8b374f3f6f68c6d742428fcd36546fa215447947e03a12afeddee1858441e046

Sharing

Copy URL Twitter E-mail

General

Target

8b374f3f6f68c6d742428fcd36546fa215447947e03a12afeddee1858441e046
Size

16.2MB
MD5

e0e51ba307decbb29202b5314e1e0ddf
SHA1

c1087a7ad3a98ce4f7f5b115eb73eb31a4dc97d0
SHA256

8b374f3f6f68c6d742428fcd36546fa215447947e03a12afeddee1858441e046
SHA512

33e15075257ff0598180ff3a11ac72bd863ee0cd6bbc0ab4465d6fa1ff96cead50fbe25f022f00ac020e6ddaa105a21b23c0bfccb503513408b90446e03502ce
SSDEEP

393216:nkEi/amO4utSJHuP2fKOzwaUPdv4diRad1+1MYtQm3z:FmgtSQQdrqtQmj

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 10 IoCs

description	ioc
Allows an app to create windows using the type LayoutParams.TYPE_APPLICATION_OVERLAY, shown on top of all other apps.	android.permission.SYSTEM_ALERT_WINDOW
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Required to be able to access the camera device.	android.permission.CAMERA
Allows an app to access precise location.	android.permission.ACCESS_FINE_LOCATION
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an app to access approximate location.	android.permission.ACCESS_COARSE_LOCATION
Allows an application to record audio.	android.permission.RECORD_AUDIO
Allows access to the list of accounts in the Accounts Service.	android.permission.GET_ACCOUNTS

Files

8b374f3f6f68c6d742428fcd36546fa215447947e03a12afeddee1858441e046
.apk android arch:arm

com.baidao.ytxmobile

com.baidao.ytxmobile.application.SplashActivity

Activities

com.baidao.ytxmobile.application.SplashActivity

android.intent.action.MAIN

com.baidao.gdt.GDTActivity

android.intent.action.VIEW

com.bloomplus.trade.activity.V3AccountInfoActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3AccountManagerActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3BankMoneyQueryActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3BuyBackActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3BuyBackHoldActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3CapitalBankInfoActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3CapitalQueryActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3CapitalQueryListActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3CaptialOperiteActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ChangeLoginPwdActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ChangePasswordActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ChangePwdActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ChoiceHoldListingWithGoodsActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ChoiceHoldListingWithHoldActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3DelistingActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ETrustBillActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ETrustBillDetailActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3GoodsInfoActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3GoodsInfoDeatilActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3HoldingDetailActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3HoldingDetailMoreActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3HoldingQueryActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3HoldingQueryDetailActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3CapitalPasswordInitActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3CapitalPwdResetActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3InqureActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3LoginActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3LoginForgetPwdActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3MarketPriceBuyBackActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3MarketPriceDelistingActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3MoneyMangerActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3MoreActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3NoticeActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3NoticeDetailNewActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3NoticeDetailOldActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3NoticeListActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3NowStatusActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3OrderQueryActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3PhoneMangeActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3PhonePwdResetActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ReferPriceBuybackActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ReferPriceDelistingActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ReportQueryActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ReportFundsFlowQueryListActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ReportFundsStatusQueryListActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ReportTurnoverQueryListActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ReportHoldDetailQueryListActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ReportQueryListDetailActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3SettingActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3TradeActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3TrunoverDetailActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3TrunoverQueryActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3TrunoverQueryListActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3TrunoverDeatilActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3TrustQueryDetailActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3TrustQueryListActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3WarningActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3WarningAddActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ListingFiltedResultActivity

android.intent.action.MAIN

com.bloomplus.trade.activity.V3ListingFilterActivity

android.intent.action.MAIN

cn.sharesdk.framework.ShareSDKUIShell

android.intent.action.VIEW

Permissions

android.permission.SYSTEM_ALERT_WINDOW
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.INTERNET
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.WAKE_LOCK
getui.permission.GetuiService.com.baidao.ytxmobile
android.permission.GET_TASKS
android.permission.CHANGE_WIFI_STATE
android.permission.MODIFY_AUDIO_SETTINGS
android.permission.WRITE_SETTINGS
android.permission.READ_PHONE_STATE
android.permission.CAMERA
android.permission.ACCESS_FINE_LOCATION
android.permission.READ_EXTERNAL_STORAGE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.BLUETOOTH
android.permission.ACCESS_COARSE_LOCATION
android.permission.READ_SETTINGS
android.permission.RECORD_AUDIO
android.permission.CHANGE_NETWORK_STATE
android.permission.BROADCAST_STICKY
android.permission.RESTART_PACKAGES
android.permission.MANAGE_ACCOUNTS
android.permission.GET_ACCOUNTS

Receivers

com.umeng.message.RegistrationReceiver

android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.PACKAGE_REMOVED
android.intent.action.BOOT_COMPLETED

com.umeng.message.UmengBroadcastReceiver

org.agoo.android.intent.action.RECEIVE
com.baidao.ytxmobile.intent.action.COMMAND
org.agoo.android.intent.action.RE_ELECTION_V2

com.baidao.ytxmobile.support.getui.GetuiPushReceiver

com.igexin.sdk.action.ML55IyPunrALoyNkby5yS2

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls

com.igexin.sdk.PushManagerReceiver

com.igexin.sdk.action.pushmanager

com.igexin.download.DownloadReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.igexin.getuiext.service.PayloadReceiver

com.igexin.sdk.action.7fjUl2Z3LH6xYy7NQK4ni4
com.igexin.sdk.action.ML55IyPunrALoyNkby5yS2

com.baidao.ytxmobile.support.notification.NotificationReceiver

com.baidao.ytxmobile.show.notification

com.alibaba.sdk.android.feedback.impl.NetworkChangeReceiver

android.net.conn.CONNECTIVITY_CHANGE

Services

com.umeng.message.UmengService

com.baidao.ytxmobile.intent.action.START
com.baidao.ytxmobile.intent.action.COCKROACH
org.agoo.android.intent.action.PING

org.android.agoo.service.ElectionService

org.agoo.android.intent.action.ELECTION_V2

Android Permissions

8b374f3f6f68c6d742428fcd36546fa215447947e03a12afeddee1858441e046

Permissions

android.permission.SYSTEM_ALERT_WINDOW

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.INTERNET

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.VIBRATE

android.permission.WAKE_LOCK

getui.permission.GetuiService.com.baidao.ytxmobile

android.permission.GET_TASKS

android.permission.CHANGE_WIFI_STATE

android.permission.MODIFY_AUDIO_SETTINGS

android.permission.WRITE_SETTINGS

android.permission.READ_PHONE_STATE

android.permission.CAMERA

android.permission.ACCESS_FINE_LOCATION

android.permission.READ_EXTERNAL_STORAGE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.BLUETOOTH

android.permission.ACCESS_COARSE_LOCATION

android.permission.READ_SETTINGS

android.permission.RECORD_AUDIO

android.permission.CHANGE_NETWORK_STATE

android.permission.BROADCAST_STICKY

android.permission.RESTART_PACKAGES

android.permission.MANAGE_ACCOUNTS

android.permission.GET_ACCOUNTS

Sharing

General

Malware Config

Signatures

Files

com.baidao.ytxmobile

com.baidao.ytxmobile.application.SplashActivity

Activities

com.baidao.ytxmobile.application.SplashActivity

com.baidao.gdt.GDTActivity

com.bloomplus.trade.activity.V3AccountInfoActivity

com.bloomplus.trade.activity.V3AccountManagerActivity

com.bloomplus.trade.activity.V3BankMoneyQueryActivity

com.bloomplus.trade.activity.V3BuyBackActivity

com.bloomplus.trade.activity.V3BuyBackHoldActivity

com.bloomplus.trade.activity.V3CapitalBankInfoActivity

com.bloomplus.trade.activity.V3CapitalQueryActivity

com.bloomplus.trade.activity.V3CapitalQueryListActivity

com.bloomplus.trade.activity.V3CaptialOperiteActivity

com.bloomplus.trade.activity.V3ChangeLoginPwdActivity

com.bloomplus.trade.activity.V3ChangePasswordActivity

com.bloomplus.trade.activity.V3ChangePwdActivity

com.bloomplus.trade.activity.V3ChoiceHoldListingWithGoodsActivity

com.bloomplus.trade.activity.V3ChoiceHoldListingWithHoldActivity

com.bloomplus.trade.activity.V3DelistingActivity

com.bloomplus.trade.activity.V3ETrustBillActivity

com.bloomplus.trade.activity.V3ETrustBillDetailActivity

com.bloomplus.trade.activity.V3GoodsInfoActivity

com.bloomplus.trade.activity.V3GoodsInfoDeatilActivity

com.bloomplus.trade.activity.V3HoldingDetailActivity

com.bloomplus.trade.activity.V3HoldingDetailMoreActivity

com.bloomplus.trade.activity.V3HoldingQueryActivity

com.bloomplus.trade.activity.V3HoldingQueryDetailActivity

com.bloomplus.trade.activity.V3CapitalPasswordInitActivity

com.bloomplus.trade.activity.V3CapitalPwdResetActivity

com.bloomplus.trade.activity.V3InqureActivity

com.bloomplus.trade.activity.V3LoginActivity

com.bloomplus.trade.activity.V3LoginForgetPwdActivity

com.bloomplus.trade.activity.V3MarketPriceBuyBackActivity

com.bloomplus.trade.activity.V3MarketPriceDelistingActivity

com.bloomplus.trade.activity.V3MoneyMangerActivity

com.bloomplus.trade.activity.V3MoreActivity

com.bloomplus.trade.activity.V3NoticeActivity

com.bloomplus.trade.activity.V3NoticeDetailNewActivity

com.bloomplus.trade.activity.V3NoticeDetailOldActivity

com.bloomplus.trade.activity.V3NoticeListActivity

com.bloomplus.trade.activity.V3NowStatusActivity

com.bloomplus.trade.activity.V3OrderQueryActivity

com.bloomplus.trade.activity.V3PhoneMangeActivity

com.bloomplus.trade.activity.V3PhonePwdResetActivity

com.bloomplus.trade.activity.V3ReferPriceBuybackActivity

com.bloomplus.trade.activity.V3ReferPriceDelistingActivity

com.bloomplus.trade.activity.V3ReportQueryActivity

com.bloomplus.trade.activity.V3ReportFundsFlowQueryListActivity

com.bloomplus.trade.activity.V3ReportFundsStatusQueryListActivity

com.bloomplus.trade.activity.V3ReportTurnoverQueryListActivity

com.bloomplus.trade.activity.V3ReportHoldDetailQueryListActivity

com.bloomplus.trade.activity.V3ReportQueryListDetailActivity

com.bloomplus.trade.activity.V3SettingActivity

com.bloomplus.trade.activity.V3TradeActivity

com.bloomplus.trade.activity.V3TrunoverDetailActivity

com.bloomplus.trade.activity.V3TrunoverQueryActivity

com.bloomplus.trade.activity.V3TrunoverQueryListActivity

com.bloomplus.trade.activity.V3TrunoverDeatilActivity

com.bloomplus.trade.activity.V3TrustQueryDetailActivity

com.bloomplus.trade.activity.V3TrustQueryListActivity

com.bloomplus.trade.activity.V3WarningActivity

com.bloomplus.trade.activity.V3WarningAddActivity

com.bloomplus.trade.activity.V3ListingFiltedResultActivity

com.bloomplus.trade.activity.V3ListingFilterActivity

cn.sharesdk.framework.ShareSDKUIShell

Permissions

Receivers

com.umeng.message.RegistrationReceiver

com.umeng.message.UmengBroadcastReceiver

com.baidao.ytxmobile.support.getui.GetuiPushReceiver

com.igexin.sdk.PushReceiver

com.igexin.sdk.PushManagerReceiver

com.igexin.download.DownloadReceiver

com.igexin.getuiext.service.PayloadReceiver