworkBroadcastReceiver

android.net.conn.CONNECTIVITY_CHANGE

Services

phonestock.modules.AppStatusService

com.lthjxct.android.appstock.stock.2nd.security

com.xzsec.service.Util.apns.APNService

com.xzsec.service.apns.APNService.START
com.xzsec.service.apns.APNService.STOP
20121018133442msp.apk
.apk android arch:arm

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

android.intent.action.MAIN

.activity.Alerter

android.intent.action.MAIN

.activity.Welcome

android.intent.action.MAIN

.activity.Updater

android.intent.action.MAIN

.activity.PageForBrowser

android.intent.action.VIEW

.activity.CertBiz

android.intent.action.MAIN

.activity.MessageActivity

android.intent.action.MAIN

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_COARSE_LOCATION
android.permission.SEND_SMS
com.aliyun.xiaoyunmi.alipay

Receivers

.AlixReceiver

com.aliyun.xiaoyunmi.alipay_exit

Services

.AlixService

com.alipay.android.app.IAlixPay
com.alipay.android.app.IAliPay

Android Permissions

87ce35d5b8211513f6aa1c02433fc21531b06ec0e865533db702b9a9a75a9817

Permissions

android.permission.ACCESS_WIFI_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_COARSE_LOCATION

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_LOGS

android.permission.CALL_PHONE

android.permission.INTERNET

android.permission.VIBRATE

android.permission.READ_PHONE_STATE

android.permission.CHANGE_CONFIGURATION

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.RESTART_PACKAGES

android.permission.READ_CONTACTS

com.android.launcher.permission.INSTALL_SHORTCUT

Sharing

General

Malware Config

Signatures

Files

com.xzsec.service

com.xzsec.service.Activity.QcSplashActivity

Activities

com.xzsec.service.Activity.QcSplashActivity

.Activity.QcPayTypeActivity

com.unionpay.upomp.lthj.plugin.ui.SplashActivity

com.unionpay.upomp.lthj.plugin.ui.IndexActivityGroup

lthj.exchangestock.FlashGridActv

Permissions

Receivers

phonestock.share.tencent.mm.AppRegister

phonestock.skin.SkinBootReceiver

com.xzsec.service.Util.apns.APNSBroadcastReceiver

com.xzsec.service.Util.sysBroadcast.NetworkBroadcastReceiver

Services

phonestock.modules.AppStatusService

com.xzsec.service.Util.apns.APNService

com.alipay.android.app

.activity.Cashier

Activities

.activity.Cashier

.activity.Alerter

.activity.Welcome

.activity.Updater

.activity.PageForBrowser

.activity.CertBiz

.activity.MessageActivity

Permissions

Receivers

.AlixReceiver

Services

.AlixService

Android Permissions

87ce35d5b8211513f6aa1c02433fc21531b06ec0e865533db702b9a9a75a9817