84c0a181bbe1cbda3cc4a3e490ed89e8e200e9925909909172f15d74fb075b6a

General

Target

84c0a181bbe1cbda3cc4a3e490ed89e8e200e9925909909172f15d74fb075b6a
Size

20.3MB
MD5

6916999f27543dfd4c877ac94f3dd23f
SHA1

c3ae8862b5128264c4e6abc77aebb858770c18bf
SHA256

84c0a181bbe1cbda3cc4a3e490ed89e8e200e9925909909172f15d74fb075b6a
SHA512

ce72f95bd19ffbeaa4fbbe9cd285d8784c01252a502aaa34ae65cad8240e97148917fc34c563d87783538669ee401c4ca2af8e7948ea799f5625a2386410ba61
SSDEEP

393216:Py4Mixk9xDx6/NNNNNNNNNNNeZ0yn5jb0vENv0TCghW1bOVGINLZ+ZIhcwqd5jL:6V9XgNNNNNNNNNNNIivE2Cg/GINLMIq

Score

6^/10

Malware Config

Signatures

Declares broadcast receivers with permission to handle system events 1 IoCs

description	ioc
Required by device admin receivers to bind with the system. Allows apps to manage device administration features.	android.permission.BIND_DEVICE_ADMIN

Declares services with permission to bind to the system 1 IoCs

description	ioc
Required by accessibility services to bind with the system. Allows apps to access accessibility features.	android.permission.BIND_ACCESSIBILITY_SERVICE

Requests dangerous framework permissions 4 IoCs

description	ioc
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to record audio.	android.permission.RECORD_AUDIO

Files

84c0a181bbe1cbda3cc4a3e490ed89e8e200e9925909909172f15d74fb075b6a
.apk android

io.funswitch.nopogold

io.funswitch.nopogold.SplashScreen

Activities

io.funswitch.nopogold.SplashScreen

android.intent.action.MAIN

io.funswitch.nopogold.activities.MainActivity

android.intent.action.VIEW

io.funswitch.nopogold.activities.MyStreakActivity

android.intent.action.VIEW

com.facebook.CustomTabActivity

android.intent.action.VIEW

com.google.android.gms.appinvite.PreviewActivity

com.google.android.gms.appinvite.ACTION_PREVIEW

Permissions

android.permission.ACCESS_COARSE_LOCATION
android.permission.WAKE_LOCK
com.example.googlemaps.permission.MAPS_RECEIVE
com.google.android.providers.gsf.permission.READ_GSERVICES
android.permission.ACCESS_FINE_LOCATION
android.permission.INTERNET
android.permission.READ_EXTERNAL_STORAGE
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.ACCESS_NETWORK_STATE
com.android.vending.BILLING
com.android.browser.permission.READ_HISTORY_BOOKMARKS
com.google.android.c2dm.permission.RECEIVE
com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE
android.permission.RECORD_AUDIO
com.android.vending.CHECK_LICENSE

Receivers

io.funswitch.nopogold.receivers.TimeGymReceiver

android.intent.action.BOOT_COMPLETED

android.support.v4.media.session.MediaButtonReceiver

android.intent.action.MEDIA_BUTTON

io.funswitch.nopogold.receivers.MyDeviceAdministractor

android.app.action.DEVICE_ADMIN_ENABLED
android.app.action.DEVICE_ADMIN_DISABLE_REQUESTED
android.app.action.DEVICE_ADMIN_DISABLED

com.appsflyer.SingleInstallBroadcastReceiver

com.android.vending.INSTALL_REFERRER

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

android.intent.action.BATTERY_OKAY
android.intent.action.BATTERY_LOW

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

android.intent.action.DEVICE_STORAGE_LOW
android.intent.action.DEVICE_STORAGE_OK

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

android.net.conn.CONNECTIVITY_CHANGE

androidx.work.impl.background.systemalarm.RescheduleReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.TIME_SET
android.intent.action.TIMEZONE_CHANGED

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

androidx.work.impl.background.systemalarm.UpdateProxies

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.c2dm.intent.RECEIVE

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.android.vending.INSTALL_REFERRER

com.evernote.android.job.v14.PlatformAlarmReceiver

com.evernote.android.job.v14.RUN_JOB
net.vrallev.android.job.v14.RUN_JOB

com.evernote.android.job.JobBootReceiver

android.intent.action.BOOT_COMPLETED
android.intent.action.QUICKBOOT_POWERON
com.htc.intent.action.QUICKBOOT_POWERON
android.intent.action.MY_PACKAGE_REPLACED

Services

io.funswitch.nopogold.fcm.MyFirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

io.funswitch.nopogold.fcm.MyFirebaseIntanceIdService

com.google.firebase.INSTANCE_ID_EVENT

io.funswitch.nopogold.Service.MyAccessibilityServices

android.accessibilityservice.AccessibilityService

com.google.firebase.messaging.FirebaseMessagingService

com.google.firebase.MESSAGING_EVENT

com.evernote.android.job.gcm.PlatformGcmService

com.google.android.gms.gcm.ACTION_TASK_READY

Android Permissions

84c0a181bbe1cbda3cc4a3e490ed89e8e200e9925909909172f15d74fb075b6a

Permissions

android.permission.ACCESS_COARSE_LOCATION

android.permission.WAKE_LOCK

com.example.googlemaps.permission.MAPS_RECEIVE

com.google.android.providers.gsf.permission.READ_GSERVICES

android.permission.ACCESS_FINE_LOCATION

android.permission.INTERNET

android.permission.READ_EXTERNAL_STORAGE

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.ACCESS_NETWORK_STATE

com.android.vending.BILLING

com.android.browser.permission.READ_HISTORY_BOOKMARKS

com.google.android.c2dm.permission.RECEIVE

com.google.android.finsky.permission.BIND_GET_INSTALL_REFERRER_SERVICE

android.permission.RECORD_AUDIO

com.android.vending.CHECK_LICENSE

Sharing

General

Malware Config

Signatures

Files

io.funswitch.nopogold

io.funswitch.nopogold.SplashScreen

Activities

io.funswitch.nopogold.SplashScreen

io.funswitch.nopogold.activities.MainActivity

io.funswitch.nopogold.activities.MyStreakActivity

com.facebook.CustomTabActivity

com.google.android.gms.appinvite.PreviewActivity

Permissions

Receivers

io.funswitch.nopogold.receivers.TimeGymReceiver

android.support.v4.media.session.MediaButtonReceiver

io.funswitch.nopogold.receivers.MyDeviceAdministractor

com.appsflyer.SingleInstallBroadcastReceiver

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryChargingProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$BatteryNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$StorageNotLowProxy

androidx.work.impl.background.systemalarm.ConstraintProxy$NetworkStateProxy

androidx.work.impl.background.systemalarm.RescheduleReceiver

androidx.work.impl.background.systemalarm.ConstraintProxyUpdateReceiver

com.google.firebase.iid.FirebaseInstanceIdReceiver

com.google.android.gms.measurement.AppMeasurementInstallReferrerReceiver

com.evernote.android.job.v14.PlatformAlarmReceiver

com.evernote.android.job.JobBootReceiver

Services

io.funswitch.nopogold.fcm.MyFirebaseMessagingService

io.funswitch.nopogold.fcm.MyFirebaseIntanceIdService

io.funswitch.nopogold.Service.MyAccessibilityServices

com.google.firebase.messaging.FirebaseMessagingService

com.evernote.android.job.gcm.PlatformGcmService

Android Permissions

84c0a181bbe1cbda3cc4a3e490ed89e8e200e9925909909172f15d74fb075b6a