aa2903689d593a04ebb667792fc3fc1ecc9ffc7781c7bd1d064b9876f4375a32

General

Target

aa2903689d593a04ebb667792fc3fc1ecc9ffc7781c7bd1d064b9876f4375a32
Size

8.9MB
MD5

b20a6cca2c2d7f3d882a449347d57ca8
SHA1

e2e445034e72d0e8c192ea73aaffdaac61aaedbd
SHA256

aa2903689d593a04ebb667792fc3fc1ecc9ffc7781c7bd1d064b9876f4375a32
SHA512

c1bdb980de43e566a820df4f04623ea67aa886b386e4573e87497da232695ced6e91c6e5bef246a565fcfe1bbab18e5bc434dcd7cf068b3732074646d3484064
SSDEEP

196608:W3woP66xtpUZSgOnyMh4lMX3pmdY+vpDwnx+4Ut3DPeayFxXSarT78fC:W3MOtpUZHmy64g3pqYipDwx+zNyFxCqd

Score

6^/10

Malware Config

Signatures

Requests dangerous framework permissions 8 IoCs

description	ioc
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows read only access to phone state, including the current cellular network information, the status of any ongoing calls, and a list of any PhoneAccounts registered on the device.	android.permission.READ_PHONE_STATE
Allows an application to write to external storage.	android.permission.WRITE_EXTERNAL_STORAGE
Allows an application to read from external storage.	android.permission.READ_EXTERNAL_STORAGE
Allows an application to read or write the system settings.	android.permission.WRITE_SETTINGS

Files

aa2903689d593a04ebb667792fc3fc1ecc9ffc7781c7bd1d064b9876f4375a32
.apk android arch:arm

com.lcfool.enjoy.activity

com.fool.licai.activity.WaitingActivity

Activities

com.fool.licai.activity.WaitingActivity

android.intent.action.MAIN

com.tencent.tauth.AuthActivity

android.intent.action.VIEW

Permissions

android.permission.CHANGE_WIFI_STATE
android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.INTERNET
android.permission.GET_TASKS
android.permission.WAKE_LOCK
android.permission.RECEIVE_BOOT_COMPLETED
android.permission.VIBRATE
android.permission.GET_TASKS
getui.permission.GetuiService.com.lcfool.enjoy.activity
android.permission.ACCESS_WIFI_STATE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_NETWORK_STATE
android.permission.INTERNET
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_EXTERNAL_STORAGE
android.permission.MOUNT_UNMOUNT_FILESYSTEMS
android.permission.WRITE_SETTINGS

Receivers

com.fool.licai.push.FoolPushReceiver

com.igexin.sdk.action.i9WmHqFKYi5YF8CthR9v8

com.igexin.sdk.PushReceiver

android.intent.action.BOOT_COMPLETED
android.net.conn.CONNECTIVITY_CHANGE
android.intent.action.USER_PRESENT
com.igexin.sdk.action.refreshls
android.intent.action.MEDIA_MOUNTED
android.intent.action.ACTION_POWER_CONNECTED
android.intent.action.ACTION_POWER_DISCONNECTED

com.igexin.sdk.PushManagerReceiver

com.igexin.sdk.action.pushmanager

com.fool.licai.push.MyNotificationReceiver

com.fool.main.notification.click

com.igexin.download.DownloadReceiver

android.net.conn.CONNECTIVITY_CHANGE

com.igexin.getuiext.service.PayloadReceiver

com.igexin.sdk.action.7fjUl2Z3LH6xYy7NQK4ni4
com.igexin.sdk.action.tm16rCahfC7vzs3Vyqgps3

Services
UPPayPluginEx.apk
.apk .ps1 android arch:arm arch:mips arch:x86 polyglot

com.unionpay.uppay

com.unionpay.uppay.PayActivity

Activities

com.unionpay.uppay.PayActivity

android.intent.action.Run
android.intent.action.VIEW

Permissions

android.permission.INTERNET
android.permission.ACCESS_NETWORK_STATE
android.permission.CHANGE_NETWORK_STATE
android.permission.WRITE_EXTERNAL_STORAGE
android.permission.READ_PHONE_STATE
android.permission.ACCESS_WIFI_STATE
com.tencent.mtt.extension.Player
android.webkit.permission.PLUGIN

Services

com.UCMobile.PayPlugin.PayPluginService

android.webkit.PLUGIN

Android Permissions

aa2903689d593a04ebb667792fc3fc1ecc9ffc7781c7bd1d064b9876f4375a32

Permissions

android.permission.CHANGE_WIFI_STATE

android.permission.INTERNET

android.permission.ACCESS_NETWORK_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.INTERNET

android.permission.GET_TASKS

android.permission.WAKE_LOCK

android.permission.RECEIVE_BOOT_COMPLETED

android.permission.VIBRATE

android.permission.GET_TASKS

getui.permission.GetuiService.com.lcfool.enjoy.activity

android.permission.ACCESS_WIFI_STATE

android.permission.READ_PHONE_STATE

android.permission.ACCESS_NETWORK_STATE

android.permission.INTERNET

android.permission.WRITE_EXTERNAL_STORAGE

android.permission.READ_EXTERNAL_STORAGE

android.permission.MOUNT_UNMOUNT_FILESYSTEMS

android.permission.WRITE_SETTINGS

Sharing

General

Malware Config

Signatures

Files

com.lcfool.enjoy.activity

com.fool.licai.activity.WaitingActivity

Activities

com.fool.licai.activity.WaitingActivity

com.tencent.tauth.AuthActivity

Permissions

Receivers

com.fool.licai.push.FoolPushReceiver

com.igexin.sdk.PushReceiver

com.igexin.sdk.PushManagerReceiver

com.fool.licai.push.MyNotificationReceiver

com.igexin.download.DownloadReceiver

com.igexin.getuiext.service.PayloadReceiver

Services

com.unionpay.uppay

com.unionpay.uppay.PayActivity

Activities

com.unionpay.uppay.PayActivity

Permissions

Services

com.UCMobile.PayPlugin.PayPluginService

Android Permissions

aa2903689d593a04ebb667792fc3fc1ecc9ffc7781c7bd1d064b9876f4375a32